TN-911: Cyber Threat Intelligence (CTI) Analysis and 800-172 Seminar

 

Course Overview:

TechNow’s TN-911: Cyber Threat Intelligence (CTI) Analysis and 800-172 Updates Seminar, is a one day seminar that covers the objectives of TechNow’s TN-905: Cyber Threat Intelligence Analysis five day course in a one day seminar format plus some other security enhancements of 800-172.  Upon request, this seminar can be presented in multi-day format based upon the depth of knowledge required. The NIST PUB 800-172 security enhancement update to 800-171 regarding 03.11.1 Risk Assessment, introduces the security enhancements of a Threat Awareness Program, Threat Hunting, and Predictive Cyber Analytics.  TN-911 distills the TN-905 CTI five day course and aligns it to assessing compliance with 800-172.  For the seminar, selected course labs are converted to demos, and the important points and outcomes of topics are presented. The TN-911 CTI Seminar discusses the applicability of the 800-172 security enhancements to the organization being assessed, and how to think about the the appropriate strength of the controls related to the organizations criticality of the information and the risk involved for contracted work with the DoD.

TechNow’s TN-911: Cyber Threat Intelligence Analysis Seminar addresses significant changes that have been made to SP 800-172 in transitioning to Revision 3, regarding new enhanced security requirements based on (1) the latest threat intelligence and (2) empirical data from cyber-attacks.  With the intent of addressing CUI that may be associated with a critical program or a high value asset.

Those programs and assets are potential targets for advanced persistent threat (APT).  Cyber Threat Intelligence supports the required functions of NIST 800-172 of Penetration Resistant Architecture (PRA), Damage Limiting Operations (DLO) and Cyber Resiliency (CRS).

Regarding 800-172 This seminar includes:

  • 3.2.1E Awareness Training (rev 3 – Advanced Literacy and  Awareness Training)
  • 3.11.6E Supply Chain Risk Management SCRM (rev 3 withdrawn, moved to other controls)
  • 3.11.7E SCRM Planning (rev 3 withdrawn, moved to other controls)
  • 3.12.1E Penetration Testing
  • 800-172, 3.11 Risk Assessment
    • 03.11.01E Threat Awareness Program
    • 03.11.02E Threat Hunting
    • 03.11.03E Predictive Cyber Analytics.

TN-911 CTI Seminar directly discusses 3.11 topics:

    03.11.01E Threat Awareness Program:

    Share threat information, including threat events of 03.11.01E is specifically covered as:

  • Create Indicators of Compromise (IOCs) using STIX
  • Understand a solution for collecting, storing, distributing and sharing cyber security indicators and threats about cyber security incidents analysis and malware analysis.
  • How to assess an environment to validate:
    • Support for day-to-day operations to share structured threat information efficiently.
    • Confirming the presence of curated, frequently updated feeds, and the automation of enrichment   workflow
    • Contextualization of intelligence with internal data to prioritize alerts and improve detection
    • Updated threat hunting based upon inbound Threat Intelligence

    03.11.02E Threat Hunting:

    Introduction to Threat Hunting practices to effectively search for indicators of compromise and to detect, track, and disrupt threats that evade existing controls.

  • How to assess an environment to validate:
  • A formalized process is being followed for Threat Hunting
    • Phases of trigger (incident or CTI), SIEM utilization, and response
  • Integration of machine learning to provide proactive, automated, and scalable Threat Hunting
  • Leveraging threat intelligence for proactive threat hunting by querying historical logs for indicators of compromise (IOCs) from feeds to identify:
  •  Dormant threats
  •  Advance Persistent Threats (APT)

    03.11.03E Predictive Cyber Analytics

    Introduction leveraging data, machine learning, and real-time analysis with automation to anticipate threats before they occur.

  • How to assess an environment to validate:
    • Data aggregation from network logs, user activities, system logs, and external threat intelligence feeds into a centralized platform like a SIEM
  • Use of machine learning algorithms to identify patterns, uncover correlations, and spot anomalies in real-time
  • Integration with incident response workflows
  • Staff skill competency level and integration into Predictive Cyber Analytics to mitigate advanced adversarial techniques against machine learning such as:
    • Attacks of Evasion, Poisoning, and Model Tampering
    • Utilization of exercises or Red Teaming to validate practices and effectiveness of Predictive Cyber Analytics.

    3.2.1E Awareness Training (rev 3 – Advanced Literacy and  Awareness Training)

  •       Validate that training addresses APT

    3.11.6E Supply Chain Risk Management SCRM (rev 3 withdrawn, moved to other controls)

      Validate cybersecurity supply chain risk management C-SCRM:

  • Cross-functional team responsible for supply chain risk management (SCRM) and C-SCRM
  • Validating standard risk management with respect to supply chain
    • FARM (Frame, Assess, Respond, and Monitor)
    • Tasks outlined in NIST Pub 800-161

    3.11.7E SCRM Planning (rev 3 withdrawn, moved to other controls)

  • This is discussed in topic 3.11.6E

    3.12.1E Penetration Testing

        Validate the organization is progressing through standardized Penetration Testing Protocols.

  • Evaluate Penetration Test reports for completeness and scope.

Attendees to TN-911: Cyber Threat Intelligence (CTI) Analysis and 800-172 Seminar will receive TechNow approved course materials and expert instruction.

Seminar Duration: 1 day (more upon request)

Seminar Objectives:

  • Learn to comprehend and develop complex scenarios
  • Identify and create intelligence requirements through practices such as threat modeling
  • Utilize threat modeling to drive intelligence handling and practices 
  • Breakdown tactical, operational, and strategic-level threat intelligence
  • Generate threat intelligence to detect, respond to, and defeat focused and targeted threats
  • How to collect adversary information creating better value CTI
  • How to filter and qualify external sources, mitigating low integrity intelligence
  • Create Indicators of Compromise (IOCs) in STIX
  • Move security maturity past IOCs into understanding and countering the behavioral tradecraft of threats
  • Breaking down threats mapped against their tradecraft to tweak IOCs
  • Establish structured analytical techniques to be successful in any security role
  • Learn and apply structured principles in support of CTI and how to communicate that to any security role.

Seminar Prerequisites:

 

Contact Us

    After you press "Request Information" near the bottom of this form, within 30 seconds, status will be provided at the bottom of the form

    Tech Now can provide on-site training anywhere in the world. We'll customize a training package to meet your needs!

    First Name*

    Last Name*

    Your Email*

    Your Company*

    Your State*

    Area of Interest

    Phone

    Questions:

    After you press "Request Information" on this form, within 30 seconds, status will be provided at the bottom of the form

    from page:

    in   

    AZ-900: Microsoft Azure Fundamentals

     

    Course Overview:

    This two-day course will provide foundational level knowledge on cloud concepts; core Azure services; security, privacy, compliance, and trust; and Azure pricing and support.

    NOTE: This course provides an Azure pass and time for you to participate in hands-on labs. The content for this course aligns to AZ-900 exam objective domain

    TechNow has worked worldwide enterprise infrastructures for over 20 years and has developed demos and labs to exemplify the techniques required to demonstrate cloud technologies and to effectively manage security in the cloud environment

    Attendees to AZ-900: Microsoft Azure Fundamentals will receive TechNow approved course materials and expert instruction.

    Date/Locations:

    Date/Time Event
    08/03/2026 - 08/04/2026
    08:00 -16:00     		AZ-900: Microsoft Azure Fundamentals
    TechNow, Inc, San Antonio TX
    11/09/2026 - 11/10/2026
    08:00 -16:00     		AZ-900: Microsoft Azure Fundamentals
    TechNow, Inc, San Antonio TX

    Course Duration: 3 days

    Course Outline:

    • Cloud Concepts
    • Core Azure Services
    • Security, Privacy, Compliance, And Trust
    • Azure Pricing and Support

    Lab Objectives:

      • Create a virtual machine
      • Deploy Azure container instances
      • Create a virtual network
      • Create blob storage
      • Create a SQL database
      • Implement an Azure IoT Hub
      • Implement Azure Functions
      • Create a web app
      • Create a VM with a Template
      • Create a VM with PowerShell
      • Create a VM with CLI
      • Secure network traffic
      • Implement Azure key vault
      • Create an Azure Policy
      • Manage access with RBAC
      • Manage resource locks
      • Implement resource tagging
      • Exploring the Trust Center
      • Use the Azure Pricing Calculator
      • Use the Azure TCO Calculator
      • Open a Support request
      • Calculate composite SLAs
      • Access Azure Preview features

    Prerequisites :

        • There are no prerequisites for taking this course. Technical IT experience is not required however some general IT knowledge or experience would be beneficial.
        • This course is suitable for IT personnel who are just beginning to work with Azure.
        • This course primarily uses the Azure portal to create services and does not require scripting skills.
        • Students in this course will gain confidence to take other role-based courses and certifications, such as Azure Administrator.
        • This course provides an Azure pass and optional lab environment.

    Comments

    Latest comments from students

     

    Liked the class?  Then let everyone know!

    TN-425: Certified Offensive AI Security Professional (C|OASP)

    Certified Offensive AI Security Professional (COASP) validates the competencies required for practitioners who need to demonstrate offensive AI security skills, emulating adversaries, validating defenses, and leading red-team/blue-team exercises to keep AI resilient, reliable, and auditable

    The Certified Offensive AI Security Professional (COASP) equips you to identify and neutralize AI-specific threats before attackers do. And Bridges security, engineering, and data science so controls exist across the full AI life cycle.

    Participants will gain hands-on experience to perform end-to-end adversarial testing and deliver defensive validation evidence including the ability to simulate adversarial AI kill chains, Harden AI architectures by secure system prompts, context windows, tool integrations, RAG pipelines, and agent memory, Conducting AI security assessments aligned to MITRE ATLAS, OWASP LLM/ML Top 10, NIST AI RMF, and DoD Test & Evaluation practices , This course covers how to build SOC-ready capabilities for AI-focused detection logic, incident playbooks, and forensic procedures , & how to execute prompt injection, adversarial prompting , Assess AI supply-chain risk , Implement defensive engineering controls and Produce assurance and compliance artifacts.

    By the end of the course, learners will be well-prepared to take the Certified Offensive AI Security Professional (COASP) exam and demonstrate the ability to exploit vulnerabilities in LLMs and agents, and build defense that survive real world attacks, learners will master offensive techniques that break AI before the attackers do.

     

    Course Outline: 

    01. Offensive AI and AI System Hacking Methodology

    02. AI Reconnaissance and Attack Surface Mapping

    03. AI Vulnerability Scanning and Fuzzing

    04. Prompt Injection and LLM Application Attacks

    05. Adversarial Machine Learning and Model Privacy Attacks

    06. Data and Training Pipeline Attacks

    07. Agentic AI and Model-to-Model Attacks

    08. AI Infrastructure and Supply Chain Attacks

    09. AI Security Testing, Evaluation, and Hardening

    10. AI Incident Response and Forensics 

     

    Prerequisites: 

    TN-412: Artificial Intelligence Essentials (AI|E) 

     

    Dates/Locations:

    No Events

    TN-205: A+ Skills Class

    Course Overview:

    TN-205: A+ Skills Class provides students with the skills, knowledge and understanding that will enable them to install, configure, upgrade, troubleshoot and repair personal computer systems.  The A+ curriculum is excellent preparation for almost any computer related career or position.  This course lays the foundation for further study in networking and programming.  Designed for the new computer professional who has support knowledge of PC hardware, but needs to expand upon that knowledge.

    Attendees to the TN-205: A+ Skills Class will receive TechNow approved course materials and expert instruction.

    Please Note:  This course is designed with a focus on skills and is not a preparation course for certification.

    Dates/Locations:

    No Events

    Duration: 5 Days

    Course Objectives:

    • Identifying, Adding & Removing System Components
    • Installation, Configuring & System Optimization
    • Diagnosing & Troubleshooting Problems
    • Power Protection & Safety Procedures
    • Motherboards, Processors & Memory
    • Printers
    • Basic Networking
    • Operating System Fundamentals
    • Installation, Configuration & Upgrade
    • Diagnosing & Troubleshooting
    • Networks

    Prerequisites:

    • None

    Comments

    Latest comments from students

    Liked the class?  Then let everyone know!