Cyber security training founded in the USA
Coursera – provides universal access to the world’s best education, partnering with top universities and organizations to offer courses online. They have a number of FREE courses available for cyber security professionals, including:
- Designing and Executing Information Security Strategies
- Hardware Security
- Software Security
- Usable Security
- Internet History, Technology, and Security
- Information Security and Risk Management in Context
- Malicious Software and its Underground Economy: Two Sides to Every Story
- Cybersecurity and Its Ten Domains
Cybrary – launched in January 2015 and provides free cyber security training. Their mission is to advance the cyber security industry by building a thriving community with truly helpful resources and tools that empower individuals and organizations.
EH Academy – is the brainchild of Ehacking, which has been involved in the field of training since the past Five years and continues to help in creating professional IT experts. EH Academy provides its students the highest value at minimum cost and currently they have a FREE Learn Burp Suite for Web Application Security Assessment.
ElearnSecurity – offers a wide range of training opportunities for organizations of all sizes that need to keep their IT Security personnel skills up to date. They have 8 courses on Network Security, Web Application Security, Mobile Security and Reverse Engineering and their training includes practical hands-on virtual Labs. Each course has a FREE trial and they provide certifications upon successful examination passes to ensure quality control. You can find more information about our IT security courses with links to all courses and demos here.
Future Learn – Introduction to Cyber Security – this FREE online course will help you to understand online security and start to protect your digital life, whether at home or work. You will learn how to recognise the threats that could harm you online and the steps you can take to reduce the chances that they will happen to you. With cyber security often in the news today, the course will also frame your online safety in the context of the wider world, introducing you to different types of malware, including viruses and trojans, as well as concepts such as network security, cryptography, identity theft and risk management. Your guide for the course is Cory Doctorow, a visiting professor at The Open University.
Georgia Tech College of Computing’s Introduction to information security – is a graduate-level FREE introductory course in information security. It teaches the basic concepts and principles of information security, and the fundamental approaches to secure computers and networks. Its main topics include: security basics, security management and risk assessment, software security, operating systems security, database security, cryptography algorithms and protocols, network authentication and secure network applications, malicious malware, network threats and defenses, web security, mobile security, legal and ethical issues, and privacy.
Students are advised to have taken an undergraduate level course on, or be otherwise familiar with, operating systems and networks. Prior programming experience with C or Java is recommended. Knowledge of algebra and discrete mathematics is also recommended.
Hack.me – is a FREE, community based project powered by eLearnSecurity.
The community can build, host and share vulnerable web application code for educational and research purposes. It aims to be the largest collection of “runnable” vulnerable web applications, code samples and CMS’s online. The platform is available without any restriction to any party interested in Web Application Security:
Heimdal Security – was created by the 2011 and 2012 Defcon World Champions in hacking to protect Internet users against advanced cyber-criminal attacks. The Heimdal Security team shields 300.000+ people around the world by patching 12 million vulnerabilities, blocking over 15 million malicious websites and delivering world class intelligence on IT security to every single user. They offer a FREE five-week training course where you can learn how to secure your online world.
ISIS Laboratory – is a security research environment where students analyze and understand how attackers take advantage of real systems. This approach gives students a unique perspective and a proper foundation that allows them to master any area of security at NYU Poly. The ISIS Lab is for undergraduates, graduates, and professors devoted to learning and understanding practical tools and techniques used by attackers and defenders by analyzing real-world actors, hands-on experimentation, and developing projects in the lab related to information security. The ISIS Lab is run by students, advised by hackers in residence and industry partners, supported by the Department of Computer Science and Engineering, and directed by founder Nasir Memon.
Khan Academy Intro to Cryptography – offers FREE practice exercises, instructional videos, and a personalized learning dashboard that empower learners to study at their own pace in and outside of the classroom. They tackle math, science, computer programming, history, art history, economics, and more. Their math missions guide learners from kindergarten to calculus using state-of-the-art, adaptive technology that identifies strengths and learning gaps. They’ve also partnered with institutions like NASA, The Museum of Modern Art, The California Academy of Sciences, and MIT to offer specialized content.
Learning Tree – their cyber security training courses provide you with the IT and network security training to protect your organization. In addition to top cyber security certifications such as CISSP, Security+ and EC-Council’s CEH certification, we have 40+ Certifications based on the National Cybersecurity Workforce Framework. You can take our cyber security training online or at an education center.
MIT Open Courseware Network and Computer Security – is a FREE upper-level undergraduate, first-year graduate course on network and computer security. It fits within the Computer Systems and Architecture Engineering concentration.
Offensive Security Certified Expert (OSCE) – was born out of the belief that the only way to achieve sound defensive security is through an offensive approach. The team is made up of security professionals with extensive experience of attacking systems to see how they respond. They share this information through trainings, free tools and publications. With the motto “Try Harder,” the Company’s trainings and certifications are well respected and considered amongst the most rigorous available, creating a model adopted across the industry. In addition, the Exploit Database, Metasploit Unleashed and BackTrack Linux community projects are highly-regarded and used by security teams in governmental and commercial organizations across the world.
OpenSecurityTraining.info – has FREE training courses for beginner, intermediate and advanced classes. They’re dedicated to sharing training material for computer security classes, on any topic. All material is licensed with an open license (like Creative Commons), allowing anyone to use the material however they see fit, so long as they share modified works back to the community. They highly encourage people who already know these topic areas to take the provided material and pursue paid and unpaid teaching opportunities.
Pentesters Academy (a Security Tube initiative) – offers some very technical and very specific courses, such as:
- Python for Pentesters
- x86 Assembly Language and Shellcoding on Linux
- x86_64 Assembly Language and Shellcoding on Linux
- Linux Forensics
- Pentesting with Metasploit
- Wi-Fi Security and Pentesting
- Exploiting Simple Buffer Overflows on Win32
- USB Forensics and Pentesting
- Pentesting iOS Applications
- Make your own Hacker Gadget
- Scripting Wi-Fi Pentesting Tools in Python
- GNU Debugger Megaprimer
- WAP Challenges
- Pentesting Challenges
- PCAP to XML and SQLITE
- Airodump-NG Scan Visualizer
- Web Application Pentesting
- Network Penetration Testing
- Powershell for Pentesters
- Real World Penetration Testing
Rapid7 – has skilled resources ready to help you whether you need deployment and training for Rapid7 products or security assessment services, such as penetration testing. In addition to a multitude of courses they offer Rapid 7 Metasploit Unleashed (MSFU) – a FREE ethical hacking training course that’s provided to the community by Offensive Security in an effort to raise funds and awareness for underprivileged children in East Africa. Through a heart-warming effort by several security professionals, they’re proud to present the most complete and in-depth Metasploit Guide available for the Metasploit Project.
This course teaches you how to use Metasploit in a structured and professional manner, including both the Metasploit Framework and Metasploit Pro editions, as well as an extensive overview on Metasploit Commands. If you’re looking for a thorough introduction to this popular penetration testing tool, you’ve come to the right place.
This FREE Metasploit training is a perfect starting place for information security professionals that want to learn penetration testing, but are not yet ready to commit to a paid course. Additionally, this free online computer security course makes a wonderful quick reference for advanced penetration testing professionals on how to use Metasploit. Many of the contributors to this course are also the authors of the No Starch Metasploit book.
SANS – is the most trusted and largest source for information security training in the world. They offer training through several delivery methods – live and virtual, classroom-style, online at your own pace or webcast with live instruction, guided study with a local mentor, or privately at your workplace where even your most remote colleagues can join in via Simulcast. Industry leaders in numerous fields including cyber security training, network security, forensics, audit, security leadership, and application security develop their computer security courses and deliver the training.
In addition to training, SANS offers certification via GIAC, an affiliate of the SANS Institute, a certification body featuring over 20 hands-on, technical certifications in information security, and optional Master’s Degree programs through SANS Technology Institute graduate school, plus numerous FREE security resources including newsletters, whitepapers and webcasts.
SANS Cyber Aces Online – offers FREE and online, selected courses from the professional development curriculum offered by The SANS Institute, the global leader in cyber security training. SANS goal in making these courses available as open courseware is to help grow the talent pool and accelerate the rate at which skilled cyber professionals can enter the information security industry – filling mission critical jobs currently going unfilled.
The open courses are the same as those offered to information security professionals around the world and are focused on the fundamentals of cyber security.
Security Tube – provides low cost cyber security training and certifications. Their FREE courses reach over 1 million students in over 220 countries and students in over 73 countries take their certifications.
StormWind – brings a live, Hollywood-HD quality experience to the world of e-learning. Using proprietary technology, they create and deliver interactive online training that is truly personal and engaging. They offer a range of courses for cyber security including Security+, Certified Ethical Hacker and CISSP, which are a third of the cost of regular training.
The CERT Division of the SEI – is the world’s leading trusted authority dedicated to improving the security and resilience of computer systems and networks and a national asset in the field of cyber security. They offer training in the following areas:
- Incident Handling
- Network Security
- Risk Assessment & Insider Threat
The Infosec Institute – focuses on helping cyber security and IT professionals keep the extra-fast pace of the field they work in. They offer a range of courses in the following areas:
- Information Security
- Information Assurance
- IT Audit
- Secure Coding
- Project Management
The Software Engineering Institute (SEI) – is a federally funded research and development center sponsored by the U.S. Department of Defense and operated by Carnegie Mellon University. The SEI helps organizations make measurable improvements in their software engineering capabilities by providing technical leadership to advance the practice of software engineering.
The Stanford Advanced Computer Security Certificate Program – provides participants the advanced skills needed to learn how to protect networks, secure electronic assets, prevent attacks, ensure the privacy of your customers, and build secure infrastructures through this six-course certificate program.
Think Security First! – is taking a first major step by offering comprehensive, immersive, and FREE security awareness training for employees.That includes:
- 14 interactive online lessons with built-in quizzes, an exam and certification.
- Easy-to-follow lessons on phishing, malware, mobile, email and messaging, passwords, security outside the office, data handling and protection, BYOD, and even personal security threats like identity theft.
- No limitations or restrictions. Employees can take as many lessons as they want, as often as they want, from wherever they want.
- The League of Security Champions – an online forum to encourage, support, educate, and reward those in charge of security awareness in their workplace.
- Security awareness posters and other education materials.
They’re also working on phish testing and training, scenario-based training, and executive security briefings. All online, all free, all the time.
Udemy – is the world’s online learning marketplace, where 9 million+ students are taking courses in everything from programming to yoga to photography–and much, much more. Each of their 35,000+ courses is taught by an expert instructor, and every course is available on-demand, so students can learn at their own pace, on their own time, and on any device. They offer a range of cyber security courses and occasionally some that are free.
Cyber security training founded in the UK or elsewhere
Concise Courses – is a leading speciality cyber security training company. They offer a number of free and paid training programmes, and advice for those in cyber security. They operate in the USA and UK, and have successfully offered training to over 15,000 cyber security professionals from over 50 countries. Some of their FREE courses include:
- How to Defeat Advanced Malware
- Regulations and Standards where Encryption Applies
- Phishing User Awareness
- How to Protect your Website from Bot Attacks
Cyber Security for Legal and Accountancy Professionals’ – is a FREE four-module course designed for lawyers and accountants developed with the support of the Law Society and ICAEW, helping such trusted professionals understand what cyber security is and how it affects both them and their clients.
Cyber security training to boost procurement security – GCHQ and BIS with input from CIPS have helped developed a FREE e-learning course, which helps raise awareness of how employees and organizations can mitigate against cyber threats, the relevance of cyber security in the procurement and supply chain function and why it’s so important.
Cyber First – is a brand new sponsored student development scheme. It aims to identify talent, work with the Cyber Security Challenge and other competitions, and offer training and grants. Cyber First builds on GCHQ’s recently announced Cyber Summer Schools programme and other existing national initiatives, such as the Cyber Security Challenge and the National Maths Challenge, that have a proven track record in identifying exceptional talent. There are up to 20 spots on the scheme, which also offers £4,000 grants to each participant.
Cyphinx – is a 3D virtual world, designed to look like a skyscraper, in which budding cyber security professionals can access and play games and competitions that allow them to test, improve and demonstrate their cyber skills to each other and potential employers. It is the first 3D virtual environment to be designed solely to find and nurture cyber talent.
Cyphinx is aimed at all UK and EU citizens who are also resident in the UK. It is designed for a huge range of age groups and levels of existing capability. It doesn’t matter if you are highly technically competent, or brand new to the world of cyber, there will be something for you to see and do.
Inspired Careers – is a new online hub to promote the cyber security profession. It is privately owned but has been developed has been developed with the support of BIS (Department of Business Innovation & Skills) and CREST, the not-for-profit body that represents the technical information security industry. The hub is a one-stop-shop for information about cyber security careers, skills, courses and qualifications. It will help inspire young people and existing workers into the profession.
Introduction to Cyber Security MOOC (massive, open online course) – is a FREE CESG certified training course that’s been developed by The Open University with support from the UK Government’s National Cyber Security Programme. It aims to improve cyber security knowledge and awareness by introducing learners to basic cyber security concepts. This certified training course offers a free eight-week learning opportunity starting at several times during the year, which can be taken at a learner’s convenience. It covers different types of malware and concepts such as network security, cryptography, risk management and the threat landscape. There are no pre-existing requirements to enrolling on the course, and no previous knowledge is assumed.
MDSec – was founded on the principles that traditional security assessment describes problems, but Security Education helps fix or avoid them. They believe that transferring security knowledge into organizations’ core teams, where internal decisions affecting security may be made daily, is one of the most important contributing factors towards embedded, scalable, cost-effective security. They’ve achieved this with publications (The Web Application Hacker’s Handbook, and the Mobile Application Hacker’s Handbook) as well as a long history of security education at global conferences, spanning the past 10 years. MDSec can provide education and knowledge transfer in many forms, including SCORM-compliant online training and instructor-led sessions.
OpenLearn’s Introduction to Information Security – this FREE course begins by explaining why information security and its management are important for any modern organization. The course continues by examining the value that can be placed on information as an organizational asset.
The protection of information assets is the subject of the BSi standard on information security management, and the course explains how an information security management system should be planned, documented, implemented and improved, according to the standard.
This course is based on readings from the book IT Governance: A Manager’s Guide to Data Security & BS 7799/ISO 177799 (2nd edition) by Alan Calder and Steve Watkins. In order to study this free course, you will need to buy this book. You will also need to pay if you want access to the British Standard (mentioned above) using British Standards Online.
Note. The newer more salient resources from Calder & Watkins are ISO\IEC 27001:2013 and ISO\IEC 27002:2013.
Responsible for Information’ for SMEs – is a FREE e-learning course aimed at staff in micro, small and medium-sized enterprises (SMEs). It helps employees and business owners to understand information security and associated risks, and it provides good practice examples and an introduction to protection against fraud and cyber-crime. The course is divided into three modules: General user, Information Asset and Information Risk Owners, Directors and Business Owners. Each module is tailored to the specific needs of the target audience and includes role- specific content.
Simplify IT – is offering regular FREE ½-day Cyber Awareness Training. They’re focusing on SQL injection techniques and how they’re used to gain access to data and systems. Their course aims to show attack and defence postures and enables students to take away practical skills in testing database connections both seen and unseen.
SensePost – “hacks, builds, trains and scans stuff.” Having trained thousands of students on the art of network and application exploitation for the past decade, it’s safe to say they enjoy teaching others how to own networks and applications. Their courses are developed from the work they perform for clients, so that you get a better understanding of how to exploit real-world scenarios.
7Safe – is a leading provider of cyber security and digital investigation advice, education and technical services to all technology-enabled organizations. They offer a range of professional services that are taught by practising consultants to individuals and companies from all industry sectors, including UK Government, law enforcement agencies and even their competitors. Accredited by CREST and the IISP they offer current, relevant skills for the workplace, as well as an exclusive Alumni Network.