Track D10 modules · 70 production-grade assets

Security

Defending AI and datacenter infrastructure across the modern stack.

10 modules, sequenced foundation → design 7 assets per module — theory always ships with a lab Career ladder with salary bands at every rung

What this track covers

One focus. One measurable outcome.

Focus

NGFW/segmentation, IPsec/SSL VPN, identity/AAA/802.1X-NAC, Zero Trust and SASE/SD-WAN — plus India's DPDP Act.

Graduate outcome

Graduate can architect zero-trust segmentation and lead incident response under Indian regulatory obligations — cybersecurity being, with networks, WEF's fastest-growing skills alongside AI.

Syllabus

10 modules, in the order you'll master them.

Each module is a complete unit of competence — sequenced so every later module stands on the one before it, and every one ships the same seven production-grade assets.

D01

Security Fundamentals & the Threat Landscape

CIA triad, attack surfaces, the kill chain and how modern threats target infrastructure.

D02

Cryptography & PKI

Symmetric/asymmetric crypto, hashing, certificates and building trust with PKI.

D03

Firewalls, NGFW & Segmentation

Stateful inspection, NGFW app-ID/IPS and macro/micro-segmentation strategy.

D04

VPNs & IPsec / SSL

Site-to-site and remote-access VPNs, IKE/IPsec and SSL/TLS tunnels.

D05

Identity, AAA & 802.1X / NAC

RADIUS/TACACS+, 802.1X supplicant/authenticator flows and identity-based access.

D06

Network Access Control & Zero Trust

Posture, policy and Zero Trust Network Access replacing implicit perimeter trust.

D07

IDS/IPS, SIEM & Security Monitoring

Detection engineering, SIEM correlation and building a monitoring pipeline.

D08

Cloud & Datacenter Security

Securing multi-cloud and DC workloads, CSPM and east-west protection.

D09

SASE & SD-WAN Security

Converged network+security at the edge — SWG, CASB, ZTNA and SD-WAN.

D10

Incident Response, Forensics & Compliance (DPDP Act)

DFIR workflow, evidence handling and compliance under India's DPDP Act.

The 7-asset system

Every module ships the same seven assets — 70 across this track.

You never get theory without a lab, a lab without commands, or a command without a way to verify it worked. Each of the 10 modules in Track D delivers all seven — closing with a 5-part workbook that hardens you for the exam and the job interview alike.

How the method works
Study Guide
Focused conceptual grounding, scoped precisely to what the lab will exercise.
Lab Guide
Hands-on, step-by-step builds on real topologies — configure the actual technology, not a simulation.
Command Guide
A working reference of the exact CLI/API syntax used in the lab — muscle memory, not abstraction.
Glossary
Module-specific terminology that closes the language gap between generalist and specialist.
Solution Guide
Fully worked answers and reference configurations so learners self-correct and understand the reasoning.
Lab Outcomes & Verification
Explicit success criteria — the learner proves the lab works and produces evidence of competence.
5-Part Workbook
Exam-ready hardening: Foundations → Terminology → Concept Mastery → Design Challenges → Exam Simulation.

Career ladder

Where Track D takes you — with the salary band at each rung.

01Entry · 0-2 yrs
SOC Analyst / Security Analyst
Rs 4-8 LPA
02Mid · 2-5 yrs
Network Security Engineer
Rs 8-16 LPA
03Senior · 5-9 yrs
SASE / Security Solution Architect
Rs 18-35 LPA
04Architect · 9+ yrs
Principal Security Architect / vCISO
Rs 35-60 LPA
See all career outcomes

Prove it with a certification

Track D maps directly to the Security Stream.

A three-tier network-security ladder — firewalls and segmentation to Zero Trust, SASE/SD-WAN and incident response with DPDP-Act compliance. Product-aligned to Juniper (SRX, JNCIA/JNCIP/JNCIE-SEC), Cisco (Firepower, ISE) and Aruba ClearPass.

Explore the Security Stream

10 modules. 70 assets. One track — deployable on day one.

Defending AI and datacenter infrastructure across the modern stack.