Cybersecurity pilot trainings

In the CYRUS project, we design and implement cybersecurity training courses for skills development, upskilling and reskilling. These courses are aligned with the emerging cyber threats and the identified application scenarios in the transport and manufacturing domains.

We develop a set of specific short-term cybersecurity training courses for different roles across organisations in the transport and manufacturing sectors. Thereby, we pay special attention to the needs of SMEs and start-ups.

In this overview you fill find our pilot trainings, that are running from July to October 2024. At this stage of the project, you have the opportunity to sample a selected range of our courses for free in return for sharing your valuable feedback. The insights garnered will help us refine and customise these offerings to better suit your team’s unique needs in the final round of training sessions scheduled for 2025.

Do you have any questions regarding the registration? Do you need more information? Reach out to our help desk: training@scademy.com – we are happy to help you!

Available training courses

The trainings are for different target groups:

  • Engineers: Technical roles who have direct access, possibly not mediated by constrained HMI, can change the technical infrastructure
  • Administrative staff: Non-technical roles with no direct access (maybe through several levels of mediation of IT) to the technical infrastructure or the operation of the system
  • Operators: Non-technical roles with access to the technical infrastructure through severely constrained HMI (human machine interface). Operates the systems but typically cannot change it

All trainings are assigned to specific tracks.

  • The basic track provides basic information to align attendants for the specialised tracks.
  • Track 1 focuses on human-related security with the goal to provide a clear understanding of human-centred security problems and solutions.
  • Track 2 delves into cyber risk. It has two specialisation tracks: 2.1 is for DevSecOps and security testers. 2.2 is for network specialists and incident responders.
CYRUS pilot training tracks

Basic track

Best practices to identify main cyber threats and reduce cyber risk

After this course you will be able to comprehend potential impacts of cyber threats and identify secure practices for cybersecurity in professional and private life

  • This training is available online
  • Dates: 9 September 2024, 14:00 -17:00 and 11 September 2024, 14:00 -17:00 CEST
  • Duration: 6 hours (2 sessions, 3 hours each)
  • Proficiency level: beginner
  • To attend this course, it is recommended to have a basic understanding of cyber attacks and consequences
  • Domain: transport and manufacturing
  • Language: English

Best practices to identify main cyber threats and reduce cyber risk

After this course you will be able to comprehend potential impacts of cyber threats and identify secure practices for cybersecurity in professional and private life

  • This training is available online
  • Dates: 12 September 2024, 14:00 -17:00 and 13 September 2024, 14:00 -17:00 CEST
  • Duration: 6 hours (2 sessions, 3 hours each)
  • Proficiency level: beginner
  • To attend this course, it is recommended to have a basic understanding of cyber attacks and consequences
  • Domain: transport and manufacturing
  • Language: English

Best practices to identify main cyber threats and reduce cyber risk

After this course you will be able to comprehend potential impacts of cyber threats and identify secure practices for cybersecurity in professional and private life

  • This training is available online
  • Dates: 25 September 2024, 14:00 -17:00 and 26 September 2024, 14:00 -17:00 CEST
  • Duration: 6 hours (2 sessions, 3 hours each)
  • Proficiency level: beginner
  • To attend this course, it is recommended to have a basic understanding of cyber attacks and consequences
  • Domain: transport and manufacturing
  • Language: English

Understanding the basic concepts of cybersecurity, password hygiene, explanation of ransomware and phishing attacks, exploiting social engineering and recognition and response in case of their detection, as well as identification of attacks through email

After this course you will be able to recognise cyber threats, pay attention when performing routinary checks to avoid suspicious hardware, apply safe browsing and password hygiene practices and much more

  • Dates:
    • In-person training in Poznan (Poland): 2 September 2024, 9:00 – 13:00 CEST
    • Online: 3 September 2024, 9:00 – 13:00 CEST
  • Duration: 3 hours
  • Proficiency level: beginner
  • Domain: transport (railway sector)
  • Language: Polish

Understanding the basic concepts of cybersecurity, password hygiene, explanation of ransomware and phishing attacks, exploiting social engineering and recognition and response in case of their detection, as well as identification of attacks through email

After this course you will be able to recognise cyber threats, pay attention when performing routinary checks to avoid suspicious hardware, apply safe browsing and password hygiene practices and much more

  • This training is available online, on demand
  • Date: starting on 2 September 2024
  • Duration: 3 hours
  • Proficiency level: beginner
  • Domain: transport (railway sector) & SMEs in general
  • Language: English & Polish

Introduction to the current cybercrime and cybersecurity scenarios

After this course you will be able to identify and analyse trends and developments in cyber crimeand cybersecurity, recognise the main threat categories and interpret security guidelines and procedures

  • This training is available online
  • Dates: 2 September 2024, 14:00 -17:00 CEST
  • Duration: 3 hours
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

Introduction to the current cybercrime and cybersecurity scenarios

After this course you will be able to identify and analyse trends and developments in cyber crimeand cybersecurity, recognise the main threat categories and interpret security guidelines and procedures

  • This training is available online
  • Dates: 5 September 2024, 10:00 -13:00 CEST
  • Duration: 3 hours
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

Introduction to the current cybercrime and cybersecurity scenarios

After this course you will be able to identify and analyse trends and developments in cyber crimeand cybersecurity, recognise the main threat categories and interpret security guidelines and procedures

  • This training is available online
  • Dates: 19 September 2024, 14:00 -17:00 CEST
  • Duration: 3 hours
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

Track 1: human related security

Attacks on the human factor and related risks

After this course you will be able to analyse the evolution of social engineering attacks and strategies for protecting digital identities, recognise human factors in cybersecurity and apply best practices for human resilience

  • This training is available online
  • Dates: 3 October 2024, 10:00 -13:00 CEST
  • Duration: 3 hours
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

Attacks on the human factor and related risks

After this course you will be able to analyse the evolution of social engineering attacks and strategies for protecting digital identities, recognise human factors in cybersecurity and apply best practices for human resilience

  • This training is available online
  • Dates: 7 October 2024, 10:30 -13:30 CEST
  • Duration: 3 hours
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

Attacks on the human factor and related risks

After this course you will be able to analyse the evolution of social engineering attacks and strategies for protecting digital identities, recognise human factors in cybersecurity and apply best practices for human resilience

  • This training is available online
  • Dates: 8 October 2024, 10:00 -13:00 CEST
  • Duration: 3 hours
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

Understanding human failures, following procedures, effective communication, understanding security culture and organisational factors with additional focus on achieving basic GDPR awareness

After this course you will be able to foster a secure culture, analyse human factors in cybersecurity and enhance security posture through effective communication, while achieving basic GDPR awareness

  • This training can be attended in-person & online
  • Dates: 9 September 2024, 9:00 – 13:00 CEST
  • Duration: 4 hours
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

Understanding human failures, following procedures, effective communication, understanding security culture and organisational factors with additional focus on achieving basic GDPR awareness

After this course you will be able to foster a secure culture, analyse human factors in cybersecurity and enhance security posture through effective communication, while achieving basic GDPR awareness

  • This training can be attended in-person & online
  • Dates: 16 September 2024, 9:00 – 13:00 CEST
  • Duration: 4 hours
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

Understanding human behaviour in cybersecurity, analysing past incidents, using tools to mitigate errors, understanding the importance of a just culture, understanding GDPR’s implications and developing effective communication strategies

After this course you will be able to build resilient cybersecurity cultures, distinguish the human role in cyber risks, navigate GDPR complexities and manage crisis communication effectively

  • This training can be attended in-person & online
  • Dates: 13 September 2024, 9:00 – 13:00 CEST
  • Duration: 4 hours
  • Proficiency level: skilled
  • Domain: transport and manufacturing
  • Language: English

Understanding human behaviour in cybersecurity, analysing past incidents, using tools to mitigate errors, understanding the importance of a just culture, understanding GDPR’s implications and developing effective communication strategies

After this course you will be able to build resilient cybersecurity cultures, distinguish the human role in cyber risks, navigate GDPR complexities and manage crisis communication effectively

  • This training can be attended in-person & online
  • Dates: 23 September 2024, 9:00 – 13:00 CEST
  • Duration: 4 hours
  • Proficiency level: skilled
  • Domain: transport and manufacturing
  • Language: English

Track 2: cyber risk related

How to execute the whole process of threat analysis

After this course you will be able to model threats and apply advanced cyber risk assessment frameworks to analyse threats and estimated risks

  • This training is available online
  • Dates: 14 October 2024, 14:00 -17:00
  • Duration: 3 hours
  • Proficiency level: skilled
  • Attendants of this course should have a basic understanding of the development process. Basic experience in development in any language is recommended.
  • Domain: transport and manufacturing
  • Language: English

Track 2.1: DevSecOps specialisation

This scenario is a guide on the basics of DevSecOps

After this course you will be able to understand what DevOps entails

  • This training is available online, on demand
  • Duration: 1 hour
  • Proficiency level: expert
  • Attendees should have basic programming and scripting skills, basic DevOps and networking skills as well as knowledge of various operating systems
  • Domain: transport and manufacturing
  • Language: English

This scenario is a guide on the basics of DevSecOps

After this course you will be able to understand what DevOps entails

  • This training is available online, on demand
  • Duration: 1 hour
  • Proficiency level: expert
  • Attendees should have basic programming and scripting skills, basic DevOps and networking skills as well as knowledge of various operating systems
  • Domain: transport and manufacturing
  • Language: English

Security introduction, broken access control, cryptographic failures

After this course you will be able to navigate Web vulnerabilities beyond OWASP Top Ten and know how to avoid them (focusing on the topics mentioned above)

  • This training is available online
  • Date: 10 July, 9:00 – 13:00
  • Duration: 4 hours
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

Injection and insecure design

After this course you will be able to navigate Web vulnerabilities beyond OWASP Top Ten and know how to avoid them (focusing on the topics mentioned above)

  • This training is available online
  • Date: 11 July, 9:00 – 13:00
  • Duration: 4 hours
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

Security misconfiguration, vulnerable & outdated components, identification & authentication failure

After this course you will be able to navigate Web vulnerabilities beyond OWASP Top Ten and know how to avoid them (focusing on the topics mentioned above)

  • This training is available online
  • Date: 7 August, 9:00 – 13:00
  • Duration: 4 hours
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

Software & data integrity failures, security logging & monitoring failures, server-side request forgery

After this course you will be able to navigate Web vulnerabilities beyond OWASP Top Ten and know how to avoid them (focusing on the topics mentioned above)

  • This training is available online
  • Date: 9 August, 9:00 – 13:00
  • Duration: 4 hours
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

Security testing methodology, techniques and tools

After this course you will be able to understand security testing approaches and methodologies, get practical knowledge in using security testing techniques and tools

  • This training is available online
  • Date: 22 August, 9:00 – 13:00
  • Duration: 4 hours
  • Proficiency level: skilled
  • Attendees should have basic skills of general quality assurance and testing
  • Domain: transport and manufacturing
  • Language: English

Testing the implementation, deployment environment

After this course you will get practical knowledge in using security testing techniques and tools and know how to set up and operate the deployment environment securely

  • This training is available online
  • Date: 9 September, 9:00 – 13:00
  • Duration: 4 hours
  • Proficiency level: skilled
  • Attendees should have basic skills of general quality assurance and testing
  • Domain: transport and manufacturing
  • Language: English

Track 2.2: Cybersecurity specialists

This scenario will walk you through the preparation phase of incident response

After this course you will be able to prepare an incident response

  • This training is available online, on demand
  • Duration: 1 hour
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

This scenario will walk you through the detection and analysis phase of incident response as defined by NIST

After this course you will be able to detect and analyse an incident during an incident response

  • This training is available online, on demand
  • Duration: 1 hour
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

This scenario will walk you through the containment eradication and recover phase of incident response

After this course you will be able to contain and eradicate an incident and recover from it

  • This training is available online, on demand
  • Duration: 1 hour
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

This scenario will walk you through the post incident phase of incident response

After this course you will be able to carry out post-incident activities during an incident response

  • This training is available online, on demand
  • Duration: 1 hour
  • Proficiency level: beginner
  • Domain: transport and manufacturing
  • Language: English

Network security from data link to application layer showing common attacks against the used protocols

After this course you will be able to understand the basic concepts of security, IT security and secure coding, the requirements of secure communication and much more

  • This training is available online
  • Date: 23 September, 9:00 – 13:00
  • Duration: 4 hours
  • Proficiency level: skilled
  • Attendees should have basic skills of network engineering and general software development
  • Domain: transport and manufacturing
  • Language: English

Basics of public key infrastructure and how to use it

After this course you will understand the basics of public key infrastructure and how to use it

  • This training is available online
  • Date: 2 October, 9:00 – 13:00
  • Duration: 4 hours
  • Proficiency level: skilled
  • Attendees should have basic skills of general C/C++ development
  • Domain: transport and manufacturing
  • Language: English

Q&A

The courses are assigned to different proficiency levels:

  • Beginner
    • Has the fundamental awareness and understanding of basic techniques and concepts
    • Learners get a fundamental awareness and understanding to follow and apply basic techniques and concepts under supervision after completing this level
  • Skilled
    • Can effectively perform and execute the tasks as requested
    • Learners acquire the competences allowing them to effectively perform and execute the tasks as requested with limited level of autonomy after completing this level
  • Expert
    • Provides guidance and troubleshoot related to this area of expertise
    • Learners acquire the competences allowing them to provide guidance and troubleshoot related to this area of expertise with autonomy after completing this level