CompTIA Security+

1.    Course Overview

CompTIA Security+ (SY0-601) is a course designed to teach IT professionals the fundamentals of information security. The course covers everything from basic security concepts to advanced topics like identity management and vulnerability management. It provides a solid foundation in the essential security knowledge and skills necessary to develop and maintain a successful security program. The course can be used to prepare for the corresponding CompTIA Security+ certification exam and provide an understanding of security concepts that can be applied in any job.

2.    Course Duration

10 Days (40 Hours)

3.    Target Audience

The CompTIA Security+ SY0-601 training is designed for IT professionals who are looking to gain in-depth knowledge and expertise in the field of cybersecurity

This training is ideal for IT support professionals, system administrators, software developers, hardware engineers, and other individuals working in the security field or performing related IT activities

It is also a great option for those who are looking to gain official recognition of their cybersecurity skillset and become certified in security principles

The training provides an excellent introduction to the important principles and practices within the context of the CompTIA Security+ certification exam, ensuring that all candidates have the proper foundation to fully understand and be able to apply their knowledge when in a work environment

4.    During this course you should learn:

1-     Identify threats, attacks and technologies used to mitigate their impact.

2-     Understand how to design, implement and manage network security.

3-     Comprehend how to use authentication, authorization and access control mechanisms.

4-     Gain knowledge of risk mitigation methods and to identify appropriate mitigation techniques.

5-     Understand how to secure cloud, virtualization and information technologies.

6-     Recognize secure software development principles, policies and procedures.

7-     Become familiar with protocols and technologies associated with cryptography.

8-     Learn to identify secure networks and systems using monitoring and logging tools.

9-     Gain knowledge of organizational security strategies and incident response processes.

10-   Understand the different principles, methods and tools used to support operations security.

11-   Compare security roles and security controls

12-   Explain threat actors and threat intelligence

13-   Perform security assessments and identify social engineering attacks and malware types

14-   Summarize basic cryptographic concepts and implement public key infrastructure

15-   Implement authentication controls

16-   Implement identity and account management controls

17-   Implement secure network designs, network security appliances, and secure network protocols

18-   Implement host, embedded/Internet of Things, and mobile security solutions

19-   Implement secure cloud solutions

20-   Explain data privacy and protection concepts

21-   Perform incident response and digital forensics

22-   Summarize risk management concepts and implement cybersecurity resilience

23-   Explain physical security

5.    Course Content

Module1: Comparing Security Roles and Security Controls

• Compare and Contrast Information Security Roles
• Compare and Contrast Security Control and Framework Types

Module2: Explaining Threat Actors and Threat Intelligence

• Explain Threat Actor Types and Attack Vectors
• Explain Threat Intelligence Sources

Module3: Performing Security Assessments

• Assess Organizational Security with Network
• Reconnaissance Tools
• Explain Security Concerns with General Vulnerability Types
• Summarize Vulnerability Scanning Techniques
• Explain Penetration Testing Concepts

Module4: Identifying Social Engineering and Malware

• Compare and Contrast Social Engineering Techniques
• Analyze Indicators of Malware-Based Attacks

Module5: Summarizing Basic Cryptographic Concepts

• Compare and Contrast Cryptographic Ciphers
• Summarize Cryptographic Modes of Operation
• Summarize Cryptographic Use Cases and Weaknesses
• Summarize Other Cryptographic Technologies

Module 6: Implementing Public Key Infrastructure

• Implement Certificates and Certificate Authorities
• Implement PKI Management

Module 7: Implementing Authentication Controls

• Summarize Authentication Design Concepts
• Implement Knowledge-Based Authentication
• Implement Authentication Technologies
• Summarize Biometrics Authentication Concepts

Module 8: Implementing Identity and Account Management Controls

• Implement Identity and Account Types
• Implement Account Policies
• Implement Authorization Solutions
• Explain the Importance of Personnel Policies

Module 9: Implementing Secure Network Designs

• Implement Secure Network Designs
• Implement Secure Switching and Routing
• Implement Secure Wireless Infrastructure
• Implement Load Balancers

Module 10: Implementing Network Security Appliances

• Implement Firewalls and Proxy Servers
• Implement Network Security Monitoring
• Summarize the Use of SIEM

Module 11: Implementing Secure Network Protocols

• Implement Secure Network Operations Protocols
• Implement Secure Application Protocols
• Implement Secure Remote Access Protocols

Module 12: Implementing Host Security Solutions

• Implement Secure Firmware
• Implement Endpoint Security
• Explain Embedded System Security Implications

Module 13: Implementing Secure Mobile Solutions

• Implement Mobile Device Management
• Implement Secure Mobile Device Connections

Module 14: Summarizing Secure Application Concepts

• Analyze Indicators of Application Attacks
• Analyze Indicators of Web Application Attacks
• Summarize Secure Coding Practices
• Implement Secure Script Environments
• Summarize Deployment and Automation Concepts