CompTIA CySA+

Learn critical knowledge and skills that are required to prevent, detect, and combat cyber security threats.
Overview

CompTIA Cyber Security Analyst follows on from the CompTIA S+ course and focuses on frameworks and technologies that delegates can use to harden and protect their IT systems.

Course Code
CYSA4PLS
Duration
4 Days
Delivery Style
Classroom
Course Type
Public or Private
Max Delegates
12
Available as Nutshell
No

Book your team training at your premises

  • Date
  • Venue
  • Cost
  • More info

Book your place

  • Date
  • Venue
  • Cost
  • Availability
  •  
  • Date10 Jun 2019
  • VenueWorcester
  • Cost£1,375
  • AvailabilityAvailable
  • Book Now
Purpose of this course

CompTIA Cyber Security Analyst (CySA+) is an IT workforce certification that applies behavioural analytics to networks and devices to prevent, detect and combat cyber security threats. 

Who is this course for

Delegates looking to expand their cyber security knowledge or to obtain the CYSA+ qualification.

You will learn how to
  • Identify tools and techniques to use to perform an environmental reconnaissance of a target network or security system.
  • Collect, analyse, and interpret security data from multiple log and monitoring sources.
  • Use network host and web application vulnerability assessment tools and interpret the results to provide effective mitigation.
  • Understand and remediate identity management, authentication, and access control issues.
  • Participate in a senior role within an incident response team and use forensic tools to identify the source of an attack.
  • Understand the use of frameworks, policies, and procedures and report on security architecture with recommendations for effective compensating controls.
Benefits for your organisation

Having well trained cyber security analysts to help prevent attacks to your organisation through their expertise and knowledge of databases, networks, hardware, firewalls and encryption, is vital in today's ever connected technological world.

Benefits for you as an individual

As a cyber security analyst CySA+ is a great way to demonstrate your capability and shows you have a rounded and sought after skill set.

Module 1 / Threat Management 1
  • Cyber Security Analysts
  • Cyber Security Roles and Responsibilities
  • Frameworks and Security Controls
  • Risk Evaluation
  • Penetration Testing Processes
  • Reconnaissance Techniques
  • The Kill Chain
  • Open Source Intelligence
  • Social Engineering
  • Topology Discovery
  • Service Discovery
  • OS Fingerprinting
Module 2 / Vulnerability Management
  • Managing Vulnerabilities
  • Vulnerability Management Requirements
  • Asset Inventory
  • Data Classification
  • Vulnerability Management Processes
  • Vulnerability Scanners
  • Microsoft Baseline Security Analyser
  • Vulnerability Feeds and SCAP
  • Configuring Vulnerability Scans
  • Vulnerability Scanning Criteria
  • Exploit Frameworks
  • Remediating Vulnerabilities
  • Analysing Vulnerability Scans
  • Remediation and Change Control
  • Remediating Host Vulnerabilities
  • Remediating Network Vulnerabilities
  • Remediating Virtual Infrastructure Vulnerabilities
  • Secure Software Development
  • Software Development Lifecycle
  • Software Vulnerabilities
  • Software Security Testing
  • Interception Proxies
  • Web Application Firewalls
  • Source Authenticity
  • Reverse Engineering
Module 3 / Threat Management 2
  • Security Appliances
  • Configuring Firewalls
  • Intrusion Detection and Prevention
  • Configuring IDS
  • Malware Threats
  • Configuring Anti-Virus Software
  • Sysinternals
  • Enhanced Mitigation Experience Toolkit
  • Logging and Analysis
  • Packet Capture
  • Packet Capture Tools
  • Monitoring Tools
  • Log Review and SIEM
  • SIEM Data Outputs
  • SIEM Data Analysis
  • Point-in-Time Data Analysis
Module 4 / Cyber Incident Response
  • Incident Response
  • Incident Response Processes
  • Threat Classification
  • Incident Severity and Prioritisation
  • Types of Data
  • Forensics Tools
  • Digital Forensics Investigations
  • Documentation and Forms
  • Digital Forensics Crime Scenes
  • Digital Forensics Kits
  • Image Acquisition
  • Password Cracking
  • Analysis Utilities
  • Incident Analysis and Recovery
  • Analysis and Recovery Frameworks
  • Analysing Network Symptoms
  • Analysing Host Symptoms
  • Analysing Data Exfiltration
  • Analysing Application Symptoms
  • Using Sysinternals
  • Containment Techniques
  • Eradication Techniques
  • Validation Techniques
  • Corrective Actions
Module 5 / Security Architecture
  • Secure Network Design
  • Network Segmentation
  • Blackholes, Sinkholes, and Honeypots
  • System Hardening
  • Group Policies and MAC
  • Endpoint Security
  • Managing Identities and Access
  • Network Access Control
  • Identity Management
  • Identity Security Issues
  • Identity Repositories
  • Context-based Authentication
  • Single Sign-on and Federation
  • Exploiting Identities
  • Exploiting Web Browsers and Applications
  • Security Frameworks and Policies
  • Frameworks and Compliance
  • Reviewing Security Architecture
  • Procedures and Compensating Controls
  • Verifications and Quality Control
  • Security Policies and Procedures
  • Personnel Policies and Training
Prerequisites

Delegates should have attended the CompTIA S+ course or have equivalent knowledge before attending this course. 

Pre-course work required

None.

More about the exam

The CompTIA CySA+ exam is entirely optional.

If you purchase an exam voucher as part of your course booking then please course contact us after your course and we will provide you with your 12 month exam voucher to be used at your leisure at a Pearson VUE test centre.

We highly recommend that you continue with post course self-study before you sit the examination.

About the Lead Trainer

Martin is a Systems trainer specialising mostly in Microsoft products, with over 20 years’ experience in training, contracting and managing networks. He currently delivers courses on Windows Server and client operating systems, Virtualisation, Active Directory, IIS web server, Network security, System Center products and automated deployments.