1. Home
  2. Training courses
  3. Full catalogue of courses
  4. Cyber threat intelligence

Cyber threat intelligence

Registration
Start Date:
End Date:
Event dates
Start Date:
End Date:
Location

Mauritius

Global or multi-regional
Training topics
  • Cybersecurity
Training type
Training course
Training modality
Face to Face
Languages
  • English
Event mail contact
mlobin@cert.govmu.org
Financial support available
Yes
Tutors
  • Jennita Rao Appanah Appayya
  • Kaleem Ahmed USMANI
Coordinators
  • Manish Lobin
  • Ghazi Mabrouk
  • Angel Draev
Course level

Intermediate

Duration
4.5 days
Price
$0.00
* Financial support available

Event organizer(s)

CERT-MU logo
Computer Emergency Response Team of Mauritius (CERT-MU)

Supported by

Global Gateway logo
Global Gateway

Description

This course is designed to introduce the in-depth concept of cyber threat intelligence to participants and provide them with the practical experience to gain cyber threat intelligence skills required to make security teams better, threat hunting more accurate, incident response more effective, and organizations more aware of the evolving cyber threat landscape. Cyber threat intelligence is an area of cybersecurity that focuses on the collection and analysis of information about current and potential attacks that can threaten the safety of an organization or its assets.

With generous support from the Global Gateway initiative of the European Union, participation in this training programme is free of charge for selected applicants. This includes accommodation, meals, and other planned learning activities during the training. Participants or their organizations are responsible for covering their travel expenses and visa application costs for Mauritius if needed.

This training is intended for incident handlers, network engineers, SOC analysts, CERT analysts, security analysts, network administrators, and other cybersecurity professionals in government institutions.

The maximum number of participants in this training is limited to 30.

Members of the above-mentioned target population are invited to apply for the training if they meet the following criteria: 

  • Have an undergraduate degree in a relevant field or a minimum of three years of active sector experience in case an applicant does not hold a university degree. 
  • Have basic knowledge of cybersecurity and cyber threat intelligence.
  • Have a fluent English language level.
  • Complete the application questionnaire and attach an up-to-date CV, a recommendation letter from the employer or a motivation letter. 

Government officials and policymakers from developing countries, particularly women, are encouraged to apply. Selection will be done by the course organizers upon considering the above entry requirements in addition to the analysis of the application questionnaire and the recommendation/motivation letter of each applicant.

Upon completion of this course, participants will be able to: 

  • Describe the concept of Cyber Threat Intelligence (definition, objectives and specific vocabulary).
  • Apply tactical, operational, and strategic-level threat intelligence.
  • Use CTI-specific models.
  • Generate threat intelligence to detect, respond to, and defeat focused and targeted threats.
  • Outline the different sources to collect adversary data and how to exploit them.
  • Validate information received externally to minimize the costs of bad intelligence.
  • Develop analysis skills to better comprehend, synthesize, and leverage complex scenarios.
  • Identify and create intelligence requirements through practices such as threat modeling.

The training will include presentations by subject matter experts from Computer Emergency Response Team (Mauritius), analysis of examples and real-world case studies such as wannacry ransomware, as well as group exercises followed by instructor feedback.

Grade Distribution:

  • Active participation: 10%
  • Group exercises & presentations (Day 1): 20%
  • Group exercises & presentations (Day 2): 20%
  • Group exercises & presentations (Day 3): 20%
  • Exams (Multiple Choice Questions): 30%

Certification Requirements:

  • A minimum score of 70% is required to obtain the ITU certificate.
  • Full attendance throughout the training is mandatory for certification.

Sunday, 20 July 2025 (Arrival in Mauritius)

  • 19:00: Group Dinner at the Hotel

Day 1 – Monday, 21 July 2025

  • 08:30-09:00: Registration
  • 09:00-09:15: Opening Remarks (CERT-MU, ITU, and invited representatives)
  • 09:15-10:45: Coffee Break
  • 10:45-11:45: Session: Introducing Cyber Threat Intelligence
  • 11:45-12:15: Activity: Case Study on a Cyber Threat Scenario
  • 12:15-12:30: Debriefing and Discussion
  • 12:30-13:30: Lunch Break
  • 13:30-14:15: Session: Cyber Threat Intelligence Objectives and Categories
  • 14:15-15:15: Activity: Categorizing CTI for a Threat Scenario
  • 15:15-15:45: Debriefing and Discussion
  • 15:45-16:00: Coffee Break
  • 19:00: Dinner at the Hotel for International Participants

Day 2 – Tuesday, 22 July 2025

  • 09:00-09:30: Recap of Day 1
  • 09:30-10:30: Session: CTI Lifecycle
  • 10:30-11:00: Session: Challenges in the CTI Lifecycle
  • 11:00-11:15: Coffee Break
  • 11:15-12:30: Session: CTI Frameworks
  • 12:30-13:30: Lunch Break
  • 13:30-14:00: Activity: Generating CTI Using Frameworks
  • 14:00-14:30: Debriefing and Discussion
  • 14:30-15:45: Session: CTI Protocols
  • 15:45-16:00: Coffee Break
  • 19:00: Dinner at the Hotel for International Participants

Day 3 – Wednesday, 23 July 2025

  • 09:00-09:30: Recap of Day 2
  • 09:30-10:30: Session: CTI Platforms
  • 10:30-10:45: Coffee Break
  • 10:45-11:30: Activity: Introduction to the MISP Interface
  • 11:30-12:30: Session: Core Features and Capabilities of MISP
  • 12:30-13:30: Lunch Break
  • 13:30-14:30: Activity: Adding Events on MISP
  • 14:30-15:45: Session: Sharing CTI Using MISP
  • 15:45-16:00: Coffee Break
  • 19:00: Dinner at the Hotel for International Participants

Day 4 – Thursday, 24 July 2025

  • 09:00-09:30: Recap of Day 3
  • 09:30-10:45: Session: Introduction to Threat Intelligence Reports
  • 10:45-11:00: Coffee Break
  • 11:00-11:30: Session: Creating CTI Reports
  • 11:30-12:30: Activity: Generating CTI Reports Using Tools
  • 12:30-13:30: Lunch Break
  • 13:30-14:00: Recap Session of Days 1-4
  • 14:00-15:00: Exam (Multiple Choice Questions)
  • 19:00-22:00: Cultural Dinner for Participants and Tutors

Day 5 – Friday, 25 July 2025

  • 10:00-11:00: Activity: Tour of CERT Mauritius and Security Operations Centre (SOC)
  • 11:00-11:15: Coffee Break
  • 11:15-11:30: Course Evaluation
  • 11:30-12:45: Award Ceremony & Closing
  • 12:45-13:45: Lunch Break

Financial support available

ITU will cover training content, accommodation, meals and training activities.

 

Registration information

Document on registration information (English)

Unless specified otherwise, all Â鶹ÉçÊÓƵ training courses are open to all interested professionals, irrespective of their race, ethnicity, age, gender, religion, economic status and other diverse backgrounds. We strongly encourage registrations from female participants, and participants from developing countries. This includes least developed countries, small island developing states and landlocked developing countries.

Related documentation and links
Share in