CompTIA Security+ Certification
SY0-501 CompTIA Security+
CompTIA Security+ SY0-501: Analyzing Output from Security Technologies
CompTIA Security+ SY0-501: Application and Service Attacks
CompTIA Security+ SY0-501: Business Impact Analysis and Risk Management
CompTIA Security+ SY0-501: Cloud, Virtualization, and Resiliency Concepts
CompTIA Security+ SY0-501: Common Account Management Practices
CompTIA Security+ SY0-501: Components Supporting Organizational Security
CompTIA Security+ SY0-501: Cryptographic and Wireless Attacks
CompTIA Security+ SY0-501: Cryptography
CompTIA Security+ SY0-501: Deploying Mobile Devices Securely
CompTIA Security+ SY0-501: Frameworks, Guidelines, and Physical Security
CompTIA Security+ SY0-501: Identity and Access Management Controls
CompTIA Security+ SY0-501: Identity Concepts and Access Services
CompTIA Security+ SY0-501: Impacts from Vulnerability Types
CompTIA Security+ SY0-501: Implement Secure Network Architecture Concepts
CompTIA Security+ SY0-501: Implementing Secure Protocols
CompTIA Security+ SY0-501: Incident Response, Forensics, and Disaster Recovery
CompTIA Security+ SY0-501: Penetration Testing and Vulnerability Scanning
CompTIA Security+ SY0-501: Policies, Plans, and Procedures
CompTIA Security+ SY0-501: Public Key Infrastructure
CompTIA Security+ SY0-501: Secure System and Application Design and Deployment
CompTIA Security+ SY0-501: Security Assessment Using Software Tools
CompTIA Security+ SY0-501: Social Engineering and Related Attacks
CompTIA Security+ SY0-501: The Present Threat Landscape
CompTIA Security+ SY0-501: Troubleshooting Common Security Issues
CompTIA Security+ SY0-501: Types of Malware
CompTIA Security+ SY0-501: Wireless Security Settings
Mentoring SY0-501 CompTIA Security+
TestPrep SY0-501 CompTIA Security+

CompTIA Security+ SY0-501: Analyzing Output from Security Technologies

Course Number:
cs_syps_a13_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Analyzing Output from Security Technologies

  • start the course
  • work with Host Intrusion Detection System (HIDS) and Host Intrusion Prevention System (HIPS)
  • describe antivirus
  • define file integrity check
  • describe a host-based firewall
  • specify application whitelisting
  • define removable media control
  • compare patch management tools
  • describe UTM
  • define DLP
  • specify data execution prevention
  • describe web application firewall
  • work with technology output analysis

Overview/Description
One of the big trends is using big data to analyze and handle security attacks. In this course, output will be gathered and analyzed by several common security technologies, and you will be preparing for the Security+ SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Application and Service Attacks

Course Number:
cs_syps_a04_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Application and Service Attacks

  • start the course
  • describe zero day attacks
  • classify spoofing
  • recognize DoS and DDoS attacks
  • describe man-in-the-middle attacks
  • define ARP poisoning
  • describe buffer overflow attacks
  • recognize injection attacks
  • define privilege escalation
  • compare reflection and amplification
  • describe DNS poisoning
  • recognize domain hijacking
  • define man-in-the-browser
  • compare cross-site scripting and request forgery
  • describe replay attacks
  • define pass the hash attacks
  • recognize application and service attacks

Overview/Description
Modern attacks have only become more pervasive and sophisticated. This course covers application and service-level attacks and will prepare you for the Security+ SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Business Impact Analysis and Risk Management

Course Number:
cs_syps_a25_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Business Impact Analysis and Risk Management

  • start the course
  • describe the purpose of a BCP
  • identify the general steps in a BIA
  • define concepts related to recovery time such as MTD, RTO, and RPO
  • define Mean Time Between Failure (MTBF) and Mean Time to Repair (MTR)
  • describe privacy impact assessment and privacy threshold assessment
  • define risk management
  • describe risk assessment
  • identify risks to an organization
  • specify how to and who should be testing for risks
  • define risk analysis
  • describe qualitative risk analysis
  • describe quantitative risk analysis
  • define methods that can be used to respond to risk
  • define procedures for implementing change
  • recall business impact assessment and risk management concepts

Overview/Description
Knowing where to focus your security efforts is critical. In this course, you will be introduced to the value of BIA and Risk Management for your organization. This course will help prepare you for the SY0-501 Security+ exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Cloud, Virtualization, and Resiliency Concepts

Course Number:
cs_syps_a23_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Cloud, Virtualization, and Resiliency Concepts

  • start the course
  • compare different types of hypervisors and the benefits of using application containers
  • describe the issues related to VMs
  • compare the different types of cloud offerings such as IaaS, PaaS, and SaaS.
  • define the purpose and benefit to using a VDI/VDE
  • describe the function of a cloud access security broker and security as a service
  • describe how automation and scripting provide resiliency
  • describe how templates and master images provide resiliency
  • describe how non-persistence, snapshots, reverting to known states, rolling back configurations all provide resiliency
  • describe elasticity, scalability, and distributive allocation
  • define how high availability provides resiliency
  • describe how RAID can provide resiliency
  • recall various virtualization, cloud, and resiliency concepts

Overview/Description
Maximizing resources and uptime is critical today. In this course you will explore virtualization and cloud concepts as well as ways to provide resiliency. This course will help prepare you for the SY0-501 Security+ exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Common Account Management Practices

Course Number:
cs_syps_a19_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Common Account Management Practices

  • start the course
  • define user accounts
  • compare shared, guest, and generic accounts
  • describe privileged accounts
  • specify service accounts
  • recognize password best practices
  • define credential management and naming conventions
  • recognize group-based access control and Group Policy
  • describe location-based policies
  • define least privilege and time-of-day restrictions
  • compare onboarding and offboarding
  • describe recertification
  • define account maintenance
  • describe auditing and review
  • describe various account management best practices

Overview/Description
Security practitioners must be able to audit the implementation of account control mechanisms. This course will exploit these components as well as prepare the learner for the SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Components Supporting Organizational Security

Course Number:
cs_syps_a08_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Components Supporting Organizational Security

  • start the course
  • define firewalls
  • describe VPN concentrators
  • compare NIDS and NIPS
  • compare bridges and switches
  • describe routers
  • compare proxies and load balancers
  • recognize wireless access points
  • define SIEM systems
  • describe DLP systems
  • define NAC gateways
  • describe mail gateways
  • define media gateways
  • define encryption gateways
  • recognize specialty appliances
  • describe the various components that support organizational security

Overview/Description
One of the main goals of security is to protect the network and client-server architecture. This course covers the various components that support organizational security and it will prepare you for the Security+ SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Cryptographic and Wireless Attacks

Course Number:
cs_syps_a05_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Cryptographic and Wireless Attacks

  • start the course
  • recognize brute-force and dictionary attacks
  • demonstrate brute-force tools
  • describe birthday, known plaintext, and cipher attacks
  • compare online vs. offline attacks
  • define collisions
  • describe downgrade attacks
  • recognize replay attacks
  • specify initialization vector weaknesses
  • compare evil twins and rogue apps
  • describe jamming
  • compare bluejacking and bluesnarfing
  • define WPS attacks
  • recognize disassociation attacks
  • compare RFID and near field communication (NFC)
  • recognize cryptographic and wireless attacks

Overview/Description
Finding weaknesses in cryptosystems is not simply an exercise for cryptanalysts but also a goal of hackers. This course explores cryptographic and wireless attacks and will prepare you for the Security+ SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Cryptography

Course Number:
cs_syps_a10_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Cryptography

  • start the course
  • identify the role cryptography plays in maintaining CIA
  • identify the purpose of a cipher
  • identify the properties of a secure cipher
  • describe the function of block ciphers
  • describe the function of stream ciphers
  • describe the purpose of a cryptographic key
  • recognize the various ways to exchange cryptographic keys
  • describe the purpose of encryption
  • describe symmetric algorithms
  • identify various symmetric algorithms
  • describe asymmetric algorithms
  • identify various asymmetric algorithms
  • describe hashing
  • identify various hashing functions
  • describe data integrity
  • describe authentication
  • describe the purpose of digital signatures
  • describe the purpose of key stretching
  • identify additional security considerations such as steganography, obscurity, and weak algorithms
  • identify various cryptographic features and services

Overview/Description
Protecting your information at rest, in transit, and in use is your top priority. In this course, you will explore various cryptographic concepts. This course will help prepare you for the SY0-501 Security+ exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Deploying Mobile Devices Securely

Course Number:
cs_syps_a14_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Deploying Mobile Devices Securely

  • start the course
  • specify connection methods
  • compare deployment models
  • describe passwords, pins, and screen locks
  • define application and content management
  • describe remote wipe
  • compare geofencing and geolocation
  • describe push notification services
  • define biometrics and context-aware authentication
  • classify containerization and storage segmentation
  • describe full device encryption
  • describe enforcement and monitoring
  • describe enforcement and monitoring
  • describe ways to secure mobile devices

Overview/Description
With the explosion of BYOD in corporate environments, there has been a rapidly emerging focus on securing mobile solutions. This course will help the learner deploy mobile devices securely and prepare for the Security+ SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Frameworks, Guidelines, and Physical Security

Course Number:
cs_syps_a20_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Frameworks, Guidelines, and Physical Security

  • start the course
  • identify the purpose of various frameworks and architectures
  • specify the reasoning behind following secure configuration guidelines
  • describe the benefits of implementing a layered security approach and the importance of diversity and user training
  • describe the importance of physical security in relation to the success of your organization
  • identify the importance of lighting in relation to security
  • identify the various methods that can be used to control or deter physical access
  • describe the importance of alarms and the difference between false alarms and true alarms
  • identify the benefits of using safes and secure cabinets
  • identify different types of locks and describe the importance of key management
  • describe various authentication options
  • define the importance of HVAC systems and fire suppression systems
  • describe various types of motion detection systems
  • define the concept of a protected system and air gaps
  • describe the purpose of various security controls such as Faraday cages, cable locks, screen filters, cameras, and sign-in and sign-out logs
  • recall the purpose of various security controls

Overview/Description
Following best practices and implementing physical controls are critical. In this course, you will explore best practices in addition to physical security measures. This course will help prepare you for the SY0-501 Security+ exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Identity and Access Management Controls

Course Number:
cs_syps_a18_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Identity and Access Management Controls

  • start the course
  • define MAC
  • define DAC
  • define ABAC
  • describe role-based access control
  • describe rule-based access control
  • use a fingerprint scanner
  • work with a retinal and iris scanner
  • use voice recognition
  • describe facial recognition
  • compare FAR, FRR, and CER
  • define tokens
  • describe certificate-based authentication
  • define file system security
  • define database security
  • compare access controls and biometrics

Overview/Description
Access control is at the heart of any successful security policy and deployment. In this course, you will classify different access control models and biometric factors and prepare for the SY0-501 Security+ exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Identity Concepts and Access Services

Course Number:
cs_syps_a17_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Identity Concepts and Access Services

  • start the course
  • compare identity and access management concepts
  • compare and contrast identity and access management concepts
  • define NTLM
  • compare PAP, CHAP, and MSCHAP
  • describe RADIUS
  • describe Terminal Access Controller Access Control System (TACACS+)
  • recognize Kerberos
  • define LDAP
  • describe secure token
  • define SAML
  • specify OpenID Connect
  • define OAuth
  • describe Shibboleth
  • describe identity concepts and various access services

Overview/Description
Identity services are a huge initiative in securing modern networks. In this course, you will explore the tools used to secure the environment based on the entity context as well as prepare for the Security+ SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Impacts from Vulnerability Types

Course Number:
cs_syps_a07_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Impacts from Vulnerability Types

  • start the course
  • describe race conditions
  • recognize system vulnerabilities
  • specify improper input and error handling
  • define misconfiguration
  • describe resource exhaustion
  • specify untrained users
  • work with improperly configured accounts
  • recognize vulnerable business processes
  • recognize weak cipher suites and implementations
  • define memory and buffer vulnerability
  • describe system sprawl and undocumented assets
  • describe architecture and design weaknesses
  • recognize new threats and zero-day attacks
  • define improper certificate and key management
  • specify the impact of different types of vulnerabilities

Overview/Description
There are a wide variety of impacts affecting every layer of the OSI model. In this course, the different effects of vulnerability types will be explored. The course will also prepare you for the Security+ SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Implement Secure Network Architecture Concepts

Course Number:
cs_syps_a21_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Implement Secure Network Architecture Concepts

  • start the course
  • describe the reasoning behind implementing different zones and topologies
  • define how physical, logical, virtual, and air gap separation provide security
  • describe site-to-site and remote access vpns
  • define where various devices and technologies should be placed for maximum security benefits
  • describe the security concerns surrounding the SDN
  • recall the purpose of various secure network architecture concepts

Overview/Description
Isolation and location is critical to security success. In this course, you will explore the benefits of isolating, separating, and placing resources in your organization. This course will help prepare you for the SY0-501 Security+ exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Implementing Secure Protocols

Course Number:
cs_syps_a15_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Implementing Secure Protocols

  • start the course
  • work with SSH
  • describe Secure Sockets Layer and Transport Layer Security (SSL/TLS)
  • describe HTTPS
  • describe DNSSEC
  • describe SRTP
  • describe FTPS
  • describe SFTP
  • describe LDAPS
  • describe work with SNMPv3
  • describe NTPv3
  • describe Secure POP/IMAP
  • describe S/MIME
  • work with routing protocol authentication
  • recognize various secure versions of common protocols

Overview/Description
It is no mystery that the original TCP/IP protocols are quite vulnerable. In this course, the learner will recognize a number of secure protocol implementations, as well as prepare for the SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Incident Response, Forensics, and Disaster Recovery

Course Number:
cs_syps_a26_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Incident Response, Forensics, and Disaster Recovery

  • start the course
  • define incident response and the incident response process
  • describe the importance and components of an incident response plan
  • describe the purpose of forensic investigation
  • identify the steps required during a forensics investigation
  • compare strategic intelligence and strategic counterintelligence
  • define disaster recovery and the disaster recovery plan
  • describe the different types of recovery sites
  • describe the different types of backups
  • recognize the geographic implications of disaster recovery
  • identify different security controls
  • describe media sanitization and data destruction
  • describe the benefits of labeling and handling
  • define various data roles
  • describe the purpose of data retention
  • recall incident response, forensics, disaster recovery, and security concepts

Overview/Description
Being prepared and ready to react is key to security success. In this course, you will explore procedures that are needed when disaster strikes and how to protect privacy. This course will help prepare you for the SY0-501 Security+ exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Penetration Testing and Vulnerability Scanning

Course Number:
cs_syps_a06_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Penetration Testing and Vulnerability Scanning

  • start the course
  • compare active vs. passive reconnaissance
  • describe a pivot
  • specify initial exploitation
  • define persistence
  • recognize escalation of privilege
  • compare black vs. gray vs. white box
  • compare pen testing vs. vulnerability scanning
  • passively test security controls
  • identify vulnerability
  • identify lack of security controls
  • identify common misconfigurations
  • compare intrusive vs. non-intrusive
  • compare credentialed vs. non-credentialed
  • describe false positives
  • recognize penetration testing and vulnerability scanning methods

Overview/Description
Some of the best tools for improving security can also be in the wrong hands. This course identifies penetration testing methods and tools, as well as vulnerability scanners. This course will prepare you for the Security+ SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Policies, Plans, and Procedures

Course Number:
cs_syps_a24_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Policies, Plans, and Procedures

  • start the course
  • describe the benefits of using standard operating procedures
  • define various agreements such as BPA, SLA, ISA, and MOU
  • describe the benefits of enforcing mandatory vacations, job rotation, separation of duties, and the principle of least privilege
  • describe the benefits of a clean desk policy, a background check policy, exit interviews, NDA, and onboarding
  • describe the benefits of security awareness training
  • define the purpose of acceptable use policies
  • describe the benefits of social media policies and personal email policies
  • recall the purpose of various policies, plans, and procedures

Overview/Description
Security is only as strong as the underlying policies, plans, and procedures. In this course, you will explore the importance of policies, plans, and procedures for security. This course will help prepare you for the SY0-501 Security+ exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Public Key Infrastructure

Course Number:
cs_syps_a11_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Public Key Infrastructure

  • start the course
  • recall the purpose of a PKI and a trusted introducer
  • describe the benefits and uses of the public key infrastructure for an organization
  • recognize the various CA trust models that can be implemented, such as single CA, hierarchical, bridge, peer-to-peer, and mesh
  • describe the concept of certificate chaining
  • identify the purpose and types of pinning
  • describe the benefits of certificate expiration, revocation, and suspension, and distinguish between a CRL and OCSP
  • describe the benefits of key escrow and when you might consider using it
  • recognize the x.509 certificate format and file extensions
  • describe various types certificates and their uses
  • recall various PKI concepts

Overview/Description
All secure communications begin with trust. In this course, you will explore the important role that PKI plays for secure communications. This course will also help prepare you for the SY0-501 Security+ exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Secure System and Application Design and Deployment

Course Number:
cs_syps_a22_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Secure System and Application Design and Deployment

  • start the course
  • describe how anchoring the trust of a system within hardware using TPM, SED, and HSM improves security
  • describe the benefits of secure system booting and how UEFI plays a role in it
  • identify how systems may be protected from EMI and EMP
  • identify when security needs to be considered in the supply chain
  • recall key considerations of a secure operating system
  • describe the concept of a trusted operating system
  • describe the security concerns and considerations when using wireless keyboards and mice, displays, Wi-Fi enabled MicroSD cards, printers, usb storage, and digital cameras
  • define secure development concepts
  • describe the security concerns of SCADA, IoT, and HVAC
  • describe the security concerns of SoC and RTOS
  • describe the security concerns of multi-function devices, camera systems, medical devices, vehicles, and aircraft
  • compare waterfall and Agile development life cycle models
  • describe the importance of security with DevOps
  • define various development concepts
  • describe various techniques that are used for secure coding
  • define various methods for code quality and testing
  • compare compiled code vs. runtime code
  • recall various concepts related to secure system design and application development

Overview/Description
Layered security is the key to security success. In this course, you will examine when and where security needs to be considered for devices, systems, and applications. This course will help prepare you for the SY0-501 Security+ exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Security Assessment Using Software Tools

Course Number:
cs_syps_a09_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Security Assessment Using Software Tools

  • start the course
  • work with protocol analyzers
  • work with network scanners
  • specify wireless scanners/cracker
  • work with password crackers
  • describe vulnerability scanners
  • define configuration compliance scanner
  • describe exploitation frameworks
  • compare data sanitization tools
  • define steganography tools
  • describe honeypots
  • configure backup utilities
  • define banner grabbing
  • compare passive vs. active
  • describe other command line tools
  • work with security assessment using software tools

Overview/Description
There is a saying that a craftsman is only as good as his tools. In this course, the learner will explore several demonstrations of various tools for security assessment as well as prepare for the Security+ SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Social Engineering and Related Attacks

Course Number:
cs_syps_a03_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Social Engineering and Related Attacks

  • start the course
  • define impersonation and hoaxing
  • recognize tailgating and piggybacking
  • define shoulder surfing
  • describe dumpster diving
  • compare phishing, spear phishing, and whaling
  • describe watering hole attacks (social networks)
  • compare vishing and smishing
  • specify reasons for effectiveness
  • define clickjacking
  • describe session hijacking
  • describe URL hijacking
  • recognize typosquatting
  • define shimming
  • describe refactoring
  • recognize and classify social engineering and hijacking attacks

Overview/Description
It can be safely said that the human factor is the main vulnerability in the modern enterprise. This course covers social engineering and other attacks and prepares the learner for the Security+ SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: The Present Threat Landscape

Course Number:
cs_syps_a01_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: The Present Threat Landscape

  • start the course
  • describe the threat landscape
  • describe risks and vulnerabilities
  • define threats, threat agents, exploits, and payloads
  • define countermeasures and mitigation
  • describe IOCs
  • describe script kiddies and hacktivists
  • compare organized crime, states, and APTs
  • describe insider and competitor threats
  • compare internal and external threats
  • compare structured and unstructured threats
  • define levels of sophistication, resources, and funding of threats
  • recognize threat intent and motivation
  • describe different open-source intelligence in threats
  • identify different malware threats
  • define and describe the threat landscape and agents

Overview/Description
There are always new emerging threats and other exploits on the horizon. This course examines the status quo in security threats, recognizing threat actors and their attributes, and will prepare the learner for the Security+ SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Troubleshooting Common Security Issues

Course Number:
cs_syps_a16_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Troubleshooting Common Security Issues

  • start the course
  • define unencrypted credentials
  • describe logs and events anomalies
  • specify permission issues
  • define access violations
  • specify certificate issues
  • describe data exfiltration
  • describe misconfigured devices
  • recognize weak security configurations
  • classify personnel issues
  • define unauthorized software
  • define baseline deviation
  • recognize license compliance violation
  • describe asset management
  • specify authentication issues
  • specify various security troubleshooting issues

Overview/Description
The simplest answer is usually correct and that is never truer than when troubleshooting security. In this course, the learner will explore common root causes of security issues, as well as prepare for the Security+ SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Types of Malware

Course Number:
cs_syps_a02_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Types of Malware

  • start the course
  • describe viruses
  • define worms
  • describe Trojans
  • specify RATs
  • identify different vulnerabilities
  • describe ransomware
  • define cryptomalware
  • describe bots and botnets
  • define backdoors
  • define rootkits
  • define logic bombs
  • define keyloggers
  • classify spyware
  • define stegomalware
  • describe polymorphic packers
  • describe and compare malware types

Overview/Description
Most malware is a set of stealthy, complex, hybrid malicious code. This course will specify the different types of malware that organizations must deal with daily, and will prepare the learner for the Security+ SY0-501 exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

CompTIA Security+ SY0-501: Wireless Security Settings

Course Number:
cs_syps_a12_it_enus
Lesson Objectives

CompTIA Security+ SY0-501: Wireless Security Settings

  • start the course
  • describe the importance of authentication and encryption for wireless networks
  • identify the differences between the three different types of wireless networks
  • choose the most appropriate wireless standard and mode to secure your wireless communications
  • distinguish between PSK and Enterprise authentication for wireless networks
  • identify the common methods of encrypting communications on wireless networks
  • configure an open wireless network
  • configure a WPA PSK wireless network
  • configure a WPA Enterprise wireless network
  • configure a WPA2 PSK wireless network
  • configure a WPA2 Enterprise wireless network
  • describe and use Wi-Fi Protected Setup
  • describe and use a captive portal
  • to recall various wireless security topics and concepts

Overview/Description
It is common for all organizations to have wireless networks, but these networks may not be secure. This course covers how wireless networks can be secured, and it will also help prepare you for the SY0-501 Security+ exam.

Target Audience
IT security professionals with a minimum of two years' experience in IT administration with a focus on security; users with basic day-to-day technical information security experience; those interested in gaining a broader and deeper knowledge of security concerns and implementation; and learners preparing for the Security+ SY0-501 exam

Mentoring SY0-501 CompTIA Security+

Lesson Objectives

Mentoring SY0-501 CompTIA Security+

  • Threats, Attacks and Vulnerabilities
  • Technologies and Tools
  • Architecture and Design
  • Identity and Access Management
  • Risk Management
  • Cryptography

Overview/Description
Skillsoft Mentors are available to help students with their studies for exam SY0-501 CompTIA Security+. You can reach them by entering a Mentored Chat Room or by using the Email My Mentor service.

Target Audience
Individuals who are studying the associated Skillsoft content in preparation for, or to become familiar with, the skills and competencies being measured by the actual certification exam.

TestPrep SY0-501 CompTIA Security+

Course Number:
cs_syps_a01_tp_enus
Objectives:

Overview/Description
To test your knowledge on the skills and competencies being measured by the vendor certification exam. TestPrep can be taken in either Study or Certification mode. Study mode is designed to maximize learning by not only testing your knowledge of the material, but also by providing additional information on the topics presented. Certification mode is designed to test your knowledge of the material within a structured testing environment, providing valuable feedback at the end of the test.

Target Audience
Individuals seeking practice in a structured testing environment, covering the skills and competencies being measured by the vendor certification exam.

Prerequisites: none

Close Chat Live