CYBER COUNTERINTELLIGENCE · NICCS LISTED · IAFIE ALIGNED · OPERATIONAL SINCE 2002

The Generative AI Certified Cyber CounterIntelligence Analyst (CCCI) is a 40 CPE-credit, on-demand counterintelligence training program covering operational security and Rules of Engagement, deception planning, influence and manipulation tradecraft, adversary behavioral profiling (Myers-Briggs destructive modes, Dark Triad, Pitch Black Tetrad, Big 5 / OCEAN, Seven Radicals), offensive countermeasures, disinformation analysis, insider threat detection under the Insider Threat Capability Maturity Model (CMM Plus with AI), and elicitation methods across an 8-week minimum self-paced path. Graduates execute counterintelligence operations against hostile collection, conduct adversary persona analysis using behavioral profiling frameworks, run AI-augmented insider threat assessments, and counter influence campaigns under CIA and DIA-derived counterintelligence tradecraft.

Price $3,499 USD
Duration 8 Weeks Min
Access Expandable
CPE Credits 40 Hours
Format On-Demand
Credential CCCI

What You Will Learn

Counterintelligence tradecraft delivered across 8 weeks of curriculum

  • Cyber counterintelligence fundamentals — Rules of Engagement, operational security (OPSEC) for CI work, and integration of generative AI assistants into counterintelligence workflows
  • Influence and manipulation tradecraft — Cialdini's six principles of influence, Rules for Radicals, methods to disagree and manipulate, and disinformation pattern recognition
  • Adversary behavioral profiling — Myers-Briggs destructive and under-pressure modes, Dark Triad, Pitch Black Tetrad, Big 5 / OCEAN, and the Seven Radicals framework applied to persona analysis
  • Deception planning and execution — denial and deception operations management, deception narrative construction, and counter-deception detection
  • Offensive countermeasures — proactive counterintelligence techniques against hostile collection, with operational rules of engagement
  • Disinformation and information operations — propaganda analysis, conspiracy theory weaponization, the 44 Dirty Tricks taxonomy, and aspects of disinformation across narrative channels
  • Insider threat detection with AI augmentation — the Insider Threat Capability Maturity Model (CMM Plus), traditional detection methods, and AI-driven insider threat analytics
  • Elicitation methods for interviews and online operations — playbook-driven elicitation, stress-tested interview protocols, liveness checks, and online impostor detection

What You Will Be Able To Do After

Concrete operational capabilities upon completion

  • Plan and execute cyber counterintelligence operations against hostile adversary collection under documented rules of engagement
  • Profile adversary personas and operators using Myers-Briggs destructive modes, Dark Triad, Pitch Black Tetrad, Big 5 / OCEAN, and Seven Radicals frameworks
  • Construct and run deception operations, including narrative planning, denial methods, and offensive countermeasures aligned to organizational risk posture
  • Identify and counter influence operations using Cialdini's principles, Rules for Radicals, and the 44 Dirty Tricks taxonomy as defensive analysis frameworks
  • Detect, document, and respond to insider threats using the Insider Threat Capability Maturity Model (CMM Plus) with AI-augmented behavioral analytics
  • Run elicitation-driven interviews and online operations using playbook protocols, liveness checks, and stress-tested impostor detection methods
  • Integrate generative AI assistants into counterintelligence workflows for adversary modeling, narrative analysis, deception detection, and bias control
  • Brief leadership on counterintelligence posture, insider threat exposure, and disinformation or influence campaigns targeting the organization

Who This Is For

  • Counterintelligence officers and analysts in commercial, defense, or government settings building active CI capability
  • Insider threat program managers building or maturing detection, investigation, and response capabilities
  • Security leaders responsible for executive protection, brand defense, and influence operation response
  • Threat hunters and SOC team leads transitioning into proactive CI and adversary engagement work
  • Investigations and HR-security partners running elicitation-driven interviews, integrity inquiries, and personnel security reviews
  • Information operations analysts (state and corporate) countering hostile narrative campaigns, disinformation, and reputational attacks
  • Cyber intelligence analysts integrating CI tradecraft into existing threat assessment and adversary targeting workflows

Prerequisites

  • No formal prerequisites required — open enrollment, civilian-accessible (no clearance required)
  • Recommended: foundational cyber intelligence or security background; familiarity with OSINT and adversary tradecraft concepts
  • Helpful: prior exposure to behavioral psychology, social engineering defense, or insider threat program operations
  • Technical: a workstation capable of running browser-based tools and generative AI assistants; corporate or institutional email address for enrollment validation

How CCCI Differs From Other Counterintelligence Training

Most counterintelligence training is either government / clearance-restricted (DoD CI courses, federal CI schoolhouses) or narrowly scoped to a single discipline (insider threat indicators, social engineering, OSINT). CCCI is purpose-built as a civilian-accessible, full-spectrum cyber counterintelligence curriculum integrating behavioral profiling, deception, offensive countermeasures, influence operations, and AI-augmented insider threat detection under one program.

Dimension CCCI (Treadstone 71) Typical Alternative
Behavioral profiling depth Myers-Briggs, Dark Triad, Pitch Black Tetrad, Big 5 / OCEAN, Seven Radicals Single framework or omitted entirely
Insider threat methodology Insider Threat Capability Maturity Model (CMM Plus) with AI augmentation Indicator-based detection without maturity framework
Influence operations coverage Cialdini's principles + 44 Dirty Tricks + Rules for Radicals as CI defensive frameworks Treated as separate discipline or omitted
Operational posture Deception planning + offensive countermeasures with documented rules of engagement Defensive / detection-only posture
AI integration Generative AI assistants for CI workflows, adversary modeling, narrative analysis Not addressed
Civilian access Open enrollment, no clearance or government affiliation required Government / clearance-only or DoD-restricted
Analytic foundation CIA / DIA counterintelligence tradecraft adapted to cyber domain Compliance-driven or indicator-based
Operational lineage Continuous CI operations since 2002, including sustained adversary persona work within Al-Qaeda and Taliban networks Recent curriculum without field operational heritage
About the Instructor
Treadstone 71
We See What Others Cannot

Treadstone 71 is a veteran-owned cyber intelligence firm operational since 2002, codifying CIA and DIA-style intelligence tradecraft for the cyber domain. The firm's foundational capability rests on a rare synthesis of United States Air Force cryptologic linguistics (Arabic and Russian), United States Army armored reconnaissance, academic study of Middle Eastern and Russian history, language, and political systems at Trinity College, Middlebury College, and Colgate University, and direct in-country immersion in Jeddah, Kingdom of Saudi Arabia during the formative years of the modern jihadist movement (1988–89). A Master of Science in Information Assurance from Norwich University extends the field tradecraft into enterprise-scale risk management. The aggregate methodology has been continuously refined across four continents of operational engagement.

Treadstone 71 was honored with the 2007 RSA Conference Award for Excellence in the Field of Security Practices and the 2007 SC Magazine Award for Best Security Team. Operational engagements span clandestine cyber HUMINT (including sustained adversary persona operations within Al-Qaeda and Taliban networks), real-time OSINT support to the Boston FBI following the 2013 Marathon bombing, FBI special-agent OSINT instruction, and senior-leader briefings at NATO Cooperative Cyber Defence Centre of Excellence (CyCon, Estonia), the United States Naval Academy, the Air Force Institute of Technology, and Johns Hopkins. Treadstone 71 is a founding member of the Cloud Security Alliance and holds board seats with Boston InfraGard, the Potomac Institute for Policy Studies, and the Journal of Law and Cyber Warfare.

From 2009 to 2014, Treadstone 71 codified field-tested clandestine cyber tradecraft into the first master's-level cyber intelligence curriculum, established at Utica College, with parallel instruction in Information Security Risk Management at Clark University. The Cyber Intel Training Center is the operational continuation of that curriculum — IAFIE-aligned, PHIA-standards-compliant, and listed in the CISA NICCS cybersecurity workforce development catalog. Treadstone 71 has authored or contributed to The Illusion of Due Diligence — Notes from the CISO Underground, Current and Emerging Trends in Cyber Operations, and multiple editions of the Computer Information Security Handbook, and appears as a primary subject-matter expert on CNN, CBS News, Fox News, BBC Radio, BBN, and i24News.

USAF Cryptologic Linguist (Arabic, Russian)
US Army Armored Scout Platoon Leader
Trinity College — Middle East Studies & Arabic
Norwich University — M.S. Information Assurance
2007 RSA Conference Award
2007 SC Magazine Best Security Team
NATO CCDCOE · USNA · AFIT Briefings
Cloud Security Alliance Founding Member

Beyond training, Treadstone 71 delivers active counterintelligence engagements — adversary persona analysis, insider threat program build, influence operation response, and AI-augmented CI capability development for in-house security teams.

Explore Cyber Counterintelligence Services at Treadstone 71 →

Begin Your Certified Cyber CounterIntelligence Analyst Path

On-demand enrollment opens immediately on purchase. Eight weeks minimum with expandable access, mentor support, and AI-augmented case studies throughout.

$3,499 USD 12% off featured programs with code TWELVEROFF at checkout

Scroll up to use Teachable's enroll button, or contact info@treadstone71.com for enterprise / multi-seat licensing or government procurement inquiries.

Get started now!



Course Curriculum


  Week 1 - Cyber CounterIntelligence
Available in days
days after you enroll
  Week 2 - Cyber CounterIntelligence
Available in days
days after you enroll
  Week 3 to 4 - Cyber CounterIntelligence
Available in days
days after you enroll