Cybersecurity Foundations
Start from zero, understand how modern systems are attacked and defended, then build practical evidence for your first security role.
Who Is This For
- Students exploring cybersecurity before choosing a specialization
- Career switchers who need IT and networking foundations first
- Help-desk, desktop or operations professionals moving toward security
- Learners who want guided practice before a vendor-specific course
Prerequisites
- No prior cybersecurity experience is required
- A computer, reliable internet connection and willingness to practise
- Basic comfort using a browser and installing approved learning tools
Full Syllabus โ 15 Modules
M 1How Computers, Applications and Data Work
- Hardware, operating systems, processes, files and permissions
- Client-server applications, databases and common enterprise services
- Confidentiality, integrity and availability in everyday systems
M 2Networking from the Ground Up
- IP addressing, subnet basics, ports and protocols
- Switches, routers, firewalls, NAT, DNS, DHCP and VPNs
- Following a request from a laptop to a web application
M 3Windows Security Essentials
- Users, groups, services, event logs and local policy
- Active Directory concepts, authentication and common attack paths
- Basic hardening and evidence collection
M 4Linux and Command-Line Essentials
- File system, permissions, packages, processes and networking commands
- Reading logs and safely using the shell
- Simple automation concepts for repeatable work
M 5Security Principles and Risk
- Threat, vulnerability, likelihood, impact and control
- Least privilege, defence in depth, Zero Trust and shared responsibility
- Policies, standards, procedures and evidence
M 6Threats, Attackers and the Attack Lifecycle
- Phishing, malware, credential attacks, web attacks and insider risk
- Attack surface, initial access, persistence, lateral movement and impact
- Using MITRE ATT&CK as a learning and investigation map
M 7Identity and Access Security
- Authentication, authorization, MFA, SSO and federation
- Privileged access, service accounts and access reviews
- Recognizing risky sign-ins and access anomalies
M 8Network and Endpoint Defence
- Firewall policy, segmentation, secure remote access and DNS protection
- Antivirus, EDR, patching, baselines and device control
- Reading basic network and endpoint evidence
M 9Web, Application and API Security
- HTTP, sessions, cookies, TLS and same-origin concepts
- OWASP risks explained through safe demonstrations
- Secure development, WAF and API protection roles
M 10Email, Social Engineering and Human Risk
- Mail flow, spoofing, phishing, BEC and malicious attachments
- SPF, DKIM and DMARC at a foundation level
- Reporting and responding to suspicious messages
M 11Cloud and SaaS Security Foundations
- Cloud service models and shared responsibility
- Cloud identity, networking, logging, configuration and data protection
- Common cloud misconfigurations and posture management
M 12SOC, Logs and SIEM Fundamentals
- What a SOC monitors and how alerts become incidents
- Log sources, timestamps, fields, searches and correlation
- Severity, priority, false positives and escalation
M 13Incident Response and Digital Evidence
- Preparation, detection, containment, eradication, recovery and lessons learned
- Preserving evidence, maintaining notes and building a timeline
- Ransomware and account-compromise tabletop exercises
M 14Vulnerability Management and Safe Testing
- Asset inventory, scanning, validation, prioritization and remediation
- CVSS, exploitability and business context
- Authorization, scope and ethical boundaries for security testing
M 15Capstone, Portfolio and Next Specialization
- Investigate a simulated incident and document findings
- Create a clear security report and evidence pack
- Choose a next path: SOC, cloud, network security, GRC or testing
Practice Plan
Systems Lab
Navigate Windows and Linux, permissions, services and logs.
Network Lab
Trace DNS, web and network traffic and explain every control point.
SOC Lab
Triage alerts, build a timeline and make an escalation decision.
Portfolio Capstone
Submit a defensible incident report with evidence and recommendations.
What You Build
- A personal cybersecurity glossary and network diagram
- Windows, Linux and log-analysis practice notes
- A risk assessment and incident timeline
- A final report suitable for a beginner portfolio
- A next-course plan based on your target role
FAQ
Q 1Can I join without an IT background?
Yes. The early modules deliberately build computer, networking, Windows and Linux foundations before security tools.
Q 2Is this a certification course?
This is a practical foundation and Techclick completion course. It prepares you to choose a suitable vendor or role-based certification next.
Q 3Are the labs safe?
Yes. Exercises use approved local or isolated learning environments and emphasize authorization and scope.
Build the right foundation first.
Ask about the next beginner batch and a suitable learning path.