GIAC Certifications: Cyber Defense

GIAC Certifications:

Top Cyber Security Certifications for Cyber Defense

"I am proud to be on the cyber defense line with such a competent industry partner that understands the needs of the Defense Department. GIAC is willing to work with us to help accomplish this difficult task." - Mike Knight, Naval NetWar Command

Whether an attacker is successful penetrating an organization's network depends on the strength and intelligence of that organization's cyber defense professionals. Defending against attacks is an ongoing challenge, with new threats emerging daily and APT (advanced persistent threat) on everyone's mind. Well prepared organizations understand what has worked and will always work is taking a risk based approach to cyber defense.

Ensuring the highest level of cyber security means having the expertise and knowledge to focus on the right areas of cyber defense.

Cyber Defense
  Certification Register
GSEC: GIAC Security Essentials

Security Essentials

  • Prevention of attacks and detection of adversaries
  • Networking Concepts, Defense in Depth, Secure Communications
  • Foundational Windows and Linux Security

Affiliated Training:

SEC401: Security Essentials Bootcamp Style

GCIA: GIAC Certified Intrusion Analyst

Certified Intrusion Analyst

  • Fundamentals of Traffic Analysis and Application Protocols
  • Open Source IDS: Snort and Bro
  • Network Traffic Forensics and Monitoring

Affiliated Training:

SEC503: Intrusion Detection In-Depth

GISF: GIAC Information Security Fundamentals

Information Security Fundamentals

  • Information Security Foundations
  • Cryptography
  • Network Protection Strategies and Host Protection

Affiliated Training:

SEC301: Introduction to Cyber Security

GCED: GIAC Certified Enterprise Defender

Certified Enterprise Defender

  • Defensive Network Infrastructure and Packet Analysis
  • Pen Testing and Vulnerability Analysis and Mitigation
  • Incident Response, Malware and Data Loss Prevention

Affiliated Training:

SEC501: Advanced Security Essentials - Enterprise Defender

GMON: GIAC Continuous Monitoring Certification

Continuous Monitoring Certification

  • Security Architecture and Security Operations Centers (SOCs)
  • Network Security Architecture and Monitoring
  • Endpoint Security Architecture, Automation and Continuous Monitoring

Affiliated Training:

SEC511: Continuous Monitoring and Security Operations

GCWN: GIAC Certified Windows Security Administrator

Certified Windows Security Administrator

  • Windows OS and Application Hardening
  • PowerShell Scripting and Managing Cryptography
  • Server Hardening, IPSec, Dynamic Access Control and DNS

Affiliated Training:

SEC505: Securing Windows and PowerShell Automation

GCCC: GIAC Critical Controls Certification

Critical Controls Certification

  • Overview of the Critical Controls and Asset Inventories
  • Vulnerability Assessments and Remediation, Privileges, Logging
  • Email and Browser Protections, Malware, Control of Network Access and Protocols, Data Protection and Recovery and Secure Configurations
  • Wireless Device Control, Application Security, Incident Response, and Penetration Testing

Affiliated Training:

SEC566: Implementing and Auditing the Critical Security Controls - In-Depth

GPPA: GIAC Certified Perimeter Protection Analyst

Certified Perimeter Protection Analyst

  • Network Security, IP and Packet Decoding
  • Endpoint-Host Security
  • Logging Wireless, Encryption, VPNs and Cloud

GCUX: GIAC Certified UNIX Security Administrator

Certified UNIX Security Administrator

  • Hardening Linux/Unix
  • Application Security in Depth
  • Digital Forensics in the Linux/Unix Environment

Affiliated Training:

SEC506: Securing Linux/Unix

GDAT: GIAC Defending Advanced Threats

Defending Advanced Threats

Affiliated Training:

SEC599: Defeating Advanced Adversaries - Purple Team Tactics & Kill Chain Defenses

GCDA: GIAC Certified Detection Analyst

Certified Detection Analyst

  • SIEM Architecture and SOF-ELK
  • Service Profiling, Advanced Endpoint Analytics, Baselining and User Behavior Monitoring
  • Tactical SIEM Detection and Post-Mortem Analysis

Affiliated Training:

SEC555: SIEM with Tactical Analytics

GDSA: GIAC Defensible Security Architecture

Defensible Security Architecture

Affiliated Training:

SEC530: Defensible Security Architecture and Engineering

GOSI: GIAC Open Source Intelligence

Open Source Intelligence

Affiliated Training:

SEC487: Open-Source Intelligence (OSINT) Gathering and Analysis


Please Note: No training is required for a GIAC Certification