Advanced Training ยท DART Cybersecurity

Applied AI for Cybersecurity Professionals

A 5-day intensive programme equipping cybersecurity professionals with the knowledge and hands-on experience to understand, secure, evaluate, and respond to AI systems.

About This Course

Artificial Intelligence is rapidly transforming how organisations operate, innovate, and defend themselves. From predictive analytics and automation to generative AI and agentic systems, AI technologies are increasingly embedded in business processes, critical infrastructure, and cybersecurity operations. As organisations accelerate AI adoption, cybersecurity professionals must develop a practical understanding of how these systems work, the risks they introduce, and the controls required to secure them.

AI systems differ fundamentally from traditional software. They rely on complex data pipelines, probabilistic models, and adaptive behaviour that can create new attack surfaces and security challenges. Large Language Models (LLMs), retrieval systems, autonomous agents, and AI-powered workflows introduce vulnerabilities that are not fully addressed by conventional cybersecurity practices. Threats such as prompt injection, model extraction, data poisoning, adversarial manipulation, and supply-chain compromise require defenders to understand both AI technologies and the security implications of their deployment.

At the same time, AI presents significant opportunities for cybersecurity teams. Security professionals are increasingly expected to evaluate AI solutions, participate in AI governance initiatives, define security requirements for AI deployments, and respond to incidents involving AI-enabled systems. To perform these responsibilities effectively, they need a practical understanding of AI architectures, attack methodologies, governance frameworks, and operational security controls.

This 5-day course equips cybersecurity professionals with the knowledge and hands-on experience needed to understand modern AI systems, identify and mitigate AI-related risks, evaluate AI deployments, develop governance and security requirements, and respond effectively to AI security incidents. Through a combination of lectures, practical exercises, and real-world case studies, participants will gain the skills required to support secure AI adoption within their organisations while strengthening their ability to defend against emerging AI-enabled threats.

Who Should Apply
๐Ÿ‘” Security engineers
๐Ÿ›ก๏ธ Security architects
๐Ÿ“‹ SOC analysts
โš–๏ธ Incident response and digital forensics professionals
๐Ÿ” Governance, Risk, and Compliance (GRC) professionals
๐Ÿ’ป Cybersecurity managers and team leads
๐ŸŽฏ CISOs and cybersecurity decision-makers
What Your Team Will Be Able To Do
โœ“
Describe the AI landscape and ML lifecycle. Differentiate between key AI/ML paradigms - Supervised, Unsupervised, Reinforcement Learning, Generative AI, and Agentic AI โ€” and explain the end-to-end Machine Learning Lifecycle (data ingestion, cleaning, training, deployment, monitoring), including the shift from traditional ML to Foundation Models and LLMs.
โœ“
Map AI anatomy to attack surface and vectors. Describe the functionality of AI systems - models, data, frameworks, infrastructure, and the developer/deployer/operator/user supply chain โ€” and relate each component to its corresponding attack surface and attack vectors.
โœ“
Build and evaluate AI systems using no-code/low-code tools. Use no-code platforms (e.g., n8n) to construct a working agentic AI system in order to understand the logic of model and pipeline construction, then evaluate AI system proposals for security risks across that pipeline.
โœ“
Develop controls, mitigations, and governance for AI deployments. Produce control requirements, mitigations, and security specifications for AI deployments, applying standard organisational procedures for AI integration including ethical considerations and data governance frameworks (NIST AI RMF, AIBOM, model registries, employee-AI-use policies).
โœ“
Respond to AI incidents and brief stakeholders. Assess AI security incidents (prompt injection, data poisoning, model extraction, supply-chain/model-loading attacks), determine appropriate containment and remediation responses, and brief both technical and non-technical stakeholders on the decisions made.
Programme Curriculum
1
Module 1: AI Foundations & the Anatomy of AI Systems
โ–ผ

Introduces the modern AI landscape: the four ML paradigms (supervised, unsupervised, reinforcement, generative) and where each is used in corporate and cybersecurity contexts; the end-to-end ML lifecycle from data ingestion and cleaning through deployment and monitoring; and the technology shift from traditional ML to Foundation Models and LLMs. Participants then study the building blocks of modern AI systems โ€” LLM architectures, prompting and reasoning, memory and Retrieval-Augmented Generation (RAG), and tool integration via function calling and MCP โ€” and the AI supply chain (developers, deployers, operators, users; models, data, frameworks, hardware, compute). The module is highly hands-on: learners progressively build a simplified agentic AI system in n8n (no coding required) to see first-hand how each lifecycle stage and component expands the attack surface.

2
Module 2: Cybersecurity Attacks and Defences of AI Systems
โ–ผ

Focuses on the evolving threat landscape, combining traditional software vulnerabilities with new attack vectors unique to ML and GenAI. Participants work through OWASP's Top 10 for LLM and GenAI applications, then deep-dive into prompt injection and jailbreaking, tool and RAG exploitation, supply-chain and model-loading attacks, and broader techniques catalogued in MITRE ATLAS. Each topic follows an Attackโ€“Defendโ€“Validate workflow on the agentic system built in Module 1. Real-world case studies ground the concepts in operational practice.

3
Module 3: AI Threat Modeling, GRC, and Responsible AI
โ–ผ

Equips participants with governance, risk, compliance, and threat-modeling approaches tailored to AI. Covers MITRE ATLAS for structured AI threat identification, the NIST AI Risk Management Framework for risks beyond security (bias, privacy, transparency, safety), and standard organisational procedures for AI integration โ€” ethical considerations, data governance frameworks, AI Bills of Materials (AIBOM), model registries, and policies for employee use of external AI tools.

4
Module 4: AI Incident Response and Forensics
โ–ผ

Extends incident response practice into AI-specific environments: detecting indicators of compromise, performing forensic analysis on prompt-injection traces, poisoned data, or malicious model behaviour, and implementing containment and remediation. Addresses unique challenges including non-deterministic outputs, distributed attack surfaces, and compromised training/retrieval pipelines. The day culminates in a team-based competitive exercise that also requires participants to brief technical and non-technical โ€œstakeholdersโ€ (role-played by trainers) on their findings and decisions.

โ† Back to All Courses