CSXP: CSX Practitioner Boot Camp


Duration: 5 Days
CPE Credits: 50
Course Number: SEC-330
CSX Practitioner training: ISACA logo - Intrinsec

This CSX Practitioner (CSXP) Boot Camp is a five day, 50 CPE course offered to you by Intrinsec Security – an official training partner of ISACA.

CSX Practitioner Training Information
Course Overview

The CSX Practitioner (CSXP) Boot Camp is a 5-day, immersive cyber security training course designed to help you build critical technical skills by learning complex concepts and practice applying industry-leading methods. This ISACA authorized CSXP Boot Camp is conducted in a live, lab-based network environment ? not a simulated environment like other courses. Students will go through complex cyber security scenarios based on recent, real-world scenarios and be given live incidents to detect and mitigate. Aligned with global cyber security frameworks.

CSX Practitioner training consists of at least 50% hands-on lab exercise, combined with instruction on key cyber security concepts. Each day of training represents a new lesson, focused on skills and concepts in one of five areas: (1) Identify, (2) Protect, (3) Detect, (4) Respond and (5) Recover. Each lesson covered in the course is matched with practice labs and tools, and attendees will receive a 6-month subscription to the virtual cyber lab environment where they can continue practicing and building technical skills.

Your Registration Includes
  • 5 Days of CSX Practitioner Training from an Authorized ISACA Instructor
  • ISACA issued CSX Practitioner Training Courseware / Review Manual
  • 6-Month Subscription to ISACA’s Corresponding CSX Labs
  • 1 CSX Practitioner Exam Voucher

What You Will Learn

This ISACA authorized CSX Practitioner training seminar is based on the five domains featured in the CSXP certification program, ensuring students successfully prepare for the exam while also enhancing their overall competencies in cyber security.

  • Domain 1: Identify
  • Domain 2: Protect
  • Domain 3: Detect
  • Domain 4: Respond
  • Domain 5: Recover

Domain 1: Identify

Identify is the first domain covered in this official CSX Practitioner (CSXP) Boot Camp. In it, students will learn about the identification, assessment, and evaluation of assets, threats, and vulnerabilities in both internal and external networks.

Course Topics
  • Hardware Software Identification and Documentation
  • Network Discovery Tools
  • Sensitive Information Discovery
  • Vulnerability Assessment Process
  • Patch Upgrade Configure Vulnerability Scanners
Labs and Exercises
  • Preliminary Scanning
  • Additional Scanning Options
  • Sensitive Information Identification
  • Vulnerability Scanner Set-up and Configuration
  • Vulnerability Scanner Set-up and Configuration, Part 2

Domain 2: Protect

Protect is the second domain students focus on in the CSXP training program. It reviews the implementation of cyber security controls to protect a system from identified threats.

Course Topics
  • Specific Cyber Controls
  • Collecting Event Data
  • Verifying the Effectiveness of Controls
  • Monitoring Controls
  • Updating Cyber Security Controls
  • Patch Management
  • Verifying Identities and Credentials
  • Cyber Security Procedures Standards
Labs and Exercises
  • System Hardening
  • Firewall Setup and Configuration
  • Microsoft Baseline Security Analyzer
  • IDS Setup
  • Personal Security Products
  • Linux Users and Groups

Domain 3: Detect

The third section of this CSX Practitioner (CSXP) Boot Camp is Detection. In it, students review the detection of network and system incidents, events and compromise indicators, along with an assessment of potential damage.

Course Topics
  • Analyze Network Traffic Using Monitors
  • Detect Malicious Activity AntiVirus
  • Assess Available Event Information
  • Baselines for Anomaly Detection
  • Initial Attack Analysis
  • Incident Escalation Reporting
  • Change Implementation Escalation
Labs and Exercises
  • Using Snort and Wireshark to Analyze Traffic
  • Detect the Introduction and Execution of Malicious Activity
  • Analyze and Classify Malware
  • Windows Event Log Manipulation via Windows Event Viewer
  • Host Data Integrity Baselining
  • Performing Network Packet Analysis

Domain 4: Respond

The fourth domain in the CSXP boot camp is Respond. The main agenda here is for students to review the execution of comprehensive incident response plans and mitigation of cyber incidents.

Course Topics
  • Defined Response Plan Execution
  • Network Isolation
  • Disable User Accounts
  • Blocking Traffic
  • Documentation
  • Incident Report
Labs and Exercises
  • Incident Detection and Identification
  • Remove Trojan
  • Block Incoming Traffic on Known Port
  • Implement Single System Changes in Firewall
  • Conduct Supplemental Monitoring
  • Create Custom Snort Rules

Domain 5: Recover

Recover is the fifth and final domain students cover in this official CSXP Boot Camp. It focuses on the recovery from incidents and disasters, including post incident-response documentation and implementation of continuity plans.

Course Topics
  • Industry Best Practices
  • Disaster Recovery and BC Plans
  • Cyber System Restoration
  • Data Backup and Restoration Key Concepts
  • Actualizing Data Backups and Recovery
  • Implementing Patches and Updates
  • Ensuring Data Integrity
  • Post-Incident Review
Labs and Exercises
  • Comprehensive Lab Response
  • Patches and Updates
  • Data Backup and Recovery
  • Recovering Data and Data Integrity Checks
  • Post-Incident Service Restoration

The CSX Practitioner course is intended for professionals with roles focusing on cyber security – with a minimum of one to five years of experience. Students who register for this course should be proficient in the following areas:

  • Network Scanning
  • Specialized Port Scans
  • Network Topologies
  • Network Log Analysis
  • Centralized Monitoring
  • Hotfix Distribution
  • Vulnerability Scanning
  • Traffic Monitoring
  • Compromise Indicators
  • False Positive Identification
  • Packet Analysis
  • Used Account Controls

Any questions?

Read our Frequently Asked Questions page or simply send your questions to us directly via our Contact Us page or our Live Chat.


No public dates are currently scheduled. Request Group Training!


Request Group Training

  • This field is for validation purposes and should be left unchanged.