Cyber Defense Academy: From Attack to Response
Virtual & In Person series presented by Triaxiom Security
NCBA Learning Center
3601 Haworth DrRaleigh, NC 27609
Cyber Defense Academy: From Attack to Response
Presented by Triaxiom Security
Cyber threats are becoming increasingly sophisticated, and financial institutions remain one of the most targeted industries. Preparing for today's evolving threat landscape requires more than technical knowledge—it requires understanding how attacks begin, how they spread, and how organizations respond when every decision matters.
The Cyber Defense Academy is a comprehensive four-part learning experience designed specifically for banking professionals. Through three interactive virtual learning sessions and a hands-on, in-person executive tabletop exercise, participants will follow the complete lifecycle of a cyberattack—from the first phishing email to a full-scale ransomware incident.
Each session builds upon the previous one, providing participants with a deeper understanding of attacker tactics, organizational vulnerabilities, and practical defense strategies. The Academy culminates with The Exec Files: A Cyber Crisis Experience, an immersive tabletop exercise where participants work together to manage a ransomware attack as it unfolds in real time.
By the conclusion of the Academy, participants will leave with a stronger understanding of today's cyber threat landscape, greater confidence in responding to incidents, and practical strategies they can apply within their own financial institutions.
Enrollment is limited to 25 participants to provide a highly interactive learning environment and maximize participation during the tabletop exercise.
Academy Outcomes
Participants will:
- Understand the complete cyberattack lifecycle.
- Recognize how phishing and social engineering lead to larger compromises.
- Learn how attackers leverage stolen credentials and infostealer malware.
- Gain insight into modern ransomware operations.
- Strengthen organizational preparedness and response strategies.
- Practice executive decision-making during a live ransomware simulation.
- Return to their institutions with practical, actionable techniques to improve cyber resilience.
Registration Options
|
Registration Options
|
Price |
|---|---|
|
Member Registration Fee
|
$495.00 |
Academy Curriculum
Module 1
Protecting Your Organization From People Like Me
Virtual | 1 Hour | August 20th 10 AM - 11 AM
Cyberattacks frequently begin by exploiting human behavior rather than technology. This session explores how attackers use social engineering tactics—including phishing and vishing—to manipulate individuals and gain access to organizations. Participants will gain insight into the psychology behind these attacks, see how attackers conduct social engineering campaigns, and learn practical strategies to recognize and prevent them.
Key Learning Topics
- Social engineering tactics
- Phishing and vishing attacks
- Attacker methodology
- Human behavior and cybersecurity
- Prevention and defense strategies
Module 2
From Cookie to Catastrophe: The Infostealer Economy
Virtual | 1 Hour | September 17th 10 AM - 11 AM
After access is gained, attackers often deploy infostealer malware to collect usernames, passwords, browser data, and other sensitive information. This session explores how stolen credentials fuel future attacks and how organizations can identify and defend against these increasingly common threats.
Key Learning Topics
- How infostealers work
- Credential theft
- Browser data compromise
- Malware persistence
- Defensive controls
Module 3
How to Lose Your Credentials and Gain a New Domain Admin
Virtual | 1 Hour | October 1st 10 AM - 11 AM
Follow the attack from initial compromise to complete network infiltration. Participants will gain an inside look at how cybercriminal groups operate, how stolen credentials are weaponized, and how ransomware is ultimately deployed throughout an organization.
Key Learning Topics
- Privilege escalation
- Lateral movement
- Dark web operations
- Ransomware deployment
- Organizational defense strategies
Academy Capstone
The Exec Files: A Cyber Crisis Experience
In Person | 4 Hours | October 15th 10 AM - 2 PM
Put your knowledge into action during this immersive executive tabletop exercise.
Participants will work through a realistic ransomware attack affecting a financial institution, making critical decisions as the incident unfolds over the course of a simulated week. Throughout the exercise, teams will evaluate operational impacts, regulatory responsibilities, customer communications, business continuity, and executive decision-making under pressure.
The experience concludes with a walkthrough of an actual penetration test that demonstrates how the attack progressed throughout the network and highlights opportunities to strengthen defenses before a real incident occurs.
Triaxiom Security
Triaxiom Security, a division of Strata Information Group, is a cybersecurity consulting firm based in Charlotte, NC that helps organizations identify, assess, and reduce cyber risk. Through customized security assessments, compliance auditing, and strategic consulting, they help businesses strengthen their security posture, meet regulatory requirements, and protect their critical systems and data. With experience supporting organizations of all sizes across numerous verticals nationwide, Triaxiom brings practical, business-focused expertise tailored to each client's unique environment and risk profile.
Chris Horner
Chris Horner is a certified ethical hacker and vCISO with Triaxiom Security in Charlotte, NC. Before transitioning to cybersecurity, he held a two decade career in banking, serving in a variety of operational and client-facing roles. This combination of firsthand banking experience and cybersecurity expertise gives him a unique understanding of the challenges financial institutions face, enabling him to provide practical, real-world guidance that aligns security with business needs. He also frequently speaks at regional cybersecurity conferences, helping leaders understand emerging threats along with practical steps they can take to strengthen the security posture of their organization

For More Information:
Who Should Attend
The Cyber Defense Academy is designed for professionals responsible for protecting their institution's people, operations, and technology, including:
- Executive Leadership
- Information Security Officers
- IT Professionals
- Operations Leaders
- Risk Management
- Compliance Officers
- Internal Auditors
- Business Continuity Professionals
- Incident Response Teams