Cyber defenders play an essential role in securing the enterprise. Defending against attacks is only possible with the right skill set - and confidence in your abilities and those of your team. GIAC's Cyber Defense certifications span the entire defense spectrum and are focused in two areas: cyber defense essentials and blue teaming. Whether your needs are beginner-level, advanced, or for a specialized area of defense, GIAC has the credentials you need to keep your organization safe from the latest threats.
Prove your ability to detect, respond to, and recover from an attack.
Prove your mastery of essential skills needed to defend the enterprise.
"Working in a Managed Detection & Response team, my GSEC gave me the building blocks needed to become a well-rounded defender and has sparked my motivation to continue getting more education and certs. I am now enrolled in GCIH and I can already tell this course will boost my confidence and skills to protect organizations across the globe." - Nate Gonzalez, GSEC, GCIH
The GOSI certification confirms that practitioners have a strong foundation in OSINT methodologies and frameworks and are well-versed in data collection, reporting, and analyzing targets.
Affiliated Training: SEC487: Open-Source Intelligence (OSINT) Gathering & Analysis
The GCIA with CyberLive certification validates a practitioner's knowledge of network and host monitoring, traffic analysis, and intrusion detection.
Affiliated Training: SEC503: Intrusion Detection In-Depth
The GCWN certification validates a practitioner's ability to secure Microsoft Windows clients and servers and to configure and manage the security of Microsoft operating systems and applications.
Affiliated Training: SEC505: Securing Windows and PowerShell Automation
The GMON certification confirms a practitioner's ability to deter intrusions, perform continuous security monitoring, and quickly detect anomalous activity.
Affiliated Training: SEC511: Continuous Monitoring and Security Operations
The GDSA certification proves that practitioners can design and implement an effective combination of network-centric and data-centric controls to balance prevention, detection, and response.
Affiliated Training: SEC530: Defensible Security Architecture and Engineering
The GCDA certification proves an individual knows how to collect, analyze, and tactically use modern network and endpoint data sources to detect malicious or unauthorized activity.
Affiliated Training: SEC555: SIEM with Tactical Analytics
GCUX certification holders have the knowledge, skills and abilities to secure and audit UNIX and Linux systems, and are able to use multiple tools to handle security issues.
The GISF certification validates a practitioner's knowledge of security's foundation, computer functions and networking, introductory level cryptography, and cybersecurity technologies.
Affiliated Training: SEC301: Introduction to Cybersecurity
The GSEC certification validates a practitioner's knowledge of information security beyond simple terminology and concepts.
Affiliated Training: SEC401: Security Essentials Bootcamp Style
The GCED certification assesses more advanced, technical skills that are needed to defend the enterprise environment and protect an organization as a whole.
Affiliated Training: SEC501: Advanced Security Essentials - Enterprise Defender
The GCIH with CyberLive certification focuses on methods used to detect, respond, and resolve computer security incidents.
Affiliated Training: SEC504: Hacker Tools, Techniques, Exploits, and Incident Handling
The GISP certification validates a practitioner's knowledge of the 8 domains of cybersecurity knowledge as determined by (ISC)2 that form a critical part of CISSP® exam.
Affiliated Training: MGT414: SANS Training Program for CISSP® Certification
The GDAT certification is unique in how it covers both offensive and defensive security topics in-depth.
Affiliated Training: SEC599: Defeating Advanced Adversaries - Purple Team Tactics & Kill Chain Defenses