Intermediate

AI for Cybersecurity

Defend digital systems with intelligent security

Build AI-powered threat detection, analyze malware with ML, and defend AI systems β€” all in isolated cloud Cyber Range labs. 12 weeks of hands-on work spanning ML-based IDS, malware classification, SOC automation, adversarial ML, and ML pipeline security.

Enroll Now β€” $2,500 See Curriculum
160
Total Hours
12
Weeks
6
Modules
~13
Hrs/Week
Course Components
πŸ“˜
47
Topics
πŸ’»
11
Coding Exercises
πŸ”¬
23
Hands-on Labs
πŸ“‹
12
Quizzes
πŸ“–
12
Readings
πŸ’¬
13
Forums
🧭
1
Career
Legend
Topic
Exercise
Lab
Quiz
Mini Project
Capstone
Activity
Reading
Forum
Career
Complete Course Structure & Table of Contents
πŸ“‘
Live instructor-led delivery · classes run 3 days a week. The topics below are covered in live sessions; recorded versions will be available after class delivery.
MOD 01
Week 1 β€” Security Fundamentals
Networking, attack vectors, security telemetry, and the Cyber Range setup you will use all course
11h 20m β–Ύ
πŸ“˜
Networking & TCP/IP Refresher for Security Engineers Topic
OSI model layers, the TCP/IP stack, sockets, protocols students will see in PCAPs all course
1 hr
πŸ“˜
Attack Vectors β€” How Adversaries Get In Topic
Phishing, MITM, SQL injection, brute force, credential stuffing, supply-chain attacks
45 min
πŸ“˜
Network Scanning with Nmap Topic
Host discovery, SYN/connect scanning, service enumeration, NSE scripts, OS fingerprinting
50 min
πŸ“˜
Security Telemetry Sources & Log Formats Topic
syslog, NetFlow, PCAP, endpoint telemetry; CEF / LEEF / structured JSON conventions
45 min
πŸ“–
NIST SP 800-53 Quick Reference for AI Engineers Reading
Self-paced reading on the control families you will reference across the course
30 min
πŸ’»
Coding Exercise β€” Parse PCAP Files with Scapy Exercise
Filter packets by protocol, extract conversation flows, plot top-talkers from a sample capture
1h 30m
πŸ’¬
Discussion β€” What Is Your Threat Model? Forum
Share a brief writeup describing the threats most relevant to your current or target role
30 min
πŸ”¬
Lab 1 β€” Stand Up Your Cyber Range Lab πŸ§ͺ Cyber Range Lab Β· Intermediate
6-step lab: provision attacker, target, and monitoring VMs; configure private subnet; run Nmap SYN scan; capture traffic; parse XML output
2h 30m
πŸ”¬
Lab 2 β€” Vulnerability Assessment + Structured Findings Report Lab πŸ§ͺ Cyber Range Lab Β· Intermediate
Run OpenVAS scan against Metasploitable, parse XML, enrich with CVSS v3.1 scores, generate executive Markdown report
2h 30m
πŸ“‹
Week 1 Knowledge Check Quiz
25-question quiz covering protocols, scanning concepts, and telemetry sources
30 min
MOD 02
Week 2 β€” Threat Intelligence
MITRE ATT&CK, kill chains, IoCs, and the parsing pipelines that feed downstream ML models
12 hrs β–Ύ
πŸ“˜
MITRE ATT&CK β€” Tactics, Techniques, and Procedures Topic
Tactic columns, technique IDs, sub-techniques, the matrices for Enterprise / Mobile / ICS
1 hr
πŸ“˜
Lockheed Martin Cyber Kill Chain Topic
Seven phases from recon to actions on objectives, how to map kill chains to your detection coverage
45 min
πŸ“˜
Indicators of Compromise β€” Atomic, Computed, Behavioral Topic
File hashes, IP/domain reputation, URL patterns, behavioral IoCs and their relative half-lives
45 min
πŸ“˜
STIX 2.1 and TAXII β€” How Intel Travels Topic
Object types, relationship objects, TAXII servers and discovery β€” the wire format of threat intel
45 min
πŸ“–
Reading β€” A Year of APT Reports Reading
Skim three recent APT writeups; map each campaign to ATT&CK techniques
45 min
πŸ’»
Exercise β€” Write Grok Patterns for Three Log Formats Exercise
Build Grok patterns for syslog auth.log, Apache combined, and Cisco firewall logs; validate against samples
1h 30m
πŸ’¬
Discussion β€” Which IoCs Decay Fastest? Forum
Rank atomic vs computed vs behavioral IoCs by useful lifetime; defend your ordering
30 min
πŸ”¬
Lab 1 β€” Multi-Source Log Parser with Event Correlation Lab πŸ§ͺ Cyber Range Lab Β· Intermediate
Collect auth + Apache + firewall logs into a unified JSON schema; correlate failed SSH with subsequent firewall denies to find brute-force runs
3 hrs
πŸ”¬
Lab 2 β€” Map a Simulated Attack to MITRE ATT&CK Lab πŸ§ͺ Cyber Range Lab Β· Intermediate
Execute multi-stage attack scenario, collect logs + PCAPs, map each phase to ATT&CK IDs, extract IoCs as STIX 2.1 objects
2h 30m
πŸ“‹
Week 2 Knowledge Check Quiz
25 questions on ATT&CK, kill chain, IoC types, and STIX
30 min
MOD 03
Week 3 β€” Anomaly Detection for IDS
Statistical and ML-based intrusion detection on real network-flow datasets
11h 50m β–Ύ
πŸ“˜
Statistical Anomaly Detection β€” Z-score, IQR, EWMA Topic
When each method fits, threshold selection, and why most production IDS still ships z-scores
50 min
πŸ“˜
ML-Based IDS Architecture Topic
Feature pipeline β†’ model β†’ scoring β†’ alerting loop; offline training vs streaming inference tradeoffs
50 min
πŸ“˜
Feature Engineering from Network Flows Topic
Flow duration, byte/packet ratios, TCP flag counts, inter-arrival timings, port entropy
55 min
πŸ“˜
Evaluation Metrics for IDS β€” Why Accuracy Lies Topic
Detection rate, false positive rate, precision/recall, F-beta, and the cost of a 0.5% FPR at scale
45 min
πŸ“–
Reading β€” CIC-IDS Dataset Documentation Reading
Read the dataset companion paper end-to-end; note attack categories and label distribution
30 min
πŸ’»
Exercise β€” Implement SMOTE for Class Imbalance Exercise
Hand-code a SMOTE oversampler from scratch, then compare against imbalanced-learn
1h 30m
πŸ’¬
Discussion β€” Supervised vs Unsupervised IDS in Production Forum
Which approach would you trust for a production deployment, and why?
30 min
πŸ”¬
Lab 1 β€” ML-Based IDS on CIC-IDS Dataset Lab πŸ§ͺ Jupyter Notebook Lab Β· Intermediate
Load CIC-IDS2017, clean + engineer features, apply SMOTE, train RF + XGBoost, compare detection rate vs FPR; confusion matrix per attack family
3 hrs
πŸ”¬
Lab 2 β€” Unsupervised Anomaly Detection for Zero-Days Lab πŸ§ͺ GPU Training Lab Β· Advanced
Train autoencoder + Isolation Forest on benign-only traffic; tune anomaly thresholds for target FPR; KS-test concept-drift detector
2h 30m
πŸ“‹
Week 3 Knowledge Check Quiz
25 questions on anomaly detection methods, metrics, and feature engineering
30 min
MOD 04
Week 4 β€” Traffic Analysis & UEBA
Deep packet inspection, user behavior profiling, and lateral movement detection
11h 45m β–Ύ
πŸ“˜
DPI vs Flow Analysis β€” When to Reach for Each Topic
Encrypted traffic, performance budgets, what gets lost at each layer
45 min
πŸ“˜
User Behavior Profiling Fundamentals Topic
Login patterns, resource access frequency, peer-group baselines, weekend vs weekday signals
50 min
πŸ“˜
UEBA Risk Scoring β€” Combining Signals Topic
Multiplicative vs additive scores, decay functions, suppression rules, alert-fatigue tradeoffs
50 min
πŸ“˜
Lateral Movement Detection β€” East-West Anomalies Topic
Service-account abuse, pass-the-hash, golden ticket attacks and the network signatures they leave
50 min
πŸ“–
Reading β€” Real-World UEBA Failure Case Studies Reading
Two writeups on UEBA programs that drowned in false positives β€” what we learn
30 min
πŸ’»
Exercise β€” Session Reconstruction from Flow Logs Exercise
Group raw flow records into application sessions using timing + IP/port heuristics
1h 30m
πŸ’¬
Discussion β€” Insider Threat: Detection vs Privacy Forum
Where do you draw the line between behavioral monitoring and workplace surveillance?
30 min
πŸ”¬
Lab 1 β€” DNN Traffic Classifier on PCAPs Lab πŸ§ͺ GPU Training Lab Β· Advanced
Extract flow features with CICFlowMeter, normalize + select features, train 3-layer DNN with early stopping; ROC-AUC + detection latency
3 hrs
πŸ”¬
Lab 2 β€” UEBA Insider-Threat Detector with Isolation Forest Lab πŸ§ͺ Jupyter Notebook Lab Β· Intermediate
Build per-user behavioral profiles, train Isolation Forest, implement risk scoring with privilege weighting, validate with insider-threat sim
2h 30m
πŸ“‹
Week 4 Knowledge Check Quiz
25 questions on DPI, UEBA, risk scoring, and lateral movement
30 min
MOD 05
Week 5 β€” Static Malware Analysis
PE file internals, YARA, feature extraction, and the ML classifier you will train on real samples
12 hrs β–Ύ
πŸ“˜
The PE File Format Up Close Topic
DOS header, PE header, section table, import/export tables, anchor offsets attackers tamper with
1 hr
πŸ“˜
Feature Extraction β€” Byte n-grams, API Calls, Strings Topic
Choosing features that survive obfuscation, vocabulary explosion management
50 min
πŸ“˜
Packing Detection via Entropy Analysis Topic
UPX, Themida, custom packers; section-level entropy thresholds and shortcomings
45 min
πŸ“˜
Writing Production-Grade YARA Rules Topic
Pattern syntax, conditions, modules, performance considerations, false-positive triage workflow
55 min
πŸ“–
Reading β€” Sandbox Evasion Techniques in Modern Malware Reading
Timing checks, environment detection, anti-debug tricks samples use to defeat dynamic analysis
30 min
πŸ’»
Exercise β€” Extract PE Header Fields with pefile Exercise
Parse 50 PE samples, extract 20+ header features, output as CSV ready for ML
1h 30m
πŸ’¬
Discussion β€” When Does Static Analysis Stop Working? Forum
Identify two real malware families where static features fail and why
30 min
πŸ”¬
Lab 1 β€” Static-Feature Malware Classifier Lab πŸ§ͺ Cyber Range Lab Β· Advanced
Combine PE header features + byte entropy + string n-grams; write 3 YARA rules; train gradient-boosting classifier with full metrics
3 hrs
πŸ”¬
Lab 2 β€” Detonate Samples in a Cuckoo Sandbox Lab πŸ§ͺ Cyber Range Lab Β· Advanced
Stand up Cuckoo with snapshotted Windows VMs, submit 30 samples, extract behavioral n-grams + dynamic features, train XGBoost vs static baseline
2h 30m
πŸ“‹
Week 5 Knowledge Check Quiz
25 questions on PE format, feature extraction, packing, and YARA
30 min
MOD 06
Week 6 β€” ML-Based Malware Classification
CNNs on binary-as-image, RNNs on API sequences, and NLP-based phishing detection
12h 20m β–Ύ
πŸ“˜
Malware Visualization β€” Binary as Grayscale Image Topic
Why this trick works, image-size choices, family-level visual patterns
45 min
πŸ“˜
CNN Architectures for Malware Image Classification Topic
Designing a CNN for fixed-size binary images, data augmentation strategies that actually help
55 min
πŸ“˜
RNNs + Attention on API Call Sequences Topic
Sequence modeling for behavioral data, choosing between LSTMs, GRUs, and transformer-style attention
55 min
πŸ“˜
Concept Drift in Malware Families Topic
Why your model decays in production, monitoring strategies, retraining cadence
45 min
πŸ“–
Reading β€” Phishing Detection Beyond URL Heuristics Reading
Review of header-based, content-based, and URL-based phishing features
30 min
πŸ’»
Exercise β€” Augment Malware Binary Images Exercise
Implement rotation, flipping, gaussian noise; measure effect on family classification accuracy
1h 30m
πŸ’¬
Discussion β€” Multi-Class vs Binary Detection Forum
When is family classification worth the extra labeling cost?
30 min
πŸ”¬
Lab 1 β€” CNN Malware Family Classifier Lab πŸ§ͺ GPU Training Lab Β· Advanced
5-step lab: convert binaries to 256Γ—256 grayscale, stratified split, train 3-block CNN on GPU with augmentation, per-family report + confusion matrix
3 hrs
πŸ”¬
Lab 2 β€” NLP Phishing Email Detector Lab πŸ§ͺ Jupyter Notebook Lab Β· Intermediate
Header features (SPF/DKIM, sender age), URL features (domain length, redirects), TF-IDF body content; logistic baseline vs fine-tuned BERT
3 hrs
πŸ“‹
Week 6 Knowledge Check Quiz
25 questions on CNNs for malware, RNNs for sequences, concept drift, and phishing features
30 min
MOD 07
Week 7 β€” Automated Log Analysis
Elastic SIEM, detection-rule authoring, anomaly scoring, and automated alert prioritization
12h 20m β–Ύ
πŸ“˜
Log Ingestion Pipelines with Filebeat + Logstash Topic
Shippers, transforms, parsers; designing pipelines that survive log-format changes
50 min
πŸ“˜
Elastic SIEM β€” Index Patterns and Detection Rules Topic
Time-based indices, detection rule types, rule scheduling, performance tuning
50 min
πŸ“˜
Anomaly Scoring on Log Streams Topic
Window-based statistics, rule-based vs ML-based scoring, false-positive suppression
50 min
πŸ“˜
Alert Prioritization & Enrichment Topic
Severity Γ— confidence Γ— asset criticality; GeoIP + threat-feed correlation; asset-tagging strategies
50 min
πŸ“–
Reading β€” Sigma Rules: The Open Detection Language Reading
Sigma rule structure, conversion targets, the maturing rule-sharing ecosystem
30 min
πŸ’»
Exercise β€” Write a Log Anomaly Scoring Library Exercise
Build a Python lib that computes rolling z-scores per event-type and emits alerts past threshold
1h 30m
πŸ’¬
Discussion β€” How Many Alerts Per Day Per Analyst? Forum
Share your team's reality vs aspirational alert volume β€” what tuning got you closer?
30 min
πŸ”¬
Lab 1 β€” Elastic SIEM End-to-End Lab πŸ§ͺ Cyber Range Lab Β· Advanced
Stand up Elastic + Kibana, ship logs via Filebeat, write Logstash Grok filters, author 3 detection rules, integrate Python anomaly scorer, verify on simulated attack
3h 30m
πŸ”¬
Lab 2 β€” Sigma Rules from APT PCAPs Lab πŸ§ͺ Jupyter Notebook Lab Β· Advanced
Take 5 Malware-Traffic-Analysis PCAPs, identify TTPs β†’ MITRE IDs, author Sigma rules in YAML, convert to Elastic DSL, measure detection coverage
2h 30m
πŸ“‹
Week 7 Knowledge Check Quiz
25 questions on ingestion pipelines, SIEM rules, anomaly scoring, prioritization
30 min
MOD 08
Week 8 β€” LLMs for Security Operations
Using language models for alert triage, report generation, and SOAR playbook automation
12h 25m β–Ύ
πŸ“˜
LLMs in the SOC β€” Where They Actually Help Topic
Triage, summarization, report drafting; what to never trust an LLM with
50 min
πŸ“˜
Prompt Templates for Alert Triage Topic
System / user prompt design, structured output enforcement, few-shot examples, eval rigor
55 min
πŸ“˜
LLM-Assisted Code Review for Vulnerability Detection Topic
Where LLMs catch real bugs, what they miss, how to integrate with existing SAST tools
50 min
πŸ“˜
SOAR Playbook Design β€” Triggers, Conditions, Actions Topic
Designing playbooks that auto-respond safely, kill-switch patterns, rollback workflows
50 min
πŸ“–
Reading β€” Auto-Isolation: When It Saves You vs Hurts You Reading
Case studies on autonomic response done well and done badly
30 min
πŸ’»
Exercise β€” Evaluate LLM Triage Quality Exercise
Build a triage-eval harness with human-labeled ground truth and compute agreement metrics
1h 30m
πŸ’¬
Discussion β€” Trust Boundary for LLM Actions Forum
Which SOAR actions would you let an LLM trigger unsupervised, and which would always need a human?
30 min
πŸ”¬
Lab 1 β€” LLM-Powered Security Analyst Assistant Lab πŸ§ͺ Jupyter Notebook Lab Β· Intermediate
Process 20 raw alerts through an LLM triage pipeline; structured severity + IoC + action extraction; threat-report generator in Markdown
3 hrs
πŸ”¬
Lab 2 β€” SOAR Playbook with Auto-Isolation Lab πŸ§ͺ Cyber Range Lab Β· Advanced
Define playbook schema, write orchestration script, implement firewall-API host isolation + Slack notification; verify response in <60s
3 hrs
πŸ“‹
Week 8 Knowledge Check Quiz
25 questions on LLM triage, prompts, SOAR design, automated response
30 min
MOD 09
Week 9 β€” Adversarial Attacks
Evasion, poisoning, model extraction β€” attacking the ML systems we just built
12h 35m β–Ύ
πŸ“˜
Threat Model for ML Systems Topic
Attack surfaces across training and inference, adversary capabilities, goals, knowledge levels
50 min
πŸ“˜
Evasion Attacks β€” FGSM, PGD, Carlini-Wagner Topic
Gradient-based perturbations, L∞/L2 constraints, why iterative attacks beat single-step
1 hr
πŸ“˜
Training-Data Poisoning and Backdoors Topic
Clean-label poisoning, backdoor triggers, why poisoning gets harder with model scale
55 min
πŸ“˜
Model Extraction & Membership Inference Topic
Stealing decision boundaries via query access, reconstructing training-set membership
50 min
πŸ“–
Reading β€” Adversarial Patches in the Physical World Reading
Stop-sign attacks, glasses that fool face recognition β€” what works outside a lab
30 min
πŸ’»
Exercise β€” Implement FGSM From Scratch Exercise
Hand-code the FGSM attack against a CIFAR-10 model; verify against an established library
1h 30m
πŸ’¬
Discussion β€” Threat Model for Your Own System Forum
Describe an adversary that worries you most about a system you actually maintain
30 min
πŸ”¬
Lab 1 β€” Evasion Attacks vs ResNet-50 Lab πŸ§ͺ GPU Training Lab Β· Advanced
FGSM + 20-iteration PGD vs pre-trained ResNet-50; measure attack success rate; test transferability to VGG-16; targeted attack on a stop sign
3 hrs
πŸ”¬
Lab 2 β€” Poisoning + Backdoor + Extraction Chain Lab πŸ§ͺ GPU Training Lab Β· Advanced
Poison Week-5 PE classifier at 1/5/10% rates; design backdoor trigger; verify 95% backdoor success; build a surrogate via model extraction
3 hrs
πŸ“‹
Week 9 Knowledge Check Quiz
25 questions on evasion, poisoning, extraction, and transferability
30 min
MOD 10
Week 10 β€” Adversarial Defense
Adversarial training, input preprocessing, certified robustness, and red-team / blue-team
12h 20m β–Ύ
πŸ“˜
Adversarial Training Methodology Topic
Generating adversarial examples on-the-fly during training, batch composition strategies
55 min
πŸ“˜
Input Preprocessing Defenses & Their Limits Topic
Gaussian smoothing, JPEG compression, spatial squeezing β€” and the adaptive attacks that break them
45 min
πŸ“˜
Certified Robustness via Randomized Smoothing Topic
Smoothing-based certificates, how to read robustness radii, computational cost in practice
55 min
πŸ“˜
Ensemble Defenses and Diversity Strategies Topic
Majority voting, model diversity metrics, why ensemble defenses sometimes hurt
45 min
πŸ“–
Reading β€” Red Team / Blue Team Programs for ML Systems Reading
How mature teams structure adversarial assessments β€” rules of engagement, reporting
30 min
πŸ’»
Exercise β€” Build a Defense Evaluation Harness Exercise
Reusable test rig that measures clean accuracy + FGSM/PGD accuracy across defense configurations
1h 30m
πŸ’¬
Discussion β€” Defense in Depth for ML Forum
Stack two defenses you would always combine, and explain why they cover each other's gaps
30 min
πŸ”¬
Lab 1 β€” Adversarial Training Robustness Measurement Lab πŸ§ͺ GPU Training Lab Β· Advanced
Retrain ResNet-50 with PGD adversarial training; measure clean vs adversarial accuracy; compare against preprocessing defenses; write tradeoff report
3 hrs
πŸ”¬
Lab 2 β€” Red Team / Blue Team on the Week-3 IDS Lab πŸ§ͺ Cyber Range Lab Β· Advanced
Deploy IDS as live service; red team crafts evasive flows + extraction queries; blue team monitors + tunes thresholds; joint after-action report
3 hrs
πŸ“‹
Week 10 Knowledge Check Quiz
25 questions on adversarial training, preprocessing, certified robustness, ensembles
30 min
MOD 11
Week 11 β€” ML Pipeline Security
Supply-chain risk, model signing, secure serving, differential privacy, federated learning
12h 25m β–Ύ
πŸ“˜
Supply Chain Risks in the ML Pipeline Topic
Compromised dependencies, poisoned pre-trained weights, training-data provenance gaps
50 min
πŸ“˜
Model Signing & Verification Topic
Cryptographic model integrity, signing workflows from training through deployment
45 min
πŸ“˜
Secure Model Serving β€” Auth, Encryption, Input Validation Topic
AuthN/Z patterns, mTLS, rate limiting, payload-size limits, prompt-injection defenses
55 min
πŸ“˜
Differential Privacy Fundamentals Topic
Ξ΅-Ξ΄ guarantees, sensitivity calibration, DP-SGD, the privacy-accuracy tradeoff
55 min
πŸ“–
Reading β€” Federated Learning in the Wild Reading
Privacy benefits, communication costs, why it has not displaced centralized training
30 min
πŸ’»
Exercise β€” Audit a Requirements.txt for CVE Vulnerabilities Exercise
Wire up pip-audit + safety against a deliberately stale requirements file; produce remediation plan
1h 30m
πŸ’¬
Discussion β€” Whose Privacy Budget Is It Anyway? Forum
When should the privacy budget be per-user, per-query, or per-deployment?
30 min
πŸ”¬
Lab 1 β€” Full ML Pipeline Security Audit Lab πŸ§ͺ Cyber Range Lab Β· Advanced
Inventory components + dependencies; CVE scan; test serving endpoint for injection + auth bypass; categorized severity report with remediation
3 hrs
πŸ”¬
Lab 2 β€” Differential Privacy with Opacus Lab πŸ§ͺ GPU Training Lab Β· Advanced
Train baseline β†’ DP-SGD at Ξ΅ = 1.0 / 5.0 / 10.0 with per-sample gradient clipping; privacy-accuracy curve; membership-inference attack pre vs post
3 hrs
πŸ“‹
Week 11 Knowledge Check Quiz
25 questions on supply chain, model signing, secure serving, DP, federated learning
30 min
MOD 12
Week 12 β€” Compliance & Capstone
NIST AI RMF, SOC 2, GDPR, and the end-to-end capstone project
18h 20m β–Ύ
πŸ“˜
NIST AI Risk Management Framework Topic
Govern, Map, Measure, Manage functions; how to actually run an AI risk assessment
1 hr
πŸ“˜
SOC 2 + GDPR Considerations for ML Systems Topic
Right to erasure, automated decision-making, audit trails, vendor-management implications
55 min
πŸ“˜
Designing an End-to-End AI Security System Topic
Integrating detection + response + monitoring; component coupling and failure modes
55 min
πŸ“–
Reading β€” Incident Response Playbook for AI-Related Events Reading
Classification taxonomy, escalation paths, post-incident review template
30 min
πŸ’¬
Capstone Peer Review Forum
Review two peers' capstone submissions using the provided rubric
1 hr
πŸ’¬
Showcase β€” Present Your Capstone Forum
Share your design, results, and the most interesting failure you debugged
45 min
🧭
Career Outcomes Roundup β€” AI Security Roles Career
AI Security Engineer / Threat Intel Analyst / Security Data Scientist / ML Security Researcher pathways
30 min
πŸ”¬
Capstone β€” Comprehensive AI-Powered Security System Lab πŸ§ͺ Cyber Range Lab Β· Advanced
7-step capstone: design architecture (data sources + ML models + workflows); deploy IDS + UEBA; integrate SOAR auto-isolation; audit trail; multi-stage attack test; compliance assessment vs NIST AI RMF; final project report + presentation
12 hrs
πŸ“‹
Final Course Assessment Quiz
40 questions covering all 12 weeks of material; 75% passing score
45 min
Live Instructor-Led Batches

Learn with a cohort β€” live Zoom sessions, Q&A, and lifetime access to recordings.

🐦
Early Bird β€” 5% off when you enroll 10+ days before your batch starts. Discount auto-applies at checkout. No code needed.
upcoming 🐦 Early Bird 5% off

AI for Cybersecurity β€” June Cohort 2026

Instructor: AI Labs Instructor
  • πŸ“…Jun 15, 2026 – Sep 6, 2026
  • πŸ•Tuesdays & Thursdays, 7–9 PM CST
$2,500 $2,375 You save $125
upcoming 🐦 Early Bird 5% off

AI for Cybersecurity β€” July Cohort 2026

Instructor: AI Labs Instructor
  • πŸ“…Jul 15, 2026 – Oct 6, 2026
  • πŸ•Tuesdays & Thursdays, 7–9 PM CST
$2,500 $2,375 You save $125
Ready to start?

$2,500

Online lectures + Cyber Range lab + Red/blue team exercises

Choose payment option

Frequently asked questions about this program

What level is the AI for Cybersecurity program? +
Intermediate. Total program length is 12 Weeks (160+ Hours of combined live instruction and lab time).
What prerequisites do I need? +
Python proficiency; Basic networking knowledge; Familiarity with ML concepts
Does this course include hands-on lab work? +
Yes. This program includes hands-on lab time in 3 cloud lab environments provisioned by AI Labs. Every student gets a personal cloud workspace plus on-prem workstation access at our Houston Training Center.
Is this delivered online or in person? +
Both. The default delivery is Online lectures + Cyber Range lab + Red/blue team exercises. In-person sessions are available at our Houston Training Center for any student who prefers on-site delivery.
What roles does this program prepare me for? +
AI Security Engineer, Threat Intelligence Analyst, Security Data Scientist, ML Security Researcher.
Do I receive a certificate at the end? +
Yes. Every program ends with a capstone project and a verifiable AI Labs completion certificate. Certificates are issued via our LMS and include the capstone work as a portfolio link.
How much does the program cost and are payment plans available? +
Program tuition is $2,500. Most students use our 2-installment plan (50% at enrollment, 50% midway through). Enterprise + nonprofit pricing is available β€” contact us for a quote.

Labs used in this course

Hands-on environments you'll spin up during the program.

Cyber Range Lab

Isolated network environment for AI-powered cybersecurity training. Students build intrusion detection systems, analyze malware, and conduct…

Explore lab →

GPU Training Lab

Single-GPU environment for training deep learning models, running computer vision pipelines, and experimenting with neural network architect…

Explore lab →

Jupyter Notebook Lab

Standard Python development environment for data exploration, visualization, and introductory ML. Pre-configured with Python 3.11, NumPy, Pa…

Explore lab →

Related courses

Other AI Labs programs that share lab environments with this one.

Intermediate Β· 14 Weeks

AI for Healthcare & Life Sciences

Apply AI to transform patient care and medical research

View course →
Advanced Β· 12 Weeks

Deep Learning Mastery: Neural Architectures to Real-World Applications

From neural network theory to production-grade DL systems

View course →
Intermediate Β· 14 Weeks

Machine Learning Engineering: Build, Optimize & Deploy Intelligent Models

From prototype to production-ready ML systems

View course →