Network Security & Intrusion Detection Systems (IDS/IPS) is a focused course designed to equip learners with the knowledge and tools to protect enterprise networks from internal and external threats. The course starts by establishing the fundamentals of network architecture, including TCP/IP, OSI model, subnetting, routing, switching, and network segmentation. Learners understand how to identify vulnerabilities in networks and implement defense mechanisms such as firewalls, proxies, access control lists (ACLs), and VPNs. A major part of the course is dedicated to intrusion detection and prevention. Learners differentiate between IDS and IPS, understanding their roles in monitoring network traffic, identifying anomalies, and taking preventive action. Signature-based, anomaly-based, and hybrid detection methodologies are discussed, along with alert tuning and false positive management. Tools such as Snort, Suricata, Zeek, and OSSEC are introduced for real-world hands-on practice. Students configure sensors, write detection rules, and integrate alerts with SIEM platforms. Packet analysis using Wireshark and NetFlow monitoring techniques help students gain deep insight into traffic behavior. Threat hunting exercises teach learners how to detect lateral movement, data exfiltration, and zero-day attacks. By the end of the course, students will be capable of designing secure network infrastructures, deploying IDS/IPS systems, and proactively defending against advanced threats.