Mondoo Foundations

Mondoo Foundations

Gain hands-on experience with Mondoo, mastering its features, custom policies, and advanced security management.

2 days

What you will learn in this course

This intensive two-day training course provides a comprehensive introduction to Mondoo, a leading security tool designed to enhance your organization's IT security. Participants will gain hands-on experience in configuring, and utilizing Mondoo to detect vulnerabilities, ensure compliance with standards like NIS2 and ISO 27001, and manage security risks across various environments.

Day 1 covers the fundamentals of Mondoo, including its architecture, initial configuration and core features. Participants will learn how to integrate Mondoo with different systems and platforms, such as cloud services, containers, and other infrastructure. This day will also cover vulnerability scanning, compliance checks, and security monitoring.

Day 2 focuses on advanced topics and practical applications. Participants will explore how to create custom policies, automate security tasks, and generate detailed reports. The course will also cover incident response and remediation techniques, ensuring participants are equipped to handle real-world security challenges.

Through interactive labs, participants will develop the skills needed to effectively leverage Mondoo for robust security management.


Introduction to Mondoo

Setup and configuration

Integrating Mondoo with various systems (AWS/Azure, Kubernetes, VMs, Containers etc.)

Vulnerability scanning with cnquery

Compliance checks with MQL

Custom policy creation with cnspec

Automate security tasks and monitoring

Reporting and analytics

Incident response and remediation


This course is designed for

  • IT security professionals responsible for securing infrastructure and managing security tools
  • Compliance officers responsible for ensuring organizational compliance with industry standards and regulations (e.g. NIS2, ISO 27001)
  • Auditors conducting security audits who need to understand the current state of security in an organization
  • DevOps engineers focused on combining software development and IT operations


To get most out of this course, you should have:

  • The key to personal training success is a balanced mix of encouragement and challenges - the motivating motto: really learn instead of just taking part.


Our trainers have years of experience and will deliver the right mix of:

  • Aufschlussreiche Theorie
  • Praktische Beispiele
  • Praktische Übungen (Hands-On)

Technical requirements

We recommend the following equipment:

  • Stable internet connection
  • Modern browser

Get a free quote now

Fill out this form and click the „Submit“ button and we will send you a quote for
this course! No obligations, no commitment.

Learn more about
Vault Enterprise
Introduction to HashiCorp Vault.
Discover more


Agile Testing CI/CD Bootcamp

Run your tests on autopilot with CI/CD pipelines.

Details & booking
18.06.24 – 20.06.24 (Sprache: EN) || 10.09.24 - 12.09.24 (Language: EN)

Vault Enterprise - Public Training

Introduction to HashiCorp Vault. This public course will be held in English only.

Details & booking

Consul Enterprise

Connect dynamic applications.

Details & booking