CyberScheme Team Member (CSTM) Training
How will I be assessed?
Practical exam — 2 hours
Candidates will sit their practical assessment, for which they have a total of 2 hours to complete the set tasks. Candidates will not be provided with a connection to the Internet and will not be permitted to make use of an Internet connection.
Candidates must bring a system capable of conducting network and host discovery and demonstrating or identifying vulnerabilities.
Candidates may use any software tools they deem appropriate; however, they must ensure they are appropriately licensed and function correctly.
Failure to demonstrate penetration test capabilities due to hardware or software misconfiguration may result in failure.
Each candidate will be required to connect their testing system to an external monitor and mirror their screen so that they may be scrutinised during the assessment. If a candidate’s testing system is not capable of performing this action, they may fail the practical element of the test.
Multiple-choice exam — 1 hour
Multiple-choice examination of 100 questions for which one hour is allocated. This is a closed book assessment.
Viva exam — ½ hour
On completion of the practical stage, candidates are requested to provide a synopsis of their findings to the examiner in a viva environment lasting no more than 30 minutes.
Once all four stages of the assessment are completed, the examiner will send the examination papers and notes on the practical test and viva for marking and final assessment.
What skills are covered?
All learning units are undertaken alongside practical exercises within our labs.
Introduction to encryption
Active directory domains
o RID and SID
o LDAPOperating systems and their architectures
System memory
Access control models and how they apply to operating systems
GRC security policies
OWASP Top Ten website penetration testing
Writing Reports
Understanding Risk Rating and Threats
Risk Scoring and Ranking
Pen Testing ‘Language’ and Terminology
Risk Management and Risk Analysis
Knowing the threat actors and their motives
Knowing your clients and why they engage your services
Supply chains, their impact and your responsibilities to them
Basic security monitoring
Pen test methodologies
Information gathering techniques – OSINT, passive network sniffing, DNS.
Computer Misuse Acts
GDPR and Data Protection
Using KALI
NMAP and port scanning tools
Metasploit
The OSI Model
TCP/IP and UDP protocols
ARP, FTP, IPsec, Wireless networking, DNS Routing
When is it?
The Cyber Scheme Team Member examination is currently being provided in a safe face-to-face setting by the Cyber Scheme at their HQ in Cheltenham, UK. If you wish to sit the exam a date will be provided for attendance at the Cheltenham examination centre prior to the commencement of your course and is typically within two working weeks of the completion of the course. These measures are currently in place due to social distancing restrictions.
Our training courses run virtually from Mon to Friday. Please contact us for upcoming dates.