Cyber Security Training in Cascais

This instructor-led, live training in Cascais (online or onsite) is designed for advanced-level cybersecurity professionals, AI engineers, and IoT developers who aim to implement robust security measures and resilience strategies for Edge AI systems.

Upon completion of this training, participants will be able to:

• Identify security risks and vulnerabilities in Edge AI deployments.
• Deploy encryption and authentication techniques to protect data.
• Design resilient Edge AI architectures capable of withstanding cyber threats.
• Apply secure AI model deployment strategies within edge environments.

This instructor-led, live training in Cascais (online or onsite) is designed for cybersecurity professionals and data scientists at an intermediate level who wish to leverage LLMs to strengthen cybersecurity measures and threat intelligence.

Upon completing this training, participants will be able to:

• Grasp the role of LLMs in cybersecurity.
• Implement LLMs for threat detection and analysis.
• Utilize LLMs for security automation and response.
• Integrate LLMs with existing security infrastructure.

This instructor-led live training in Cascais (online or onsite) is designed for intermediate to advanced cybersecurity professionals and technical leads who wish to learn how to deploy AI models to strengthen security workflows, automate threat detection and response, and conduct predictive analysis.

Upon completion of this training, participants will be able to:

• Grasp the role of AI in modern cyber security.
• Construct machine learning models for anomaly and threat detection.
• Deploy AI to automate incident response and security operations.
• Assess the ethical and operational implications of AI in cybersecurity.

This instructor-led live training in Cascais (available online or onsite) targets intermediate-level analysts aiming to effectively analyze, secure, and protect their organization's data and networks from cyber threats.

By the conclusion of this training, participants will be able to:

• Gain a comprehensive understanding of the current cybersecurity landscape.
• Learn and apply industry-standard cybersecurity frameworks (e.g., NIST, ISO/IEC 27001) and best practices to enhance their organization's security posture.
• Implement effective network security measures, including configuring firewalls, VPNs, IDS/IPS systems, and applying encryption techniques to protect data at rest and in transit.
• Identify, analyze, and respond to cybersecurity incidents using threat intelligence, SIEM tools, and incident response plans.

Description:

CISA® stands as the world's most renowned and widely recognised certification for professionals operating within the fields of IT audit and IT risk consulting.

Our CISA course is an intensive, highly competitive, and exam-focused training programme. Drawing on our experience of delivering over 150 CISA training sessions in Europe and globally, and having trained more than 1,200 delegates, Net Security has developed its in-house CISA training materials with the primary objective of ensuring delegates pass the ISACA CISA® Exam. Our methodology emphasises a deep understanding of CISA IS auditing concepts, coupled with extensive practice using question banks released by ISACA over the past three years. Over time, CISA-qualified professionals have seen tremendous demand from leading accounting firms, global banks, advisory firms, assurance departments, and internal audit teams.

While delegates may possess years of experience in IT auditing, the approach to solving CISA questionnaires relies entirely on their grasp of globally accepted IT assurance practices. The CISA exam is notably challenging due to the tight margin between two plausible answers, a scenario where ISACA tests your understanding of global IT auditing practices. To address these challenges, we employ expert trainers with extensive experience in delivering CISA training worldwide.

The Net Security CISA manual covers all exam-relevant concepts, case studies, and Q&A sections across the five CISA domains. Furthermore, the trainer provides key supporting materials throughout the course, including relevant CISA notes, question banks, a CISA glossary, videos, revision documents, exam tips, and CISA mind maps.

Goal:

The ultimate aim is to help you pass your CISA examination on the first attempt.

Objectives:

• Apply gained knowledge in a practical manner that benefits your organisation.
• Deliver audit services in compliance with IT audit standards.
• Provide assurance regarding leadership, organisational structure, and processes.
• Provide assurance on the acquisition, development, testing, and implementation of IT assets.
• Provide assurance on IT operations, including service operations and third-party management.
• Provide assurance on the organisation’s security policies, standards, procedures, and controls to ensure the confidentiality, integrity, and availability of information assets.

Target Audience:

Finance/CPA professionals, IT professionals, Internal & External auditors, and information security and risk consulting professionals.

Honeywell ProWatch is an enterprise-grade security management platform that brings together access control, video surveillance, and intrusion detection into a unified solution.

This instructor-led, live training session (available online or onsite) is designed for beginner to intermediate-level security professionals looking to configure, manage, and optimize ProWatch systems for secure operations.

Upon completion of this training, participants will be able to:

• Install and configure Honeywell ProWatch software and hardware.
• Manage user access and permissions across multiple facilities.
• Integrate ProWatch with video and intrusion systems.
• Utilize advanced monitoring, reporting, and audit features.

Format of the Course

• Interactive lecture and discussion.
• Hands-on configuration and lab exercises.
• Practical integration scenarios with ProWatch features.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

This instructor-led, live training in Cascais (online or onsite) is aimed at experienced developers who wish to gain a comprehensive understanding of Python programming and its applications in cybersecurity.

By the end of this training, participants will be able to:

• Use Python programming for defensive cybersecurity.
• Understand and use Python for ethical offensive techniques and digital forensics tasks.
• Recognize legal and ethical considerations surrounding offensive cybersecurity and vulnerability disclosure.

This instructor-led, live training in Cascais (online or onsite) targets intermediate-level IT security professionals aiming to develop competencies in security monitoring, analysis, and response.

By the end of this training, participants will be able to:

• Understand the role of a Blue Team in cybersecurity operations.
• Use SIEM tools for security monitoring and log analysis.
• Detect, analyze, and respond to security incidents.
• Perform network traffic analysis and threat intelligence gathering.
• Apply best practices in security operations center (SOC) workflows.

This instructor-led, live training in Cascais (online or onsite) is aimed at security professionals who wish to learn how to troubleshoot Palo Alto Networks' next-generation firewalls.

By the end of this training, participants will be able to:

• Understand the architecture of the next-generation firewall.
• Investigate and troubleshoot networking issues using firewall tools.
• Analyze advanced logs to resolve real-life scenarios.

This instructor-led, live training in Cascais (online or onsite) is designed for developers and anyone interested in learning to use OAuth to grant applications secure delegated access.

Upon completing this training, participants will be able to:

• Grasp the fundamentals of OAuth.
• Comprehend native applications and their specific security challenges when employing OAuth.
• Learn and understand common extensions to OAuth protocols.
• Integrate with any OAuth authorization server.

User session recording technology captures, monitors, and audits user activity on IT systems, providing insights for security, compliance, and forensic investigations.

This instructor-led, live training (online or onsite) is aimed at beginner-level to intermediate-level IT and security professionals who wish to implement user session recording solutions to enhance monitoring, compliance, and accountability.

By the end of this training, participants will be able to:

• Understand the principles of user session recording.
• Deploy and configure session recording solutions.
• Analyze and audit recorded sessions for compliance.
• Integrate session recording with security monitoring systems.

Format of the Course

• Interactive lecture and discussion.
• Lots of exercises and practice.
• Hands-on implementation in a live-lab environment.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

This instructor-led, live training in Cascais (online or onsite) is designed for beginner to intermediate system administrators and security professionals who wish to learn how to implement Cloudflare for content delivery and cloud security, as well as mitigate DDoS attacks.

By the end of this training, participants will be able to:

• Configure Cloudflare for their websites.
• Set up DNS records and SSL certificates.
• Implement Cloudflare for content delivery and caching.
• Protect their websites from DDoS attacks.
• Implement firewall rules to restrict traffic to their websites.

Today, numerous programming languages enable code compilation for .NET and ASP.NET frameworks. While this environment offers robust security development tools, developers must master architecture-level and coding-level techniques to implement effective security measures, prevent vulnerabilities, and mitigate their exploitation.

This course aims to equip developers with hands-on skills to prevent untrusted code from executing privileged actions, protect resources via strong authentication and authorization, manage remote procedure calls and sessions, and explore various functional implementations. A dedicated section covers the configuration and hardening of .NET and ASP.NET environments for enhanced security.

A concise introduction to cryptographic fundamentals establishes a practical baseline for understanding the purpose and operation of various algorithms, setting the stage for exploring cryptographic features available in .NET. This is followed by an examination of recent cryptographic vulnerabilities, including those affecting specific algorithms and protocols, as well as side-channel attacks.

The course introduces various vulnerabilities, beginning with common programming issues in .NET, such as input validation errors, error handling flaws, and race conditions. Special attention is given to XML security, while the segment on ASP.NET-specific vulnerabilities addresses unique threats, including ViewState attacks and string termination attacks.

Participants attending this course will

• Understand the core concepts of security, IT security, and secure coding
• Learn to utilize the security features inherent in the .NET development environment
• Gain practical knowledge of cryptography
• Understand recent attacks targeting cryptosystems
• Learn about recent vulnerabilities in .NET and ASP.NET
• Identify typical coding mistakes and learn how to avoid them
• Acquire practical skills in using security testing tools
• Access resources and further readings on secure coding practices

Audience

Developers

Cloud adoption fundamentally alters how applications are constructed, deployed, and maintained—shifting responsibilities between providers and customers while introducing cloud-native platforms (such as containers, serverless environments, and managed services) that demand adapted security controls. Consequently, security strategies must encompass infrastructure hardening, identity and access management, data protection, secure development methodologies, and specific cloud threat vectors.

This instructor-led, live training (available online or onsite) targets intermediate-level developers, security engineers, and IT managers seeking practical, hands-on skills to secure cloud applications and their underlying infrastructure. Participants will learn repeatable controls and assessment techniques aligned with current industry frameworks and cloud provider guidelines.

Upon completing this training, participants will be capable of:

• Explaining the cloud shared-responsibility model and applying it to application security decisions.
• Hardening cloud infrastructure (IaaS), securing platform services (PaaS), and evaluating SaaS configurations.
• Applying secure coding standards and OWASP-based mitigation patterns to cloud-hosted applications.
• Integrating security tooling into CI/CD pipelines (including SAST, DAST, IAST, and RASP) and adopting shift-left practices.

Format of the Course

• Interactive lectures and discussions supported by live demonstrations.
• Hands-on labs utilizing cloud consoles, containers, serverless functions, and CI/CD pipelines.
• Practical exercises focusing on secure configuration, vulnerability scanning, attack simulation, and remediation planning.

Course Customization Options

• To request customized training for this course, please contact us to arrange.

As a developer, your responsibility is to write robust, error-free code.

Imagine if, despite your best efforts, the code you have written throughout your career contained hidden vulnerabilities you were unaware of. Consider this: as you read this, attackers may be attempting to breach your systems. How likely are they to succeed? What if they managed to exfiltrate your database and sell it on the black market?

This web application security course will transform your perspective on coding. Through hands-on training, we will expose you to every tactic attackers use and teach you how to counter them, leaving you with an insatiable desire to learn more.

It is up to you to stay ahead of the curve and establish yourself as a pivotal figure in the battle against cybercrime.

Participants will:

• Grasp fundamental concepts of security, IT security, and secure coding
• Identify web vulnerabilities beyond the OWASP Top Ten and learn how to prevent them
• Explore client-side vulnerabilities and secure coding practices
• Understand Node.js security principles
• Gain insights into MongoDB security
• Develop a practical understanding of cryptography
• Comprehend essential security protocols
• Understand the security concepts underpinning web services
• Learn about JSON security
• Acquire practical knowledge of security testing techniques and tools
• Learn how to manage vulnerabilities in the platforms, frameworks, and libraries you use
• Access resources and further reading on secure coding practices

Today, numerous programming languages allow code to be compiled for the .NET and ASP.NET frameworks. While the environment offers robust capabilities for security development, it is essential for developers to master architecture-level and coding-level techniques to implement desired security functionalities, prevent vulnerabilities, and mitigate their potential exploitation.

This course aims to equip developers with the skills to prevent untrusted code from executing privileged actions, protect resources via robust authentication and authorization mechanisms, manage remote procedure calls and sessions, and explore various implementation strategies through extensive hands-on exercises.

The curriculum introduces vulnerabilities by examining typical programming pitfalls associated with .NET. The discussion on ASP.NET vulnerabilities addresses various environment configurations and their impact. Furthermore, the topic of ASP.NET-specific vulnerabilities covers general web application security challenges, alongside specialized issues such as ViewState attacks and string termination exploits.

Participants attending this course will

• Grasp the fundamental concepts of security, IT security, and secure coding practices
• Identify web vulnerabilities beyond the OWASP Top Ten and learn how to avoid them
• Utilize various security features within the .NET development environment
• Acquire practical knowledge in employing security testing tools
• Recognize common coding errors and understand how to prevent them
• Stay informed about recent vulnerabilities in .NET and ASP.NET
• Access sources and further reading materials on secure coding practices

Audience

Developers

This comprehensive core training offers an in-depth look at secure software design, development, and testing through the lens of the Microsoft Secure Development Lifecycle (SDL). It begins with a level 100 overview of the fundamental building blocks of the SDL, followed by design techniques aimed at detecting and remedying flaws during the early stages of the development process.

Focusing on the development phase, the course provides an overview of common security-related programming bugs found in both managed and native code. The curriculum presents attack vectors associated with these vulnerabilities, alongside their corresponding mitigation techniques, all illustrated through numerous hands-on exercises that offer participants practical, live hacking experience. Following the introduction to various security testing methods, the effectiveness of different testing tools is demonstrated. Participants gain a clear understanding of how these tools operate through practical exercises, applying them to the vulnerable code examples discussed throughout the course.

Participants attending this course will

Understand the fundamental concepts of security, IT security, and secure coding

Become familiar with the essential steps of the Microsoft Secure Development Lifecycle

Learn secure design and development practices

Learn about secure implementation principles

Understand security testing methodology

• Access sources and further reading materials on secure coding practices

Audience

Developers, Managers

Web Application Security is the discipline dedicated to safeguarding online applications against contemporary security threats and vulnerabilities, including those that are platform-agnostic and impact core application architecture and input handling.

This instructor-led, live training (available online or onsite) is designed for intermediate-level developers who wish to understand and apply secure coding techniques to mitigate web vulnerabilities and implement robust web application security.

By the end of this training, participants will be able to:

• Understand fundamental concepts of security, IT security, and secure coding.
• Learn about web vulnerabilities beyond the OWASP Top Ten and know how to avoid them.
• Learn about client-side vulnerabilities and secure coding practices.
• Gain a practical understanding of cryptography.
• Understand the security concepts of web services.
• Acquire practical knowledge in using security testing tools.
• Access sources and further readings on secure coding practices.

Format of the Course

• Interactive lecture and discussion.
• Ample exercises and practice.
• Hands-on implementation in a live-lab environment.

Course Customization Options

• To request customized training for this course, please contact us to arrange.

This course explores the management of an incident response team. Considering the frequency and complexity of modern cyber attacks, incident response has become a critical function for organizations.

As the final line of defense, effective incident response relies on strong management processes to detect and respond efficiently. Managing such a team demands specialized skills and knowledge.

Cyber Security involves the application of technologies, controls, and processes to safeguard computer systems, servers, networks, devices, applications, and data against malicious cyber attacks.

This instructor-led, live training (available online or onsite) is designed for individuals who wish to learn how to protect internet-connected systems from various cyber threats.

By the end of this training, participants will be able to:

• Understand the core concepts of Cyber Security.
• Identify and comprehend different types of Cyber Security threats.
• Learn the processes and best practices for protecting internet-connected systems from cyber attacks.

Course Format

• Interactive lectures and discussions.
• Extensive exercises and practice sessions.
• Hands-on implementation in a live-lab environment.

Course Customization Options

• To request customized training for this course, please contact us to arrange.

This instructor-led, live training in Cascais (online or onsite) is designed for IT professionals seeking to learn and apply the fundamentals of cybersecurity practices, processes, and tools within their organizations.

By the end of this training, participants will be able to:

• Grasp cybersecurity concepts, definitions, architecture, and principles.
• Acquire skills to secure and protect digital assets (networks, systems, applications, and data).
• Deploy security models, frameworks, operational techniques, and incident handling procedures.
• Assess and mitigate the impact of cyber attacks, risks, threats, and vulnerabilities.
• Gain insights into cybersecurity challenges associated with emerging technologies.

This instructor-led, live training in Cascais (online or on-site) is designed for software engineers and IT professionals who wish to deepen their knowledge of CyBOK and strengthen their theoretical and practical cyber security skills.

Upon completion of this training, participants will be able to:

• Grasp the core concepts, definitions, and principles of cyber security.
• Develop in-depth cyber security expertise by applying the CyBOK knowledge areas.
• Acquire comprehensive foundational knowledge to effectively implement the CyBOK framework.
• Support community and organizational initiatives to prioritize data security and privacy.
• Explore opportunities to obtain specializations and credentials relevant to cyber security roles.

This course is designed for individuals who need to gather intelligence or evidence from the Dark Web. This typically includes those employed in government or law enforcement, but it may also be relevant to the private sector.

Description:

This course immerses students in an interactive learning environment where they are taught how to scan, test, exploit, and secure their own systems. The lab-intensive approach provides each student with in-depth knowledge and practical experience with current essential security systems. Students begin by understanding how perimeter defences function, then proceed to scan and attack their own networks—ensuring no real network is harmed. They will also learn how intruders escalate privileges and what steps can be taken to secure a system. The curriculum also covers Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows, and Virus Creation.

Target Audience:

This course is highly beneficial for security officers, auditors, security professionals, site administrators, and anyone concerned about the integrity of network infrastructure.

This course offers an expert introduction to the newly enacted Accessibility Law, equipping developers with the practical skills needed to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the law's significance and implications, the curriculum rapidly transitions into hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

Designed for leaders and managers, this course offers a comprehensive overview of the critical issues and activities within cybersecurity.

Participants will gain insights into various topics that expand their understanding and refine their executive decision-making capabilities concerning cybersecurity threats.
 

Upon completion of this training, participants will be able to:

• Understand the implications of internet and social network privacy
• Recognise Personally Identifiable Information (PII) and its significance
• Learn methods to secure online assets
• Understand how to safeguard the privacy of business users
• Gain knowledge of cyber laws that protect privacy

Format of the Course

• Interactive lectures and discussions
• Extensive exercises and practice sessions
• Hands-on implementation in a live-lab environment

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

This instructor-led live training in Cascais (online or onsite) is aimed at system administrators who wish to use FreeIPA to centralize the authentication, authorization and account information for their organization's users, groups, and machines.

By the end of this training, participants will be able to:

• Install and configure FreeIPA.
• Manage Linux users and clients from a single central location.
• Use FreeIPA's CLI, Web UI and RPC interface to set up and manage permissions.
• Enable Single Sign On authentication across all systems, services and applications.
• Integrate FreeIPA with Windows Active Directory.
• Backup, replicate and migrate an FreeIPA server.

Target Audience:

This course is designed for individuals seeking to understand information security and explore potential career trajectories within the sector. It is suitable for people from diverse backgrounds, including those with limited prior technical knowledge.

Course Objectives:

Attendees should:

• Gain a broad understanding of information security concepts and principles.
• Be able to identify key threats and vulnerabilities.
• Have the capability to explore various career options and specialisations within information security.
• Develop a foundation for further learning and exploration in the field.

Format of the Course:

• Interactive lecture and group discussions.
• Practical exercises and feedback sessions.
• Participants are encouraged to bring questions and participate actively in discussions.

This agenda is flexible and can be adjusted based on time constraints and audience interests. Customised versions might include interactive elements such as quizzes, polls, and group discussions.

The course will provide resources and information about further learning, professional organisations, and career resources will be provided.

Course Customisation Options

• To request a customised training for this course, please contact us to arrange.

This training course demonstrates how risk assessment for information security is conducted by integrating information from ISO/IEC 27005:2022 and ISO/IEC 27001. Alongside theoretical knowledge, the course includes practical exercises, quizzes, and case studies, making it a highly engaging learning experience.

This instructor-led, live Payment Card Industry Professional training in Cascais (online or onsite) offers a professional qualification for industry practitioners seeking to demonstrate their expertise and comprehension of the PCI Data Security Standard (PCI DSS).

Upon completion of this training, participants will be able to:

• Grasp the payment process and the PCI standards established to safeguard it.
• Comprehend the roles and responsibilities of entities within the payment industry.
• Gain a thorough insight into and understanding of the 12 PCI DSS requirements.
• Showcase knowledge of PCI DSS and its application to organizations involved in the transaction process.