Academy Pro
Medium and Hard Academy modules — Pro tier required
Passwordless and FIDO2 Rollout
FIDO2/WebAuthn end-to-end — passkeys vs hardware keys, registration and login flows, account-recovery design, server-side WebAuthn implementation, enterprise rollout sequence.
AcademySecurity Audit Programme and Reporting
Three lines of defence, audit calendar, continuous control monitoring, working papers, common-control framework across ISO/SOC2/PCI/RBI/SEBI, audit-fatigue management.
AcademySecure Code Review at Scale
Per-PR vs feature-level vs deep-dive code reviews, OWASP Top 10 hunt patterns, Semgrep custom-rule programme, what humans find that tools miss, rollout…
AcademyDigital Forensics and Chain of Custody
Order of volatility, RAM and disk imaging, NTFS/Linux artefacts, cloud forensics, mobile forensics, IT Act §65B, BSA admissibility — the practitioner forensic…
AcademyReverse Engineering and Malware Analysis
Static and dynamic RE workflow, Ghidra/IDA/Binary Ninja, packers, anti-analysis bypass, sandbox setup, YARA-rule writing — turning unknown binaries into hunting queries.
AcademyData Loss Prevention at Scale
DLP that works in 2026 — endpoint, network, cloud, email channels; pattern + classifier rules; rollout sequence (audit → block); fatigue management;…
AcademyCASB and SaaS Data Governance
CASB modes (forward proxy, reverse proxy, API), SaaS-to-SaaS OAuth governance, shadow-IT discovery, sensitive-data inventory across 200+ SaaS apps, and the rollout pattern…
AcademyPrivacy Engineering — Tokenisation and k-Anonymity
Privacy-preserving primitives — tokenisation, format-preserving encryption, k-anonymity, l-diversity, differential privacy — when each applies, the engineering trade-offs, and DPDP §10 implications.
AcademySecurity Architecture Patterns and Models
Reference architectures encode known-good designs — authentication, authorisation, secrets, service-to-service, logging, encryption patterns. Catalogue, deviation process, ARB governance.
AcademyHardware Roots of Trust — TPM, HSM, Secure Boot
TPM 2.0, HSM, ARM TrustZone, SGX/SEV, secure-element chips — what HRoT primitives offer, measured boot, key storage, attestation, confidential computing for cloud…