LateStartHours => ComplianceDisclaimer => OnDemand =>

Cyber Security









Preferred method of contact:

CompTIA Cybersecurity Analyst CSA+ Exam Preparation

COURSE TYPE

Practitioner

Course Number

2047

Duration

5 Days

View Schedule

Recent high-level hacks have determined that the Advanced Persistent Threat (APT) is still alive and well. Moreover, traditional firewalls and security tools are not enough to thwart an attack. CSA+ applies behavioral analytics to IT security to better evade these constant threats. This course is designed specifically for experienced information security professionals preparing to take the CSA+ exam.

You Will Learn How To

  • Prepare for and pass the Cybersecurity Analyst (CSA+) exam
  • Identify tools and techniques used to perform environmental reconnaissance of a target network or security system
  • Use network host and web application vulnerability assessment tools and interpret the results to provide effective mitigation
  • Participate in a senior role within an incident response team and use forensic tools to identify the source of an attack
  • Understand the use of frameworks, policies, and procedures, and report on security architecture with recommendations for effective compensating controls

Important Course Information

Requirements:

  • IT Security Professionals must have 3-4 years of hands-on information security or related experience at the level of Network+ or Security+

Recommended Experience:

  • It is recommended that you have the following skills and knowledge before starting this course:
    • Knowledge of basic network terminology and functions (such as OSI Model, Topology, Ethernet, Wi-Fi, switches, routers)
    • Understanding of TCP/IP addressing, core protocols, and troubleshooting tools
    • Network attack strategies and defenses
    • Knowledge of the technologies and uses of cryptographic standards and products
    • Network- and host-based security technologies and practices
    • Standards and products used to enforce security on web and communications technologies

Exam Information:

  • Course tuition includes an exam voucher. The exam is offered through Pearson Vue.

Course Outline

  • Module 1: Threat Management

Cybersecurity analysts

  • Cybersecurity roles and responsibilities
  • Frameworks and security controls
  • Risk evaluation
  • Penetration testing processes

Reconnaissance techniques

  • The kill chain
  • Open source intelligence
  • Social engineering
  • Topology discovery
  • Service discovery
  • OS fingerprinting
  • Module 2: Threat Management

Security appliances

  • Configuring firewalls
  • Intrusion detection and prevention
  • Configuring IDS
  • Malware threats
  • Configuring anti-virus software
  • Sysinternals
  • Enhanced mitigation experience toolkit

Logging and analysis

  • Packet capture
  • Packet capture tools
  • Monitoring tools
  • Log review and SIEM
  • SIEM data outputs
  • SIEM data analysis
  • Point-in-time data analysis
  • Module 3: Vulnerability Management

Managing vulnerabilities

  • Vulnerability management requirements
  • Asset inventory
  • Data classification
  • Vulnerability management processes
  • Vulnerability scanners
  • Microsoft baseline security analyzer
  • Vulnerability feeds and SCAP
  • Configuring vulnerability scans
  • Vulnerability scanning criteria
  • Exploit frameworks

Remediating vulnerabilities

  • Analyzing vulnerability scans
  • Remediation and change control
  • Remediating host vulnerabilities
  • Remediating network vulnerabilities
  • Remediating virtual infrastructure vulnerabilities

Secure software development

  • Software development life cycle
  • Software vulnerabilities
  • Software security testing
  • Interception proxies
  • Web application firewalls
  • Source authenticity
  • Reverse engineering
  • Module 4: Cyber Incident Response

Incident response

  • Incident response processes
  • Threat classification
  • Incident severity and prioritization
  • Types of data

Forensics tools

  • Digital forensics investigations
  • Documentation and forms
  • Digital forensics crime scenes
  • Digital forensics kits
  • Image acquisition
  • Password cracking
  • Analysis utilities

Incident analysis and recovery

  • Analysis and recovery frameworks
  • Analyzing network symptoms
  • Analyzing host symptoms
  • Analyzing data exfiltration
  • Analyzing application symptoms
  • Using sysinternals
  • Containment techniques
  • Eradication techniques
  • Validation techniques
  • Corrective actions
  • Module 5: Security Architecture

Secure network design

  • Network segmentation
  • Blackholes, sinkholes, and honeypots
  • System hardening
  • Group policies and MAC
  • Endpoint security

Managing identities and access

  • Network access control
  • Identity management
  • Identity security issues
  • Identity repositories
  • Context-based authentication
  • Single sign on and federation
  • Exploiting identities
  • Exploiting web browsers and applications

Security frameworks and policies

  • Frameworks and compliance
  • Reviewing security architecture
  • Procedures and compensating controls
  • Verifications and quality control
  • Security policies and procedures
  • Personnel policies and training
Show complete outline
Show Less

Course Schedule

Attend this live, instructor-led course In-Class or Online via AnyWare.

Hassle-Free Enrollment: No advance payment required.
Tuition due 30 days after your course.

Jul 24 - 28 Rockville, MD/AnyWare Enroll Now

How would you like to attend?

Live, Online via AnyWare
In-Class

Aug 28 - Sep 1 Herndon, VA/AnyWare Enroll Now

How would you like to attend?

Live, Online via AnyWare
In-Class

Sep 25 - 29 New York/AnyWare Enroll Now

How would you like to attend?

Live, Online via AnyWare
In-Class

Oct 23 - 27 Rockville, MD/AnyWare Enroll Now

How would you like to attend?

Live, Online via AnyWare
In-Class

Dec 4 - 8 Herndon, VA/AnyWare Enroll Now

How would you like to attend?

Live, Online via AnyWare
In-Class

Dec 18 - 22 New York/AnyWare Enroll Now

How would you like to attend?

Live, Online via AnyWare
In-Class

Jan 22 - 26 Rockville, MD/AnyWare Enroll Now

How would you like to attend?

Live, Online via AnyWare
In-Class

Feb 26 - Mar 2 Herndon, VA/AnyWare Enroll Now

How would you like to attend?

Live, Online via AnyWare
In-Class

Mar 19 - 23 New York/AnyWare Enroll Now

How would you like to attend?

Live, Online via AnyWare
In-Class

Apr 23 - 27 Rockville, MD/AnyWare Enroll Now

How would you like to attend?

Live, Online via AnyWare
In-Class

May 14 - 18 Herndon, VA/AnyWare Enroll Now

How would you like to attend?

Live, Online via AnyWare
In-Class

Guaranteed to Run

Show all dates
Show fewer dates

Bring this Course to Your Organization and Train Your Entire Team
For more information, call 1-888-843-8733 or click here

Tuition

Standard

$3290

Government

$2833

Course Tuition Includes:

After-Course Instructor Coaching
When you return to work, you are entitled to schedule a free coaching session with your instructor for help and guidance as you apply your new skills.

Free Course Exam
You can take your course exam on the last day of your course and receive a Certificate of Achievement with the designation "Awarded with Distinction."

Prev
Next

Questions

Call 1-888-843-8733 or click here »

An experienced training advisor will happily answer any questions you may have and alert you to any tuition savings to
which you or your organization may be entitled.

Training Hours

Training Hours: 9:00 am – 5:00 pm ET

Enhance Your Credentials with Professional Certification

Learning Tree's comprehensive training and exam preparation guarantees that you will gain the knowledge and confidence to achieve professional certification and advance your career.

This course is approved by CompTIA for continuing education units (CEUs). For additional information and to confirm which courses are eligible towards your CompTIA certification, click here.

- ,

Prev
Next

Please Choose a Language

Canada - English

Canada - Français