Difference between revisions of "Central & Eastern Cohort: Cybersecurity Resilience Workshop -Track 1: Securing institutional e-mail, websites and identity systems"
From KENET Training
(→TimeTable) |
(→TimeTable) |
||
| (9 intermediate revisions by the same user not shown) | |||
| Line 101: | Line 101: | ||
|- | |- | ||
| **09:00** || **ICANN Grant Funded Training Project - an overview (JOINT)** (AKip/NK/BO) | | **09:00** || **ICANN Grant Funded Training Project - an overview (JOINT)** (AKip/NK/BO) | ||
| − | [https://training.kenet.or.ke/images/ | + | [https://training.kenet.or.ke/images/6/60/ICANN_KENET_Grant_-_Project_Overview_2026-2.pdf [1]] |
| + | [https://training.kenet.or.ke/images/d/d5/KENET_Program_Overview_ICANN_BO.pdf [1.2]] | ||
| + | [https://www.surveymonkey.com/results/SM-sWBpp5INtmvcdIcDykpfkg_3D_3D/ [1.13] | ||
|| **Module 14:** Authentication and Authorization Protocols (AK) || **Module 4:** Securing Email (DKIM, SPF, DMARC) (Akoech/KK) || (Contd) || **Module 12: ** Best Practices for eduroam, and IdP** (AI/AK) | || **Module 14:** Authentication and Authorization Protocols (AK) || **Module 4:** Securing Email (DKIM, SPF, DMARC) (Akoech/KK) || (Contd) || **Module 12: ** Best Practices for eduroam, and IdP** (AI/AK) | ||
|- | |- | ||
| style="background:#eef;" | **10:00** || colspan="5" style="background:#eef; text-align:center;" | '''Tea break (10:00 – 10:30)''' | | style="background:#eef;" | **10:00** || colspan="5" style="background:#eef; text-align:center;" | '''Tea break (10:00 – 10:30)''' | ||
|- | |- | ||
| − | | **10:30** || **Lab Environment & Topology Walkthrough (Lab Support)** (KC) || **Module 15:** Federated Identity & Trust (AK) || (Contd) || (Contd) || Assessment -section 1 MCQs** (ZM) | + | | **10:30** || **Lab Environment & Topology Walkthrough (Lab Support)** (KC) [https://training-labs.kenet.or.ke [1.3]] || **Module 15:** Federated Identity & Trust (AK) || (Contd) || (Contd) || Assessment -section 1 MCQs** (ZM) |
|- | |- | ||
| − | | **11:30** || **Module 1 on Intro to IP addressing and Routing (JOINT)** (KK) || **Module 14:** LDAP Identity Management Lab (AK) || **Module 6:** Best Practices for Securing Managed Email Services (KK) || (Contd) || Assessment -section 2 - LAB | + | | **11:30** || **Module 1 on Intro to IP addressing and Routing (JOINT)** (KK) [https://training.kenet.or.ke/images/7/7d/Track_2-Module_1-Introduction_to_IP_Addressing_and_Routing.pdf [2]] || **Module 14:** LDAP Identity Management Lab (AK) || **Module 6:** Best Practices for Securing Managed Email Services (KK) || (Contd) || Assessment -section 2 - LAB |
|- | |- | ||
| − | | **12:30** || **Module 1: DNS and its roles (JOINT)** (Akoech) || (Contd) || (Contd) || (Contd) || (Contd) | + | | **12:30** || **Module 1: DNS and its roles (JOINT)** (Akoech) [https://training.kenet.or.ke/images/b/bd/01_Track_1_A_Module_1_Introduction_to_DNS_%26_its_Role_in_Network_Security-2026.pdf [3]] || (Contd) || (Contd) || (Contd) || (Contd) |
|- | |- | ||
| style="background:#efe;" | **13:00** || colspan="1" style="background:#efe; text-align:center;" | '''Lunch break - Break into respective rooms after lunch''' || colspan="4" style="background:#efe; text-align:center;" | '''Lunch break''' | | style="background:#efe;" | **13:00** || colspan="1" style="background:#efe; text-align:center;" | '''Lunch break - Break into respective rooms after lunch''' || colspan="4" style="background:#efe; text-align:center;" | '''Lunch break''' | ||
|- | |- | ||
| − | | **14:00** || **Module 2: DNS Security & DNS Security Lab** (AKoech) || **Module 8:** Secure Wi-Fi Authentication (eduroam & RADIUS) (SK/AI) & **Module 8:** Implementing Secure Wi-Fi Authentication Using FreeRADIUS - Lab (AI/SK) || **Module 5:** Common Web Vulnerabilities& Security Assessment Lab (Akoech/KK) || **Module 10:** eduroam/freeRADIUS Monitoring & Troubleshooting (SK/AI) & LAB (Configuring and propagating eduroam SSID on AP controller) (SK) | + | | **14:00** || **Module 2: DNS Security & DNS Security Lab** (AKoech) [https://training.kenet.or.ke/images/b/bd/01_Track_1_A_Module_1_Introduction_to_DNS_%26_its_Role_in_Network_Security-2026.pdf [4]] || **Module 8:** Secure Wi-Fi Authentication (eduroam & RADIUS) (SK/AI) & **Module 8:** Implementing Secure Wi-Fi Authentication Using FreeRADIUS - Lab (AI/SK) || **Module 5:** Common Web Vulnerabilities& Security Assessment Lab (Akoech/KK) || **Module 10:** eduroam/freeRADIUS Monitoring & Troubleshooting (SK/AI) & LAB (Configuring and propagating eduroam SSID on AP controller) (SK) |
|| **Module 5:** Compliance and DPA 2019 -security&safeguards (NK) [JOINT] **Vote of Thanks (Guest Speaker) | || **Module 5:** Compliance and DPA 2019 -security&safeguards (NK) [JOINT] **Vote of Thanks (Guest Speaker) | ||
|- | |- | ||
Revision as of 09:17, 23 February 2026
KENET is pleased to invite you to the Cybersecurity Resilience Workshop - Track 1. This track focuses on fortifying the institutional digital perimeter by mastering the core protocols of DNS, Email, and Identity. Participants will transition from managing local services to building a "Circle of Trust" through the deployment of DNSSEC, DMARC/SPF/DKIM email protections, and eduroam infrastructure. The training will be held from February 23rd to February 27th, 2026, at the Abai Lodges and Spa in Kirinyaga.
The training will be held from February 23rd to February 27th, 2026
Contents
Objective
By the end of the program, attendees will be able to architect a full-lifecycle Identity Management (IdM) system, configure an Identity Provider (IdP) for global federation, and ensure all services meet international compliance and security standards. The ultimate objective is to provide seamless, secure access to resources while protecting the institution's brand and data integrity from modern cyber threats.
Who Should Attend?
This course is designed for Cybersecurity specialists, Systems administrators and webmasters.
Prerequisites
1. Laptop for the sessions with Wi-Fi capability 2. Intermediate to expert knowledge of Linux and the command line operations.
Course content
Note: All lab manuals and slides can be found in the [Workshop Resource Folder] at the bottom of this page.
Trainers
| Full Name | Initials (Inst.) | Role | Organization |
|---|---|---|---|
| Nyanjau Kimani | NK | Program Manager | KENET |
| Alfred Kipruto | AKip | Quality Assurance | KENET |
| Zeinab Mzungu | ZM | Logistics & Support | KENET |
| Caroline Gachuhi | CG | Registration & Support | KENET |
| Amos Koech | AKoech | Trainer | KENET |
| Anne Inapat | AI | Trainer | KENET |
| Anthony Kimani | AK | Trainer | KENET |
| Kevin Chege | KC | Trainer/Labs | ISOC |
| Kelvin Kariuki | KK | Trainer | MMU |
| Samuel Macharia | SK | Trainer | KENET |
Participants
TimeTable
| Time | Day 1 (Joint) | Day 2 () | Day 3 () | Day 4 () | Day 5 () |
|---|---|---|---|---|---|
| **07:00** | **Welcome and registrations** | Sessions start at 08:00 | |||
| **08:00** | **Introductions & Objectives (JOINT)** (AKip) | Recap | Recap | Recap | Recap |
| **08:20** | **Housekeeping (JOINT)** (ZM/Akip) | **Module 13:** Intro to Identity and Access Management (IAM) in Education (AK) | **Module 3:** Email Security Basics (KK) | *Module 9:** Installing and Configuring an Identity Provider (AK) | **Module 17:** Future of Identity and Trust in Education(AK) |
| **08:35** | (08:35 - 09:00 Joint Session) | (Contd) | (Contd) | (Contd) | (Contd) |
| **09:00** | **ICANN Grant Funded Training Project - an overview (JOINT)** (AKip/NK/BO) | **Module 14:** Authentication and Authorization Protocols (AK) | **Module 4:** Securing Email (DKIM, SPF, DMARC) (Akoech/KK) | (Contd) | **Module 12: ** Best Practices for eduroam, and IdP** (AI/AK) |
| **10:00** | Tea break (10:00 – 10:30) | ||||
| **10:30** | **Lab Environment & Topology Walkthrough (Lab Support)** (KC) [1.3] | **Module 15:** Federated Identity & Trust (AK) | (Contd) | (Contd) | Assessment -section 1 MCQs** (ZM) |
| **11:30** | **Module 1 on Intro to IP addressing and Routing (JOINT)** (KK) [2] | **Module 14:** LDAP Identity Management Lab (AK) | **Module 6:** Best Practices for Securing Managed Email Services (KK) | (Contd) | Assessment -section 2 - LAB |
| **12:30** | **Module 1: DNS and its roles (JOINT)** (Akoech) [3] | (Contd) | (Contd) | (Contd) | (Contd) |
| **13:00** | Lunch break - Break into respective rooms after lunch | Lunch break | |||
| **14:00** | **Module 2: DNS Security & DNS Security Lab** (AKoech) [4] | **Module 8:** Secure Wi-Fi Authentication (eduroam & RADIUS) (SK/AI) & **Module 8:** Implementing Secure Wi-Fi Authentication Using FreeRADIUS - Lab (AI/SK) | **Module 5:** Common Web Vulnerabilities& Security Assessment Lab (Akoech/KK) | **Module 10:** eduroam/freeRADIUS Monitoring & Troubleshooting (SK/AI) & LAB (Configuring and propagating eduroam SSID on AP controller) (SK) | **Module 5:** Compliance and DPA 2019 -security&safeguards (NK) [JOINT] **Vote of Thanks (Guest Speaker) |
| **16:00** | **Recap** (All) | **Recap** (All) | **Recap** (All) | **Recap** (All) | (16:00 - 16:30 **Certificate Award** **Post-Training Survey**) |
| **16:30** | **Tea break and Day End** | **Tea break and Day End** | **Tea break and Day End** | **Tea break and Day End** | **Tea break & End of Training!** |
Training Feedback Survey
Workshop Training Resources
Track 1: Securing Domains, Email, Web & Identity and Federation Services
JOINT Sessions
Additional Resources from NSRC -a KENET Training Partner
