Cybersecurity Toolkit

2.0 Trainings

This section provides information and links from multiple agencies to trainings not only directly connected to the online course, but also additional suggested trainings. Unless stated otherwise, all trainings are free for school districts, open-enrollment charter schools, and public junior colleges to attend. These trainings can enhance your skills and knowledge of school safety.

Cybersecurity Considerations For K-12 Schools and School Districts (REMS)

This course has been designed to help you understand cybersecurity considerations that K-12 schools and school districts need to keep in mind to inform your school emergency operations plans (EOPs) and safety, security, emergency management, and preparedness (school safety) programs. Learn about the types of evolving cyber threats facing school and school district networks and systems; the before, during, and after aspects of preparing for, responding to, and recovering from cyber threats; and how cybersecurity can be integrated into new and existing EOPs. This course is recommended for members of school and school district information technology teams; core school and school district safety planning teams; and school, school district, and community partner personnel with a role and/or responsibility in school safety.

Cybersecurity Considerations For K-12 Schools and School Districts (REMS)

Security Awareness and Training Service: Education Edition (Fortinet)

Tied to the White House's Cyber Education and Workforce Initiatives, Fortinet is making significant progress in deploying its Security Awareness and Training Service, which was customized for the education sector and made available at no cost to all K-12 school districts and systems across the United States. The expansion of its free training provides the potential to help more than 8 million staff and faculty members and over 55 million K-12 students become more cyber-informed and improve their skillsets to avoid breaches at school, at home, and everywhere they go. This curriculum also includes teacher guides, ready-to-teach lesson plans, lesson slides, student handouts, and multimedia assets for teachers to pass their knowledge onto their students. All is free-of-charge to all K-12 school districts.

Security Awareness and Training Service: Education Edition (Fortinet)

Cybersecurity Courses by the Texas A&M Engineering Extension Service (TEEX)

Cybersecurity Courses by the Texas A&M Engineering Extension Service (TEEX)
TEEX courses

AWR383 - Cybersecurity Risk Awareness for Officials and Senior Management: This 4-hour non-technical course is meant to develop awareness of cybersecurity risks so that elected officials, appointed officials, and other senior managers are better informed to properly protect the jurisdiction/organization during a cybersecurity incident. It is designed to help officials and senior management work more effectively with their Information Technology (IT) departments to mitigate cyber threats. The training is tailored to government, critical infrastructure, and private sector personnel who have the responsibility for directing and developing policy within their organization.

AWR383 - Cybersecurity Risk Awareness for Officials and Senior Management: This 4-hour non-technical course is meant to develop awareness of cybersecurity risks so that elected officials, appointed officials, and other senior managers are better informed to properly protect the jurisdiction/organization during a cybersecurity incident. It is designed to help officials and senior management work more effectively with their Information Technology (IT) departments to mitigate cyber threats. The training is tailored to government, critical infrastructure, and private sector personnel who have the responsibility for directing and developing policy within their organization.

AWR421 - Demystifying Cyber Attacks: This 8-hour course provides non-technical students a better understanding of various cyber attacks and how they occur. Cyber attacks will be demonstrated through discussion, videos, pre-recorded attacks, and live example attacks. Students will be introduced to the Cyber Kill Chain and the common processes cyber criminals use when conducting cyber attacks. Through a better understanding of the Cyber Kill Chain, students will learn how to mitigate, disrupt, and stop cyber attacks.

MGT303 - Cybersecurity Vulnerability Assessment: This 16-hour course addresses specific technical and professional skills needed to assess, document, remediate, and present cybersecurity vulnerability assessments within organizations through a series of lectures and hands on activities. Activities include examining scans and analyzing simulated private sector, public sector, and critical infrastructure networks to develop a vulnerability assessment report and participate in a mock presentation to senior executives. This course utilizes active discussions and activities to extend participants' understanding of vulnerability assessments.

MGT-465 - Recovering from Cybersecurity Incidents: This 16-hour course is designed to provide guidance for the implementation of an effective cybersecurity incident recovery program from a pre-incident and post-incident perspective. The training focuses on connecting IT with emergency management and is intended for government, critical infrastructure, and private sector personnel who have the responsibility for recovering after a cyber incident. Short term tactical and long-term strategic activities are discussed culminating in the development of an action plan.

PER-398 - Cyber Resiliency in Industrial Control Systems: This 8-hour instructor-led online course is designed to enhance understanding of the critical nature of Industrial Control System environments and the associated risks, threats, and defenses within an organization, business, or government entity. The course utilizes activities to demonstrate attacks on Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) devices. This course is designed for state, local, regional, tribal, and territorial government officials; owners and operators of businesses and non-profits ; and community members and other individuals interested in developing a greater understanding of developing cybersecurity resiliency in ICS.

PER371 - Cybersecurity Incident Response and Management: This 3-day course utilizes NIST 800-61r2 to introduce participants to the cyber incident lifecycle. Through the use of a cyber range, participants will acquire hands-on experience responding to simulated, real-world cyber attacks and gain a better understanding of the importance of information sharing during cyber incidents. This course is resident in College Station, TX, however TEEX will cover the cost of flights, lodging and meals for all qualified participants.

Cybersecurity Incident Response and Management

AWR136 - Developing Cybersecurity Resiliency for Everyone: AWR136 is an eight (8) hour, non-technical introduction to cybersecurity. This awareness-level course will explore cybersecurity and cyber hygiene, and demonstrate how cyber attacks can impact, prevent, and/or stop business operations and emergency responses. Participants are introduced to common cybersecurity terminology, fundamental cyber threats and vulnerabilities that can impact individuals and organizations, and best practices and cyber hygiene techniques for securing personal and organizational data, software, and hardware.

AWR376 - Understanding Targeted Cyber Attacks: This 8-hour course will fill the gap in threat-specific training for cybersecurity as a community-driven course that focuses on the phases of targeted cyber-attacks and the attacker methods used during each phase. Participants will also receive valuable information on cyber-attack prevention, mitigation, and response.

MGT384 - Preparing for Cyber Attacks & Incidents: This 16-hour course is designed to prepare organizations and communities for the next cyber-attack. During this 16-hour course, participants will analyze cyber threats, vulnerabilities, and initial and cascading impacts of cyber-attacks, evaluate the process for developing a cyber preparedness program, examine the importance and challenges of cyber related information sharing and discover low to no-cost resources to help build cyber resilience.

MGT452 - Physical and Cybersecurity for Critical Infrastructure: This 8-hour course encourages collaboration efforts among individuals and organizations responsible for both physical and cybersecurity toward development of integrated risk management strategies that lead to enhanced capabilities necessary for the protection of our Nation's critical infrastructure.

ONLINE COURSES

AWR138-W Network Assurance: This 5-hour course covers secure network practices to protect networked systems against attacks and exploits. Topics include authentication, authorization, and accounting (AAA), as well as firewalls, intrusion detection/prevention, common cryptographic ciphers, server and client security, and secure policy generation.

AWR139-W Digital Forensics Basics: This 7-hour course explains investigative methods and standards for the acquisition, extraction, preservation, analysis, and deposition of digital evidence. Using realistic forensics situations, learners explore how to find traces of illegal or illicit activities using computer forensics tools and manual techniques.

AWR168-W Foundations of Cyber Crimes: This 10-hour course highlights a range of cyber crimes and the appropriate response by first responders and various agencies. Participants identify legislative, organizational, and personal efforts to control or prevent cyber crimes.

AWR169-W Introduction to Cyber Incident Management: This 10-hour course provides practical guidelines on responding to incidents effectively and efficiently as part of an incident response program. Topics include detecting, analyzing, prioritizing, and handling cyber incidents, supported by real-world examples and scenarios.

AWR173-W Information Security Basics: This 13-hour course gives a technical overview of information security with a focus on identifying and deterring cyber attacks. Covered topics include TCP/IP, introductory network security, operating system security, and basic cryptography.

AWR174-W Cyber Ethics: This 13-hour course covers techniques for handling ethical dilemmas encountered online. Students analyze major concerns surrounding internet usage and develop skills to evaluate ethical challenges in the future.

AWR176-W Disaster Recovery for Information Systems: This 10-hour course trains business managers on maintaining access to critical information during disruptive events. Topics include business continuity, disaster recovery, risk management, business impact analysis, and incident response and recovery.

AWR177-W Information Risk Management: This 13-hour course addresses information assets, risk identification, and management processes. Students learn tools and technologies related to information risk and best practices for applying appropriate levels of security controls.

AWR178-W Secure Software: This 10-hour course teaches programming practices to secure applications against attacks and exploits. It covers secure software development, defensive programming, secure design and testing, and secure development methodologies.

AWR395-W Cybersecurity in the Workplace: This 2-hour course explains common cyber attacks companies may face, the type of information at risk, how to recognize attacks, and why organizational participation in cybersecurity is essential.

AWR396-W Network Security for Homes and Small Businesses: This 2-hour course introduces basic home and small business networking concepts and provides best practices to secure networks and protect personal and third-party information.

AWR397-W Cybersecurity for Everyone: This 4-hour course covers the essentials of protecting computers, stored data, and personal safety online, including social media and mobile device security.

AWR399-W Detecting and Responding to a Cyber Attack: This 4-hour course introduces various types of cyber attacks and teaches how to detect and respond to them to protect data and information.

AWR402-W Introduction to Internet of Things: This 2-hour course explores IoT applications, laws and policies, technologies, emerging threats, best practices, and evolving IoT security considerations.

NDPC CERTIFICATE SERIES

Cybersecurity Awareness: The Cybersecurity Awareness Certificate Program will introduce you to the basic concepts and principles of cybersecurity, being a good steward of electronic information and how to be a good digital citizen. You will also learn strategies to assist in protecting your personal information and yourself online as well as protecting your organization's data.

Courses:

  • AWR397 Cybersecurity for Everyone (Online)
  • AWR395 Cybersecurity in the Workplace (Online)
  • AWR174 Cyber Ethics (Online)
  • AWR168 Foundations of Cyber Crimes (Online)
  • AWR396 Network Security for Homes and Small Businesses (Online)
  • AWR399 Detecting and Responding to a Cyber Attack (Online)
Cybersecurity Incident Response and Management

Cybersecurity Preparedness: The Cybersecurity Preparedness Certificate Program will build your knowledge of applying cybersecurity principles through the phases of the preparedness cycle. Through this certification program you will gain an understanding of cybersecurity, and how to prepare for, respond to, and recover from cyber attacks.

Courses:

  • AWR169 Cyber Incident Response and Analysis (Online)
  • AWR176 Disaster Recovery for Information Systems (Online)
  • AWR177 Information Risk Management (Online)
  • AWR395 Cybersecurity in the Workplace (Online)
  • AWR399 Detecting and Responding to a Cyber Attack (Online)
  • AWR376 Understanding Targeted Cyber Attacks (Instructor-Led)
  • MGT384 Community Preparedness for Cyber Incidents (Instructor-Led)
Cybersecurity Preparedness

Cybersecurity Risk Management: The Cybersecurity Risk Management Certificate Program will enrich your knowledge of risk management from a cybersecurity perspective. Through this certificate program you will learn about the risk associated with cyber attacks and cyber incidents, how to mitigate those risks, and how to plan for cyber incident response and recovery.

Courses:

  • AWR169 Cyber Incident Response and Analysis (Online)
  • AWR176 Disaster Recovery for Information Systems (Online)
  • AWR177 Information Risk Management (Online)
  • AWR395 Cybersecurity in the Workplace (Online)
  • AWR399 Detecting and Responding to a Cyber Attack (Online)
  • AWR174 Cyber Ethics (Online)
Cybersecurity Risk Management

Physical & Cyber Security Protection for Critical Infrastructure: The Physical & Cyber Security Protection for Critical Infrastructure Certificate provides essential skills to protect vital systems from physical and cyber threats. This program covers risk assessment, threat mitigation, and incident response strategies to safeguard critical infrastructure sectors. Designed to equip participants with practical knowledge to enhance resilience in an increasingly complex threat landscape.

Courses:

  • AWR136 Developing Cybersecurity Resiliency for Everyone (Instructor-Led)
  • AWR376 Understanding a Targeted Cyber Attacks (Instructor-Led)
  • MGT315 Conducting Risk Assessments for Critical Community Assets
  • MGT384 Preparing for Cyber Attacks and Incidents (Instructor-Led)
  • MGT452 Physical and Cybersecurity for Critical Infrastructure (Instructor-Led)
Physical & Cyber Security Protection for Critical Infrastructure
Back Next