comptia security+ certification (exam sy0-501) · web viewsecurity+ is aimed at it...

Course overviewCompTIA Security+ Certification (Exam SY0-501) Study Guide(G635eng v107)

OverviewThis course is intended for those wishing to qualify with CompTIA Security+. CompTIA's Security+ Certification is a foundation-level certificate designed for IT administrators with 2 years' experience whose job role is focused on system security.

The CompTIA Security+ exam will certify the successful candidate has the knowledge and skills required to install and configure systems to secure applications, networks, and devices; perform threat analysis and respond with appropriate mitigation techniques; participate in risk mitigation activities; and operate with an awareness of applicable policies, laws, and regulations.

CompTIA Security+ Syllabus

Courseware with Integrated Learning from Professor MesserProfessor Messer has long been a web hero for CompTIA certification students. For many years, Professor Messer has provided video-based training courses for CompTIA certifications. With professionally-produced lessons covering the full exam objectives and online forums, Professor Messer is a trusted online source for exam information.

Now, gtslearning has partnered with Professor Messer to take this learning to a new level. You will be able to study from the gtslearning courseware and link to the appropriate training video (by QR code, hyperlink or typing short URL) for further explanation. Equally, a student studying from the Professor Messer video course will be able to easily follow his video presentations using the same CompTIA CAQC Official courseware.

Certification trackThis courseware bears the seal of CompTIA Approved Quality Content. This seal signifies this content covers 100% of the exam objectives and implements important instructional design principles. CompTIA recommends multiple learning tools to help increase coverage of the learning objectives. The contents of this training material were created for the CompTIA Security+ Certification SY0-501 exam covering the 2017 Edition certification exam objectives.

Target audienceCompTIA Security+ is the first security certification IT professionals should earn. It establishes the core knowledge required of any cybersecurity role and provides a springboard to intermediate-level cybersecurity jobs. Security+ incorporates best practices in hands-on troubleshooting to ensure security professionals have practical security problem-solving skills. Cybersecurity professionals with Security+ know how to address security incidents – not just identify them.


Security+ is aimed at IT professionals with job roles such as security engineer, security consultant / specialist, information assurance technician, junior auditor / penetration tester, security administrator, systems administrator, and network administrator.

CompTIA Security+ is approved as an IA baseline certification for the IA workforce as part of the IA Workforce Improvement Program (DoD 8570.01-M) and is included in the State Department Skills Incentive Program. More choose Security+ for DoD 8570 compliance than any other certification.

Course outcomesThis course will teach you the fundamental principles of installing and configuring cybersecurity controls and participating in incident response and risk mitigation processes. It will prepare you to take the CompTIA Security+ SY0-501 exam by providing 100% coverage of the objectives and content examples listed on the syllabus. Study of the course can also help to build the prerequisites to study more advanced IT security qualifications, such as CompTIA Cybersecurity Analyst (CSA)+, CompTIA Advanced Security Practitioner (CASP), and ISC’s CISSP (Certified Information Systems Security Professional).

On course completion, you will be able to:

Identify strategies developed by cyber adversaries to attack networks and hosts and the countermea-sures deployed to defend them.

Understand the principles of organizational security and the elements of effective security policies.

Know the technologies and uses of cryptographic standards and products.

Install and configure network- and host-based security technologies.

Describe how wireless and remote access security is enforced.

Describe the standards and products used to enforce security on web and communications technolo-gies.

Identify strategies for ensuring business continuity, fault tolerance, and disaster recovery.

Summarize application and coding vulnerabilities and identify development and deployment methods designed to mitigate them.

What's new?Security+ SY0-501 ensures that the exam keeps pace with the evolving security landscape. Security+ is developed by leading IT experts and industry-wide survey feedback. It focuses on the latest trends and techniques in risk management, risk mitigation, threat management and intrusion detection, with special emphasis on the newly supported Junior IT Auditor / Penetration Tester job role.

Exam formatThe SY0-501 exam, delivered through the Pearson VUE Test Center Network, contains 90 multiple-choice and performance-based test items and has a duration of 90 minutes. The passing score is 750 on a scale of 100-900.


Course prerequisitesTo get started with this course, you should have successfully completed gtslearning's "CompTIA Network+ Study Guide" course (gtsgo.to/i9osb) and obtained Network+ certification, and / or have around 24 months' experience of networking support or IT administration. It is not necessary that you pass the Network+ exam before completing Security+ certification, but it is recommended. Specifically, it is recommended that you have the following skills and knowledge before starting this course:

Know the function and basic features of the components of a PC.

Use Windows Server OS to create and manage files and use basic administrative features (Explorer, Control Panel, Server Manager, and Management Consoles).

Operate the Linux OS using basic command-line tools.

Know basic network terminology and functions (such as OSI Model, Topology, Ethernet, Wi-Fi, switches, routers).

Understand TCP/IP addressing, core protocols, and troubleshooting tools.

Instructor resources and lab optionsAn instructor edition of the course is available with margin notes and tips for the trainer. Access to course resources (setup guides and data, PowerPoint slides, timetables, and extra exam information) on gtslearning's trainer portal is also available, subject to meeting minimum order requirements.

Three types of labs are available to give students the practical experience critical to a successful training experience:

gtslearning's classroom labs provide in-depth practical coverage of the syllabus objectives by chal-lenging the student to complete configuration and troubleshooting tasks on a fully functional VM net-work. The classroom labs require one Windows 10 / Hyper-V host PC (8-16 GB RAM) per student and licenses for Windows 10, Windows Server 2016, and Windows 7.

Hosted classroom labs from our partner Learn on Demand systems save you site setup time and costs. LOD hosted classroom labs are accessed via a browser but follow the same general se-quence, steps, and timings as the classroom lab book. You can check system requirements and setup tasks at gtsgo.to/rb0uf.

Online Labs from our partner Practice Labs provide a different lab option for self-study and can also be used in the classroom. You can check system requirements and setup tasks at gtsgo.to/nf1rc.

https://gtsgo.to/nf1rc

https://gtsgo.to/rb0uf

https://gtsgo.to/i9osb


Course contentsThe course consists of a study volume, containing indexed notes and review questions, plus exam objectives mapping, exam information, and a comprehensive glossary. The course also comes with an online practice exam, pre-requisites test, and pre-/post-unit assessment tests.

Module 1 / Threats, Attacks, and Vulnerabilities

Indicators of Compromise • Why is Security Important? • Security Policy • Threat Actor Types • The Kill Chain • Social Engineering • Phishing • Malware Types • Trojans and Spyware • Open Source Intelligence • Labs • VM Orientation • Malware Types

Critical Security Controls • Security Control Types • Defense in Depth • Frameworks and Compli-ance • Vulnerability Scanning and Pen Tests • Security Assessment Techniques • Pen Testing Con-cepts • Vulnerability Scanning Concepts • Exploit Frameworks • Lab • Using Vulnerability Assess-ment Tools

Security Posture Assessment Tools • Topology Discovery • Service Discovery • Packet Capture • Packet Capture Tools • Remote Access Trojans • Honeypots and Honeynets • Labs • Using Network Scanning Tools 1 • Using Network Scanning Tools 2 • Using Steganography Tools

Incident Response • Incident Response Procedures • Preparation Phase • Identification Phase • Containment Phase • Eradication and Recovery Phases

Module 2 / Identity and Access Management

Cryptography • Uses of Cryptography • Cryptographic Terminology and Ciphers • Cryptographic Products • Hashing Algorithms • Symmetric Algorithms • Asymmetric Algorithms • Diffie-Hellman and Elliptic Curve • Transport Encryption • Cryptographic Attacks • Lab • Implementing Public Key Infra-structure

Public Key Infrastructure • PKI Standards • Digital Certificates • Certificate Authorities • Types of Certificate • Implementing PKI • Storing and Distributing Keys • Key Status and Revocation • PKI Trust Models • PGP / GPG • Lab • Deploying Certificates and Implementing Key Recovery

Identification and Authentication • Access Control Systems • Identification • Authentication • LAN Manager / NTLM • Kerberos • PAP, CHAP, and MS-CHAP • Password Attacks • Token-based Au-thentication • Biometric Authentication • Common Access Card • Lab • Using Password Cracking Tools

Identity and Access Services • Authorization • Directory Services • RADIUS and TACACS+ • Fed-eration and Trusts • Federated Identity Protocols

Account Management • Formal Access Control Models • Account Types • Windows Active Directory • Creating and Managing Accounts • Account Policy Enforcement • Credential Management Policies • Account Restrictions • Accounting and Auditing • Lab • Using Account Management Tools


Module 3 / Architecture and Design (1)

Secure Network Design • Network Zones and Segments • Subnetting • Switching Infrastructure • Switching Attacks and Hardening • Endpoint Security • Network Access Control • Routing Infrastruc-ture • Network Address Translation • Software Defined Networking • Lab • Implementing a Secure Network Design

Firewalls and Load Balancers • Basic Firewalls • Stateful Firewalls • Implementing a Firewall or Gateway • Web Application Firewalls • Proxies and Gateways • Denial of Service Attacks • Load Bal-ancers • Lab • Implementing a Firewall

IDS and SIEM • Intrusion Detection Systems • Configuring IDS • Log Review and SIEM • Data Loss Prevention • Malware and Intrusion Response • Lab • Using an Intrusion Detection System

Secure Wireless Access • Wireless LANs • WEP and WPA • Wi-Fi Authentication • Extensible Au-thentication Protocol • Additional Wi-Fi Security Settings • Wi-Fi Site Security • Personal Area Net-works

Physical Security Controls • Site Layout and Access • Gateways and Locks • Alarm Systems • Sur-veillance • Hardware Security • Environmental Controls

Module 4 / Architecture and Design (2)

Secure Protocols and Services • DHCP Security • DNS Security • Network Management Protocols • HTTP and Web Servers • SSL / TSL and HTTPS • Web Security Gateways • Email Services • S/MIME • File Transfer • Voice and Video Services • VoIP • Labs • Implementing Secure Network Ad-dressing Services • Configuring a Secure Email Service

Secure Remote Access • Remote Access Architecture • Virtual Private Networks • IPSec • Remote Access Servers • Remote Administration Tools • Hardening Remote Access Infrastructure • Lab • Im-plementing a Virtual Private Network

Secure Systems Design • Trusted Computing • Hardware / Firmware Security • Peripheral Device Security • Secure Configurations • OS Hardening • Patch Management • Embedded Systems • Secu-rity for Embedded Systems

Secure Mobile Device Services • Mobile Device Deployments • Mobile Connection Methods • Mo-bile Access Control Systems • Enforcement and Monitoring

Secure Virtualization and Cloud Services • Virtualization Technologies • Virtualization Security Best Practices • Cloud Computing • Cloud Security Best Practices


Module 5 / Risk Management

Forensics • Forensic Procedures • Collecting Evidence • Capturing System Images • Handling and Analyzing Evidence • Lab • Using Forensic Tools

Disaster Recovery and Resiliency • Continuity of Operations Plans • Disaster Recovery Planning • Resiliency Strategies • Recovery Sites • Backup Plans and Policies • Resiliency and Automation Strategies

Risk Management • Business Impact Analysis • Identification of Critical Systems • Risk Assessment • Risk Mitigation

Secure Application Development • Application Vulnerabilities • Application Exploits • Web Browser Exploits • Secure Application Design • Secure Coding Concepts • Auditing Applications • Secure De-vOps • Lab • Identifying a Man-in-the-Browser Attack

Organizational Security • Corporate Security Policy • Personnel Management Policies • Interoper-ability Agreements • Data Roles • Data Sensitivity Labeling and Handling • Data Wiping and Disposal • Privacy and Employee Conduct Policies • Security Policy Training

gtslearning 1998-2017. All rights reserved. All trademarks are the property of their respective owners.


Why choose gtslearning?Established 1998, gtslearning is an award-winning developer and supplier of printed and digitally-delivered courseware and learning support materials for CompTIA certifications.

Here are just a few of the reasons why you should choose gtslearning:

Instructor and student manuals

CAQC-approved printed books for delivery in the classroom

Fully integrated Professor Messer videos

Skillpipe eBooks

Browser-based app for reading CAQC-approved content as an eBook

Online and offline access with Windows desktop app, plus iOS and Android

Fully integrated Professor Messer videos

Online learning

Complete access to CAQC-approved content

Fully integrated practice exams (linking to revision topics if answered incorrectly) and Professor Messer videos

Optional LTI integration for SSO (Single Sign-On)

Free practice exams and review questions

Practice exam for each certification exam with 200+ questions per title

Free access through online learning site

Free instructor resources

PowerPoint slides, setup guides, class timetable and much more, for ALL titles – instructor edition in-cludes annotations for trainer

Lab manual with comprehensive exercises, loved by trainers worldwide!

Options

Online Practice Labs for self-study or classroom-based browser access to real, live equipment – over-the-shoulder tools available for trainers

Transcender Practice Exams with performance-based question simulation

And finally, doing business with gtslearning

20 years experience as CompTIA award-winning content developer

Offices in US, UK and South Africa


Fantastic customer service!

comptia security+ certification (exam sy0-501) · web viewsecurity+ is aimed at it...

Documents