infosec4tc
Global searching is not enabled.

  1. Home
Skip to main content

This course includes:

  • 19356 days of study
  • 12 Quize(s).
  • 113 Assignment(s).
  • Access on mobile and Desktop
  • Certificate of completion
Master every skill a Cyber Security Specialist needs through 82 hands-on projects at MedVault Systems Inc. — a healthcare technology company processing ePHI for 1.8 million patients. Work with real enterprise tools (Wazuh SIEM/XDR and Eramba GRC), investigate security incidents using actual alert data, conduct compliance assessments against HIPAA, PCI DSS, and NIST CSF, manage vulnerability remediation, coordinate with an MSSP, and build a professional security portfolio. Duration: 22 weeks (self-paced) | Wazuh SIEM: [Lab URL provided in course] | Eramba GRC: grc.cybersecurity365.net

Top companies offer this course to their employees

This course was selected for our collection of top-rated courses trusted by businesses worldwide.

Certified Partners

scrum scaledagile icagile scrumalliance kanban

Course content

38 section(s)

  • 🚀 Student Quick Start Guide — CSS-PPP-2026

    Welcome to the Cyber Security Specialist: Practical Projects Platform 2026. Read this section carefully before starting any lab or assignment. All lab credentials and access rules are listed below.

    🔵 Wazuh SIEM/XDR Lab Access

    URL https://siem.cybersecurity365.net
    Accounts SOC_Analyst1  |  SOC_Analyst2  |  SOC_Analyst3  |  SOC_Analyst4  |  SOC_Analyst5
    Password SOC@MedVault2026
    Access Level 📖 READ-ONLY — View and analyse only. Do NOT attempt to create, modify, or delete any alerts, rules, or agents.
    Agents MEDVAULT-DC01  |  MEDVAULT-APP01  |  MEDVAULT-DB01  |  MEDVAULT-WEB01  |  MEDVAULT-MAIL01
    Booking Rule Up to 5 students can be logged in simultaneously (one per account). If all accounts are in use, wait 30 minutes and try again.

    🟠 Eramba GRC Platform Lab Access

    URL https://grc.cybersecurity365.net
    Accounts GRC_Analyst1 through GRC_Analyst10  (see booking table below)
    Password GRC@MedVault2026
    Access Level 👁️ VIEW ONLY — Browse, review, and screenshot existing data only. Do NOT create, edit, or delete any records.
    ⚠️ Important This is a LIVE shared environment. Any changes you make affect ALL students. Treat it as a read-only reference system.

    📅 GRC Account Booking — Use Your Assigned Account

    To prevent multiple students logging in with the same account simultaneously, use the account that matches your student enrolment number:

    Student # Your Eramba Account Session Duration
    Students 1–10 GRC_Analyst1 Max 2 hours per session
    Students 11–20 GRC_Analyst2 Max 2 hours per session
    Students 21–30 GRC_Analyst3 Max 2 hours per session
    Students 31–40 GRC_Analyst4 Max 2 hours per session
    Students 41–50 GRC_Analyst5 Max 2 hours per session
    Students 51–60 GRC_Analyst6 Max 2 hours per session
    Students 61–70 GRC_Analyst7 Max 2 hours per session
    Students 71–80 GRC_Analyst8 Max 2 hours per session
    Students 81–90 GRC_Analyst9 Max 2 hours per session
    Students 91–100 GRC_Analyst10 Max 2 hours per session

    💡 If you are unsure of your student number, check your course enrolment email or contact your instructor.

    ✅ Lab Rules & Data Safety

    • 🔒 Wazuh: READ-ONLY — view and analyse alerts/logs only. Never attempt to change rules, agents, or settings.
    • 👁️ Eramba: VIEW-ONLY — browse existing GRC data for your lab tasks. Never create, edit, or delete records.
    • 📸 Use screenshots as your evidence for all lab deliverables.
    • ⏱️ Log out when done so other students can access the same account.
    • 🚨 If you encounter an error or cannot log in, contact your instructor — do NOT attempt to reset passwords.

    📋 How to Navigate This Platform

    1. Read the Access & Rules pages (Wazuh SIEM Access & Rules + Eramba GRC Access & Rules) at the start of each milestone section.
    2. Complete written assignments first (SOC-01, SOC-02, etc.) before the corresponding lab exercises (W-SOC1, W-SOC2, etc.).
    3. Then complete the Wazuh labs (W- prefix) — these are SIEM analysis tasks using read-only access.
    4. Complete Eramba labs (E- prefix) — these are GRC platform review tasks using view-only access.
    5. Each completed activity updates your CV/LinkedIn — follow the skill-add guidance at the end of each assignment.
  • Establish MedVault's security governance foundation. Develop the Information Security Policy, Acceptable Use Policy, Access Control Policy, Data Protection Policy, Security Awareness Program, RACI matrix, Information Asset Register, SOPs, and USB access evaluation procedures. Then configure governance artifacts in Eramba. Contains 12 assignments + 1 quiz. Grading Weight: 12%.
  • 2 Quizes.
  • 11 Assignments.
  • Review and strengthen MedVault's security infrastructure. Assess the network architecture, optimize firewall rules, review identity and access management, conduct an AWS cloud security assessment, define endpoint security standards, establish encryption policies, and design a DLP solution for ePHI protection. Conduct Wazuh labs for agent review, CIS Benchmark scanning, and File Integrity Monitoring. Contains 10 assignments + 1 quiz. Grading Weight: 14%.
  • 1 Quizes.
  • 10 Assignments.
  • Take ownership of MedVault's security operations. Develop SOC procedures and MSSP coordination protocols, design the log management architecture, create alert triage and escalation procedures, build a threat intelligence program, establish security metrics for board reporting, and conduct a NIST CSF self-assessment. Use Wazuh to customize dashboards, analyze detection rules, correlate logs, review active response capabilities, and generate monthly security reports. Contains 12 assignments + 1 quiz. Grading Weight: 18%.
  • 2 Quizes.
  • 12 Assignments.
  • Build MedVault's incident response capability and investigate real security incidents. Develop the IR plan and playbooks for phishing, ransomware, and data breach scenarios. Investigate a multi-stage phishing campaign (3 compromised accounts including an IT admin with disabled MFA) and an insider threat scenario using Wazuh alert data. Manage IoC reports from the MSSP CyberShield. Use Wazuh to investigate brute force attacks, malware detections, and suspicious file integrity events. Log incidents in Eramba. Contains 12 assignments. Grading Weight: 18%.
  • 13 Assignments.
  • Establish MedVault's vulnerability management program. Develop policies, analyze Wazuh vulnerability scan data (847 findings), create patch management procedures, plan remediation for penetration test findings, manage the VirtualCare acquisition security integration project, create quarterly threat landscape reports, and design IoT security checklists for hospital clients. Use Wazuh for vulnerability detection analysis, SCA compliance scanning, and HIPAA compliance monitoring. Track risks in Eramba. Contains 11 assignments + 1 ICS Security quiz. Grading Weight: 14%.
  • 1 Quizes.
  • 12 Assignments.
  • Demonstrate MedVault's compliance posture across all frameworks. Conduct full HIPAA Security Rule and PCI DSS v4.0 assessments, perform NIST CSF 2.0 maturity evaluation, create quarterly security controls attestation reports, execute an internal access control audit, and assess vendor security (MSSP CyberShield + 2 vendors). Use Wazuh for HIPAA and PCI compliance dashboards. Use Eramba for compliance framework analysis, audit findings, risk registers, and third-party risk management. Contains 11 assignments + 1 quiz. Grading Weight: 14%.
  • 1 Quizes.
  • 13 Assignments.
  • Complete MedVault's business continuity preparations and demonstrate everything you have learned. Conduct a Business Impact Analysis, develop the Disaster Recovery Plan, design a DR tabletop exercise, compile the comprehensive Security Program Review with Board presentation, create the security posture report and 12-month strategic roadmap. Complete 3 mock interviews and build your professional career portfolio. Contains 9 assignments + 1 Data Backup quiz. Grading Weight: 10%.
  • 1 Quizes.
  • 10 Assignments.
  • 1 Assignments.
  • 2 Assignments.
  • 1 Assignments.
  • 1 Quizes.
  • 2 Assignments.
  • 1 Assignments.
  • 1 Assignments.
  • 1 Assignments.
  • 2 Assignments.
  • 2 Assignments.
  • 1 Assignments.
  • 1 Assignments.
  • 1 Assignments.
  • 1 Assignments.
  • 1 Assignments.
  • 1 Quizes.
  • 1 Assignments.
  • 1 Assignments.
  • 2 Assignments.
  • 1 Assignments.
  • 2 Assignments.
  • 1 Assignments.
  • 1 Assignments.
  • 1 Assignments.
  • 1 Quizes.
  • 1 Assignments.
  • 1 Quizes.
  • 1 Assignments.
  • 1 Assignments.
  • 1 Assignments.

Frequently Bought Courses

CSS

Cyber Security Specialist Workshop

Mohamed Atef

Bestseller

$1000

Cyber Security Certifications Practice Questions 2023

Cyber Security Certifications Practice Questions 2023

Samer Kilani

Bestseller

$

Cyber Security Certifications Practice Questions 2022_1

Cyber Security Certifications Practice Questions 2022 copy 1

InfoSec4TC Support

Bestseller

$

Instructor :

Nouf Bahaffi

Developer and Lead Instructor

  • 814 Students
  • 13 Course(s)

The premier online platform for Cybersecurity and GRC training. Learn from real-world projects and build the skills employers need.

Copyright © 2025 InfoSec4TC. All Rights Reserved.

WhatsApp: +971501254773 Email: infosec4tc@infosec4tc.com