An MCSI qualified professional Blue Teamer is capable of delivering the full gamut of tasks for the SOC: malware analysis, threat hunting, threat intelligence, digital forensics, incident response and cyber defence.
Students who have successfully achieved their MBT Certification from MCSI can apply for Blue Teamer jobs worldwide with the confidence that they have the competencies the industry is seeking.
MCSI Certifications are world-class. The content is cutting-edge, uniquely-designed, hands-on and challenging. Our exercises teach in-demand skills that are immediately applicable in the field. MCSI's unique approach helps students around the world advance their careers.
This Certification has no expiry date. It has no renewal fees, no hidden fees, and is accessible with no time limits.
MCSI Certified Blue Teamer:
Investigate compromised machines and uncover what the attackers did
Rapidly reverse engineer and analyse malware samples to understand adversary capabilities
Identify anomalies and indicators of attacks on the network that enterprise security products have failed to catch
Track ongoing attack campaigns and provide actionable advice to teams in charge of defending the network(s)
Harden and protect networks against the most common attack vectors
Ability to comfortably read and understand IT documentation written in English. Ideally, an IELTS score of 6.5 with no band less than 6 (or equivalent).
Note: You can register for this course without having undertaken an English test.
We recommend that you have some experience in software programming prior to registering for this course.
The preferred programming languages for this course include: Python and PowerShell.
Knowledge of basic C and Assembly will also prove helpful for the reverse engineering exercises.
Here's a list of things for you to confirm whether you're at the right level:
Writing scripts in Python and PowerShell
Using command line utilities and tools
Operating virtual machines
Troubleshooting and resolving software errors
Frequently Asked Questions
What is the MCSI Method™?
Are solutions included in certifications and bundles?
No. Our method of teaching cyber security consists of challenging you with real-world problem statements that you're expected to research and solve by doing your own research. This is how you'll be expected to work in the field. When you fail an exercise, we provide you with constructive feedback to improve and try again.
Do the videos provides the answers to exercises?
No. The videos teach concepts, mindset, methodologies, procedures and professional skills such as report writing, interviewing and preparing proposals.
Do bundles, training content, or certificates ever expire? Am I expected to buy again in the future?
Once purchased, bundles and certificates are unlocked forever. They are no recurring or ongoing fees.
Do I need to buy the training and the certification separately?
No. The price provided covers both. You only pay once.
Do you offer any special offers and discounts?
If I can't solve the exercise where do I go for help?
We have an online forum where you can ask questions and our team of professional instructors will help you out.
An `Unofficial Curriculum` contains MCSI's practical exercises aligned to a non-MCSI Industry Certification syllabus.
We offer unofficial curriculums for the OSCP, ISACA CISA, ISACA CISM, ISACA CRISC, CCT ICE, CCSAS, CCT ACE.
Do you provide Continuing Professional Education (CPE) credits?
Yes. Every single exercise offers CPE credits. The number of credits earned depends on the difficulty of the exercise completed. Below are the CPE Credits achieve for an exercise in each difficulty:
Novice exercises = 1 CPE credits
Advanced Beginner exercises = 2 CPE credits
Competent exercises = 5 CPE credits
Proficient exercises= 8 CPE credits
Beyond Proficient exercises = 16 CPE credits
Are MCSI courses/certifications recognized and have value outside of Australia?
Yes. MCSI certifications have value worldwide and are recognized by employers looking for individuals with practical cyber security skills.
MCSI's training is 100% practical with real cybersecurity problems designed to teach immediately applicable skills in the field. To solve our practical exercises, students must do their own research and develop their own solutions.
While completing exercises, students also develop their own comprehensive cybersecurity portfolio of skills. Individuals use this portfolio to demonstrate their cybersecurity competencies to solve real industry problems to future employers or hiring managers.
Do I need to complete an exam to receive MCSI Certification?
No. MCSI Certifications are completed by solving practical cybersecurity exercises.
This certification successfully prepares you for the following
Digital Forensics Analyst
Security Operations Centre (SOC) Analyst
Training Curriculum and Certifications
Students unlock Certificates of Completion for every exercise they complete. Industry Certifications are unlocked upon achieving Skills Proficiency Milestones.
Obtain CPE points by solving exercises
Achieve multiple certifications
Receive help from instructors online
MCSI's MBT certification covers all six levels of the Australian Signals Directorate's Cyber Skills Framework. You will achieve a certificate upon reaching each level. You will earn an industry certification at Level 5. Click here to learn more.
ASD Skills Proficiency Level
Curriculum Completion Requirement
Scenarios Completion Requirement
MCSI Blue Team Learner
MCSI Novice Blue Teamer
MCSI Blue Team practitioner
MCSI Senior Blue Team Practitioner
MCSI Certified Principal Blue Team Practitioner
MCSI Certified Expert Blue Teamer Practitioner
As an MCSI Certified Blue Teamer you will be fully capable of performing the following:
Deploy and manage incident mitigation strategies and tools
Patching applications and operating system
Hardening user applications and operating system
Automated analysis and content filtering
Restrict administrative privileges
Intrusion detection and response
Backup and recovery
Investigate and contain security intrusions on Windows systems:
Using all log types and sources
Performing timeline analysis
Conducting impact assessments
Recover compromised systems
Writing detection rules
Analyse suspicious binaries and malware samples:
Structured reverse engineering
Static and dynamic analysis
Rapidly identifying different malware types
Reverse engineering shellcode
Identify “unknown unknowns” in the network
Produce usable and actionable threat intelligence that assists business leaders make cyber security investment and divestment decisions
Write custom security tools to defend large-scale enterprise networks
The MBT has really helped me develop my skills across multiple areas of cyber defence. The new skills I am learning directly translate into my job role, improving my performance as a member of the SOC.
SOC Analyst, Financial Services
Amazing how one training curriculum can transform an entire workforce. The MBT was able to provide hands-on, online training to team members spread across the country, allowing us to manage and assess the skills of everyone. Once we started weekly practice with the MBT, we saw an immediate improvement across the board in the outcomes produced.
Cyber Defence Operations Lead, Healthcare Industry
The MBT has been excellent at providing cost-effective, online training for the entire SOC. We can set aside time throughout the week for team members to upskill through an online platform. These gives us the ability to prepare employees with the right skills to face real cyber challenges.
SOC Manager, Financial Services
Why MCSI’s Blue Teamer Certification is World Class
Comprehensive, Effective, Exceeds Standards
Holders of the MBT Certification have completed 100 practical online exercises thus demonstrating that they have the skills and knowledge in the following areas: cyber defence, digital forensics, threat hunting, reverse engineering and threat intelligence.
Students who have obtained this Certification have demonstrated that they have a full understanding of the internals of Windows for digital forensics, incident response, threat hunting and malware analysis purposes.
The challenges that students have had to overcome successfully in order to obtain this Certification have required them to write software in C/C++, Golang, PowerShell, and Python. This guarantees that Blue Teamers certified by MCSI can write custom defence tools to defend large-scale enterprise networks.