Learning Tracks
Your roadmap to real skills.
Many tracks and dozens of sub-tracks. Every track starts with a free intro lesson.
Learning Tracks
Many tracks and dozens of sub-tracks. Every track starts with a free intro lesson.
Control who can access what, and prove it.
~12 hours · 12 lessons
View track details →What is IAM?
Understand what identity and access management is and why controlling access matters.
Passwords and Authentication
Learn how passwords are stored and hashed, and hash passwords hands-on with Python and bcrypt.
Multi-Factor Authentication
Understand MFA types (TOTP, SMS, hardware keys) and how attackers bypass them.
Access Control Models
Apply RBAC, ABAC, and the principle of least privilege to design a real access scheme.
Directory Services and SSO
Understand Active Directory, LDAP, Single Sign-On, OAuth, and OpenID Connect.
Privileged Access Management
Understand why privileged accounts are prime targets and how PAM tools protect them.
Hands-on: Microsoft Entra ID
Provision a sandbox tenant, assign least-privilege roles, enable MFA, and author a Conditional Access policy.
Hands-on: AWS IAM Policies
Write a least-privilege AWS IAM policy and verify it in the IAM Policy Simulator.
OAuth 2.0 and OIDC Flows
Read a real OAuth/OIDC flow in browser DevTools and identify common implementation vulnerabilities.
Zero Trust Architecture
Map an organisation's identity, device, network, application, and data posture against the CISA Zero Trust Maturity Model.
IAM Resources and Next Steps
Explore curated resources, certifications (Security+, SC-900), and practice platforms for IAM mastery.
IAM Job Readiness
Translate IAM skills into a resume, portfolio plan, and interview prep for IAM analyst and engineer roles.