Curriculum | BMCC Cybersecurity & AI 60-Week Programme

Programme Structure

Three distinct phases: Foundation, Core Specialisation, and Capstone.

Phase	Weeks	Focus	Learning Hours
Foundation	1-10	Cybersecurity fundamentals, networking, Linux, compliance basics	120 hours
Core & Specialisation	11-50	Incident response, cryptography, application security, pen testing, forensics	320 hours
Capstone & Integration	51-60	Real-world projects, industry certifications, job preparation, portfolio building	80 hours

Foundation Phase (Weeks 1-10)

Essential knowledge for everyone. No prerequisites.

Week 1-2: Cybersecurity Fundamentals

✓ Threat landscape overview
✓ Common attack vectors
✓ Defence strategies & frameworks
✓ Professional ethics

Week 3-4: Networking Fundamentals

✓ OSI Model & TCP/IP
✓ DNS, HTTP/HTTPS, SMTP
✓ Firewalls & basic routing
✓ Network troubleshooting

Week 5-6: Linux Essentials

✓ Command-line basics
✓ File systems & permissions
✓ User management
✓ Package management

Week 7-10: Security Compliance & Frameworks

✓ ISO 27001 basics
✓ NIST Cybersecurity Framework
✓ Risk management principles
✓ Assessment preparation

Core & Specialisation Phase (Weeks 11-50)

Deep dives into security specialisations with hands-on labs throughout.

Weeks 11-20: Incident Detection & Response

SIEM tools (Splunk, ELK), log analysis, threat detection, incident response procedures, forensic preservation, case management. Daily hands-on labs in cyber range.

Learning Outcomes: Detect anomalies, respond to incidents, write forensic reports

Assessments: Lab exercises (60%), incident response simulation (40%)

Weeks 21-30: Cryptography & Web Application Security

Encryption algorithms, PKI, certificate management. OWASP Top 10, injection attacks, broken authentication, sensitive data exposure. Burp Suite labs.

Learning Outcomes: Secure applications, implement cryptography correctly

Assessments: Labs (50%), written exam (50%)

Weeks 31-40: Penetration Testing & Ethical Hacking

Reconnaissance, scanning, enumeration, exploitation, post-exploitation. Metasploit, Burp, nmap. Methodology & reporting. Prepares for CEH & OSCP.

Learning Outcomes: Conduct full penetration tests ethically and professionally

Assessments: Capstone pentest (100%) - reported to instructors

Weeks 41-50: Digital Forensics & AI Security

Evidence collection, preservation, analysis. EnCase, FTK. AI threat landscape, deepfake detection, LLM security, prompt injection. Compliance with forensic standards.

Learning Outcomes: Investigate incidents professionally, understand AI security risks

Assessments: Forensic case analysis (60%), AI security project (40%)

Capstone & Certification Phase (Weeks 51-60)

Industry certifications, real-world projects, and job preparation.

Industry Certifications

✓ CompTIA Security+ (exam prep & cost covered)
✓ CEH (Certified Ethical Hacker)
✓ OSCP (Offensive Security Certified Professional)
✓ BMCC Cybersecurity Diploma

Capstone Project

Choose your specialisation. Security assessment, pen test report, forensic case study, or AI threat analysis. Real-world complexity. Graduate portfolio piece.

Career Preparation

✓ Interview coaching
✓ Resume review & LinkedIn optimisation
✓ Job placement support
✓ Employer introductions

Assessment Methods

✓ Hands-on lab exercises (60%)
✓ Projects & capstone (25%)
✓ Written/practical exams (15%)