cheddarcon-powershell-threat-hunting-registration

    After you press "Request Registration" near the bottom of this form, within 30 seconds, status will be provided at the bottom of the form, you will also be contacted by phone for credit card information.

    Tech Now is pleased to have the opportunity to provide you training for "Windows Security Automation and Threat Hunting with PowerShell” at CheddarCon 2018!

    Scroll down to see the course description.

    First Name*

    Last Name*

    Your Email*

    Your Organization*

    Phone*

    Questions:

    After you press "Request Registration" on this form, within 30 seconds, status will be provided at the bottom of the form, you will also be contacted by phone for credit card information.

    Windows Security Automation and Threat Hunting with PowerShell Seminar

    Location: 400 W Wisconsin Ave, Milwaukee, WI 53203, USA

    Date: October 10, 2018 8:00am – 4:00pm

    Duration: 8 hours

    Audience: Cyber Security professionals and Windows administrators

    Attendees Environment: Laptops not required, but suggested to have better hands-on absorption of subject matter.

    Description:
    PowerShell is both a command-line shell and scripting language. Fight fires quickly using existing or custom PowerShell commands or scripts at the shell. PowerShell is made for Security Operations (SecOps) automation on Windows. This seminar does not require prior programming skills. The seminar focuses on PowerShell programming, giving a beginner skills to be productive in windows scripting to automate tasks and also remediate problems.

    Cyber Security is the objective of this seminar, and the PowerShell examples will demonstrate PowerShell capabilities that help lock down a Windows system and also report security status.

    Objectives:

    PowerShell Overview

    • Getting started running commands
    • Security cmdlets
    • Using and updating the built-in help
    • Execution policies
    • Fun tricks with the ISE graphical editor
    • Piping .NET and COM objects, not text
    • Using properties and methods of objects
    • Helping Linux admins feel more at home
    • Aliases, cmdlets, functions, modules, etc.

    PowerShell Utilities and Tips

    • Customizing your profile script
    • PowerShell remote command execution
    • Security setting across the network
    • File copy via PowerShell remoting
    • Capturing the output of commands
    • Parsing text files and logs with regex patterns
    • Parsing Security Logs
    • Searching remote event logs
    • Mounting the registry as a drive
    • Security settings in the Registry
    • Exporting data to CSV, HTML and JSON files
    • Running scripts as scheduled jobs
    • Continued Security Compliance
    • Pushing out scripts through Group Policy
    • Importing modules and dot-sourcing functions
    • http://www.PowerShellGallery.com

    PowerShell Scripting

    • PowerShell Scripting to implement Security Practices
    • Writing your own functions to automate security status and settings
    • Passing arguments into your scripts
    • Function parameters and returning output
    • Flow control: if-then, foreach, that make security decisions
    • How to pipe data in/out of your scripts for security compliance and reporting

    Attendees to this seminar, Windows Security Automation and Threat Hunting with PowerShell, will receive TechNow approved course materials and expert instruction.[/wr_text][/wr_column][/wr_row]

    CT-425: CompTIA SecurityX

    Course Overview:

    SecurityX®  (formerly known as CASP+)  course prepares you for the CompTIA SecurityX® certification exam (CVO-005) and demonstrates your knowledge and skills in enterprise security, risk management, research and analysis, and the integration of computing, communications, and business disciplines. This course will prepare students for the objectives covered in the CompTIA SecurityX certification exam (CVO-005).

    Attendees to CT-425: CompTIA SecurityX will receive TechNow approved course materials and expert instruction.

    Date/Locations:

    Date/Time Event
    09/15/2025 - 09/19/2025
    09:00 -17:00     		CT-425: CompTIA Advanced Security Practitioner (CASP+)
    TechNow, Inc, San Antonio TX
    12/08/2025 - 12/12/2025
    09:00 -17:00     		CT-425: CompTIA Advanced Security Practitioner (CASP+)
    TechNow, Inc, San Antonio TX

    Duration: 5 days

    Course Objectives:

    • Support IT governance in the enterprise with an emphasis on managing risk
    • Leverage collaboration tools and technology to support enterprise security
    • Use research and analysis to secure the enterprise
    • Integrate advanced authentication and authorization techniques
    • Implement cryptographic techniques
    • Implement security controls for hosts
    • Implement security controls for mobile devices
    • Implement network security
    • Implement security in the systems and software development lifecycle
    • Integrate hosts, storage, networks, applications, virtual environments, and cloud technologies in a secure enterprise architecture
    • Conduct security assessments
    • Respond to and recover from security incidents

    Prerequisites:

    Completion of the following or equivalent knowledge:

    Minimum of 10 years general hands on IT experience

    5 years being hands-on security

    CompTIA Certification: Network+

    CompTIA Certification: Security+

    CompTIA Certification: CySA+

    OR equivalent knowledge

    Comments

    Latest comments from students

    User: clbrack

    Instructor comments: I expect to pass, another great class from technow!

    User: christopher0470

    Instructor comments: Alan takes the time to cover the material so that you understand the concepts and applications of the information presented.

    Facilities comments: I like the location. It was quiet and very conducive to learning.

    Liked the class?  Then let everyone know!

    PM-224: PMI Agile Certified Practitioner (PMI-ACP)® Prep Course

    Course Overview:

    This course is developed for those individuals seeking to pass the Project Management Institute’s PMI-ACP Exam. PMI Agile Certified Practitioner (PMI-ACP)® is one of the newest certifications offered by PMI and is expected to become the industry standard certification for agile over the next few years. The PMI-ACP® certification clearly illustrates to colleagues, organizations or even potential employers that students are ready and able to lead in this new age of product development, management, and delivery.

    While preparing you for the exam, you will explore various approaches to agility including Scrum, Kanban, Lean, Extreme Programming (XP), and Test-Driven Development (TDD). By the end of the course, you’ll have mastered the practices and techniques that Agile practitioners use to improve team performance, resolve problems and engage in continuous process improvements and be equipped with job-ready skills.

    This course provides students with 21 contact hours in agile practices to help attain the Project Management Institute (PMI)® credential.  PMI® and PMI-ACP® are registered marks of the Project Management Institute, Inc.

    Attendees to PM-224: PMI Agile Certified Practitioner (PMI-ACP) Prep Course will receive TechNow approved course materials and expert instruction.

     

    Dates/Locations:

    Date/Time Event
    08/11/2025 - 08/13/2025
    08:00 -16:00     		PM-224: PMI Agile Certified Practitioner (PMI-ACP)® Prep Course
    TechNow, Inc, San Antonio TX
    11/17/2025 - 11/19/2025
    08:00 -16:00     		PM-224: PMI Agile Certified Practitioner (PMI-ACP)® Prep Course
    TechNow, Inc, San Antonio TX

    Duration: 3 Days

    Course Objectives:

    • Agile Principles and Mindset
    • Value-driven delivery
    • Stakeholder engagement
    • Team performance
    • Adaptive planning
    • Problem detection and Resolution
    • Continuous Improvement

    Prerequisites:

    • Secondary degree
    • 21 contact hours of training in agile practices
    • 12 months of general project experience within the last 5 years. A current PMP® or PgMP® will satisfy this requirement but is not required to apply for the PMI-ACP
    • 8 months of agile project experience within the last 3 years

     

    Comments

    Latest comments from students

    Liked the class?  Then let everyone know!

    TN-5415: Installation, Storage, and Compute with Windows Server 2016

     

    Course Overview:

    Course one of a three course series to obtain a Server 2016 MCSA certification. This five-day course is designed primarily for IT professionals who have some experience with Windows Server. It is designed for professionals who will be responsible for managing storage and compute by using Windows Server 2016, and who need to understand the scenarios, requirements, and storage and compute options that are available and applicable to Windows Server 2016.

    The course leads directly to preparing for the(MCSA):Windows Server 2016 exam “70-740: Installation, Storage, and Compute with Windows Server 2016”.  It also maps to Microsoft’s course 20740A, and is part of the Server 2016 MCSA certification. 

    Attendees to TN-5415: Installation, Storage, and Compute with Window Server 2016 will receive TechNow approved course materials and expert instruction.

    Dates/Locations:

    No Events

    Duration: 5 Days

    Course Objectives:

    • Prepare and install Nano Server, a Server Core installation, and plan a server upgrade and migration strategy
    • Describe the various storage options, including partition table formats, basic and dynamic disks, file systems, virtual hard disks, and drive hardware, and explain how to manage disks and volumes
    • Describe enterprise storage solutions, and select the appropriate solution for a given situation
    • Implement and manage Storage Spaces and Data Deduplication
    • Install and configure, and manage Windows and Hyper-V containers
    • Describe the high availability and disaster recovery technologies in Windows Server 2016
    • Plan, create, and manage a failover cluster
    • Implement failover clustering for Hyper-V virtual machines
    • Configure a Network Load Balancing (NLB) cluster, and plan for an NLB implementation
    • Create and manage deployment images
    • Manage, monitor, and maintain virtual machine installations

    Prerequisites:

    • A basic understanding of networking fundamentals
    • An awareness and understanding of security best practices
    • An understanding of basic AD DS concepts
    • Basic knowledge of server hardware
    • Experience supporting and configuring Windows client operating systems such as Windows 10
      

    Liked the class?  Then let everyone know!

    TN-855: Advanced and In-Depth ICD 503 RMF, Controls, and Assessments

    Course Overview:

    This course is very hands-on with respect to SP 800-53 controls as related to ICD-503, leveraging experience with DCD 6/3, and incorporating a broad array of technologies found in the field.  Assessors and Auditors have to face many technologies that are not part of the main stream.  TechNow has gone to great efforts to build a very broad, comprehensive, and complex lab to simulate many scenarios and architectures.  Technologies such as a network appliance that is not a typical infrastructure product, a radio/satellite communications device, or many other technologies that build up a weapon system.  Students learn how controls are integrated into many different devices and how they fit in the overall security architecture of monitoring, reporting, and compliance testing.

    Directly discussed are overlays for different requirements i.e.: tactical, medical, network type: JWICS, SIPR; IC or AF.  TechNow has developed a funnel concept to overlays to exemplify the encapsulation of a control within different requirements.  TechNow has over 15 years experience in Trusted Solaris/Trusted Extensions and labeled security.  Cross Domain overlays are presented that fits the work flow of an assesor.  PII overlays and any overlays that an organization uses and can be made available are also presented.  

    This course allows the student to leverage years of experience in DoD DCD 6/34 for transition to the Risk Management Framework (RMF) applied to the Intelligence Community as mandated by ICD 503.  Utilizing NIST SP 800-37 to establish a baseline of RMF knowledge, the student learns how to integrate the NIST pubs to provide cohesive information assurance architectures and compliance.  ICD 503 scorecard evaluations are integral in demonstrating a successful ICD 503 compliance program.  TechNow's ICD 503 course provides students with the skill to assess security programs and evaluate ICD 503 compliance to build an improvement and sustainable program for score consistency.  TechNow's instructors have unparralleled expertise in federal compliance initiatives, and we bring this expertise instructing students on the complete life cycle of RMF.

    More than a simple checklist, we instruct students not only how to validate essential security controls, programs, and metrics, but that they are operating effectively.  The student leaves the course knowing how to: identify gaps where controls, programs, or metrics are incomplete, missing or ineffective, and provide actionable findings and recommend remediation strategies.  Students learn to internalize NIST pubs to meaningul and effective IA guidelines and work with the Body of Evidence templates which include: Risk Assessment Report (RAR), Systems Security Plan (SSP), Security Assessment Report (SAR), and Plans of Action and Milestone (POAM).

    TechNow training materials are aligned with the most recent set of National Institute of Standards and Technology (NIST), Committee on National Security Systems (CNSS), and Office of the Director of National Intelligence (ODNI) policies standards, processes, policies and instructions to be addressed/explained include ICD 503, ICS 503-1, ICS 500-16, ICS 500-18, ICS 500-27, ICD 502, NIST SP 800-37, NIST SP 800-30, NIST SP 800-53, NIST SP 800-53A, NIST SP 800-137, NIST SP 800-47, CNSSP 22, CNSSI 1253, and CNSSI 4009.

    A majority of time is spent on in-depth compliance review of NIST SP 800-53 controls.  Instruction discusses which method should be used to test and validate each security control and what evidence should be gathered.  This course is not theory or death by power point.  Real scenarios are presented as exercises.  A complete live cyber range simulating the IC is utilized for hands-on labs for techniques of validating and documenting compliance of NIST SP 800-53 controls as related to ICD 503.

    Date/Locations:

    No Events

    Duration: 5 days

    Course Objectives:

    • Establish a baseline of RMF knowledge
    • Validate essential security controls, programs, and metrics
    • DoD DCD 6/3 to ICD 503 Transition
    • Lab Environtment and the Cyber Range
    • Overlays: Tactical, Medical, Network type(JWICS, SIPR; IC or AF), Cross Domain, PII
    • Risk Assessment Report (RAR)
    • Systems Security Plan (SSP)
    • Security Assessment Report (SAR)
    • Plans of Action and Milestone (POAM)

    Prerequisites:

    Experience in the field of auditing and assesments.

    Comments

    Latest comments from students

    Liked the class?  Then let everyone know!