CMD+CTRL Security is a pioneer in software security training, providing solutions to help organizations protect their software and data from cyber threats. The company’s mission is to deliver security expertise to all stakeholders involved in software development, from developers to the C-suite, to foster more secure and resilient software. This is achieved through a comprehensive suite of role-based modules, skill labs, and hands-on cyber ranges.
The company’s primary goal is to equip teams with the necessary skills to defend against the latest cyber-attacks and vulnerabilities by monitoring the threat landscape and technology trends. CMD+CTRL Security aims to reduce business risk and help organizations meet compliance requirements through its training programs. The company has established a strong market reputation, evidenced by multiple industry awards for its innovative approach to cybersecurity training. It is recognized as a leader in secure code training, with a focus on providing realistic and gamified learning experiences.
Offerings, Capabilities, and Integrations
CMD+CTRL Security is a pioneer in software security training, providing solutions that enable organizations to secure their software applications. Formerly the training division of Security Innovation, the company offers a comprehensive suite of training solutions designed to build security expertise across all roles involved in the software development lifecycle (SDLC). Its core offerings include role-based training modules, hands-on skill labs, and immersive cyber ranges. This approach gives CMD+CTRL a competitive edge by providing realistic, gamified, and engaging training that helps organizations reduce risk, close skill gaps, and meet compliance mandates. The company stays ahead of the market by continuously monitoring the threat landscape to ensure its training arms teams against the most current attacks and vulnerabilities.
Products and Services
CMD+CTRL Security’s products and services are delivered through its Base Camp platform, which combines interactive courses, labs, and its flagship cyber ranges.
- CMD+CTRL Cyber Range
This is the company’s flagship offering, a hands-on training platform that uses ultra-realistic, insecure software environments to build and assess security skills. It features 11 different immersive cyber ranges that simulate real-world applications, cloud platforms, and complex mobile apps, with challenges that vary in difficulty from basic to advanced. Recently, CMD+CTRL added the Forescient cyber range, which is designed specifically for Microsoft Azure users.
- Secure Software Training Courses
CMD+CTRL provides a library of over 250 role-based courses covering all skill levels across the entire SDLC. The training is designed to be turnkey for key roles and technologies, covering topics such as secure software development, infrastructure design, and risk management.
- Hands-On Labs
The company offers more than 125 practical, scenario-based labs that provide guided learning on specific vulnerabilities. These include labs focused on identifying vulnerabilities, labs based on the MITRE ATT&CK framework, and labs that use an Integrated Development Environment (IDE) to find and fix insecure code.
- Security Awareness Computer-Based Training
CMD+CTRL’s training modules are designed to be integrated into corporate Learning Management Systems (LMS) and support the Sharable Content Object Reference Model (SCORM) standard.
Target Customers
CMD+CTRL Security serves a wide range of organizations, from mid-size businesses to Global 100 and Fortune 500 enterprises. Its customer base includes companies in the financial services, technology, retail, and manufacturing industries. The company’s solutions are targeted at all stakeholders within an organization’s software development lifecycle.
- Builders
This group includes software developers, architects, and engineers. They benefit from learning to recognize and fix security flaws early in the development process.
- Operators
DevOps and cloud engineers use the training to learn how to better configure servers, protect APIs, manage access, and maintain the availability of services after deployment.
- Defenders
Penetration testers, red team members, and vulnerability assessors use the cyber ranges to sharpen their skills against progressively difficult and complex environments.
- Executives
The role-based training extends to the C-suite, providing leadership with an understanding of software security and risk.
Cloud Integrations and Marketplaces
CMD+CTRL provides cloud-based security training solutions and has a presence on the Microsoft Azure Marketplace.
- Microsoft Azure: CMD+CTRL offers its “Base Camp” training platform on the Azure Marketplace. The company also provides a cyber range named “Forescient,” which is specifically designed for Microsoft Azure users to find and resolve development, configuration, and integration challenges within the Azure environment. Additionally, CMD+CTRL offers insights on integrating security into Azure DevOps.
- Cloud-Based Cyber Ranges: CMD+CTRL’s cyber ranges are cloud-based and simulate real-world applications and platforms. For example, the “Infinicrate” range is a cloud file storage application scenario that involves cloud services, and the “MailJay” range emulates a cloud-native marketing automation SaaS suite.
There is no indication that CMD+CTRL has a presence on the AWS Marketplace or the Google Cloud Marketplace.
Key People
- Chief Executive Officer: Jeffrey Emig
- Vice President of Global Sales: Jeremy Wasser
- Head of Product & Marketing: Kellyn Bartlett
Key Facts
- Headquarters Location: Woburn, MA.
- Number of Employees: 2-10 (on LinkedIn)
- Annual Revenue: Less than $5M
- Parent Company: In July 2024, CMD+CTRL Security was spun-off from Security Innovation.
- Subsidiary Companies: None
- Publicly Listed: No.
Analyst Recognition
Based on publicly available information, CMD+CTRL is not currently featured in the primary technology category reports from Gartner, Forrester, IDC, and Everest Group.
