Cyber Security









Preferred method of contact:

CompTIA Cybersecurity Analyst CSA+ Exam Preparation

COURSE TYPE

Practitioner

Course Number

2047

Duration

5 Days

View Schedule

Recent high-level hacks have determined that the Advanced Persistent Threat (APT) is still alive and well. Moreover, traditional firewalls and security tools are not enough to thwart an attack. CSA+ applies behavioral analytics to IT security to better evade these constant threats. This course is designed specifically for experienced information security professionals preparing to take the CSA+ exam.

You Will Learn How To

  • Prepare for and pass the Cybersecurity Analyst (CSA+) exam
  • Identify tools and techniques used to perform environmental reconnaissance of a target network or security system
  • Use network host and web application vulnerability assessment tools and interpret the results to provide effective mitigation
  • Participate in a senior role within an incident response team and use forensic tools to identify the source of an attack
  • Understand the use of frameworks, policies, and procedures, and report on security architecture with recommendations for effective compensating controls

Important Course Information

Requirements:

  • IT Security Professionals must have 3-4 years of hands-on information security or related experience at the level of Network+ or Security+

Recommended Experience:

  • It is recommended that you have the following skills and knowledge before starting this course:
    • Knowledge of basic network terminology and functions (such as OSI Model, Topology, Ethernet, Wi-Fi, switches, routers)
    • Understanding of TCP/IP addressing, core protocols, and troubleshooting tools
    • Network attack strategies and defenses
    • Knowledge of the technologies and uses of cryptographic standards and products
    • Network- and host-based security technologies and practices
    • Standards and products used to enforce security on web and communications technologies

Exam Information:

  • Course tuition includes an exam voucher. The exam is offered through Pearson Vue.

Course Outline

  • Module 1: Threat Management

Cybersecurity analysts

  • Cybersecurity roles and responsibilities
  • Frameworks and security controls
  • Risk evaluation
  • Penetration testing processes

Reconnaissance techniques

  • The kill chain
  • Open source intelligence
  • Social engineering
  • Topology discovery
  • Service discovery
  • OS fingerprinting
  • Module 2: Threat Management

Security appliances

  • Configuring firewalls
  • Intrusion detection and prevention
  • Configuring IDS
  • Malware threats
  • Configuring anti-virus software
  • Sysinternals
  • Enhanced mitigation experience toolkit

Logging and analysis

  • Packet capture
  • Packet capture tools
  • Monitoring tools
  • Log review and SIEM
  • SIEM data outputs
  • SIEM data analysis
  • Point-in-time data analysis
  • Module 3: Vulnerability Management

Managing vulnerabilities

  • Vulnerability management requirements
  • Asset inventory
  • Data classification
  • Vulnerability management processes
  • Vulnerability scanners
  • Microsoft baseline security analyzer
  • Vulnerability feeds and SCAP
  • Configuring vulnerability scans
  • Vulnerability scanning criteria
  • Exploit frameworks

Remediating vulnerabilities

  • Analyzing vulnerability scans
  • Remediation and change control
  • Remediating host vulnerabilities
  • Remediating network vulnerabilities
  • Remediating virtual infrastructure vulnerabilities

Secure software development

  • Software development life cycle
  • Software vulnerabilities
  • Software security testing
  • Interception proxies
  • Web application firewalls
  • Source authenticity
  • Reverse engineering
  • Module 4: Cyber Incident Response

Incident response

  • Incident response processes
  • Threat classification
  • Incident severity and prioritization
  • Types of data

Forensics tools

  • Digital forensics investigations
  • Documentation and forms
  • Digital forensics crime scenes
  • Digital forensics kits
  • Image acquisition
  • Password cracking
  • Analysis utilities

Incident analysis and recovery

  • Analysis and recovery frameworks
  • Analyzing network symptoms
  • Analyzing host symptoms
  • Analyzing data exfiltration
  • Analyzing application symptoms
  • Using sysinternals
  • Containment techniques
  • Eradication techniques
  • Validation techniques
  • Corrective actions
  • Module 5: Security Architecture

Secure network design

  • Network segmentation
  • Blackholes, sinkholes, and honeypots
  • System hardening
  • Group policies and MAC
  • Endpoint security

Managing identities and access

  • Network access control
  • Identity management
  • Identity security issues
  • Identity repositories
  • Context-based authentication
  • Single sign on and federation
  • Exploiting identities
  • Exploiting web browsers and applications

Security frameworks and policies

  • Frameworks and compliance
  • Reviewing security architecture
  • Procedures and compensating controls
  • Verifications and quality control
  • Security policies and procedures
  • Personnel policies and training
Show complete outline
Show Less

Convenient Ways to Attend This Instructor-Led Course

Hassle-Free Enrollment: No advance payment required to reserve your seat.
Tuition due 30 days after you attend your course.

In the Classroom

Live, Online

Private Team Training

In the Classroom — OR — Live, Online

Tuition — Standard: $3290   Government: $2833

Aug 28 - Sep 1 (5 Days)
9:00 AM - 4:30 PM EDT
Herndon, VA / Online (AnyWare) Herndon, VA / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Sep 25 - 29 (5 Days)
9:00 AM - 4:30 PM EDT
New York / Online (AnyWare) New York / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Oct 23 - 27 (5 Days)
9:00 AM - 4:30 PM EDT
Rockville, MD / Online (AnyWare) Rockville, MD / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Dec 4 - 8 (5 Days)
9:00 AM - 4:30 PM EST
Herndon, VA / Online (AnyWare) Herndon, VA / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Dec 18 - 22 (5 Days)
9:00 AM - 4:30 PM EST
New York / Online (AnyWare) New York / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Jan 22 - 26 (5 Days)
9:00 AM - 4:30 PM EST
Rockville, MD / Online (AnyWare) Rockville, MD / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Feb 26 - Mar 2 (5 Days)
9:00 AM - 4:30 PM EST
Herndon, VA / Online (AnyWare) Herndon, VA / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Mar 19 - 23 (5 Days)
9:00 AM - 4:30 PM EDT
New York / Online (AnyWare) New York / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Apr 23 - 27 (5 Days)
9:00 AM - 4:30 PM EDT
Rockville, MD / Online (AnyWare) Rockville, MD / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

May 14 - 18 (5 Days)
9:00 AM - 4:30 PM EDT
Herndon, VA / Online (AnyWare) Herndon, VA / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Guaranteed to Run

Private Team Training

Enrolling at least 3 people in this course? Consider bringing this (or any course that can be custom designed) to your preferred location as a private team training.

For details, call 1-888-843-8733 or Click Here »

Tuition

Standard

Government

In Classroom or
Online

Standard

$3290

Government

$2833

Private Team Training

Contact Us »

Course Tuition Includes:

After-Course Instructor Coaching
When you return to work, you are entitled to schedule a free coaching session with your instructor for help and guidance as you apply your new skills.

Free Course Exam
You can take your course exam on the last day of your course and receive a Certificate of Achievement with the designation "Awarded with Distinction."

Prev
Next

Training Hours

Training Hours: 9:00 am – 5:00 pm ET

Enhance Your Credentials with Professional Certification

Learning Tree's comprehensive training and exam preparation guarantees that you will gain the knowledge and confidence to achieve professional certification and advance your career.

This course is approved by CompTIA for continuing education units (CEUs). For additional information and to confirm which courses are eligible towards your CompTIA certification, click here.

- ,

Prev
Next
Chat Now

Please Choose a Language

Canada - English

Canada - Français