Summary & Schedule
CompTIA Security+ Course Information
Course Length: 5 Days
This practical course prepares students with the knowledge and skills required to identify risk, to participate in risk mitigation activities, and to provide infrastructure, application, information, and operational security. Furthermore, it will prepare students for SY0-401 CompTIA Security+ certification exam. It is an internationally recognized validation of foundation-level security skills and knowledge. The exam will certify that the successful candidate can identify risk, participate in risk mitigation activities, and provide infrastructure, application information, and operational security. The U.S. Department of Defense (DoD) published DoD directive 8570, requires many administrators to have at least a Security+ certification. This includes active duty personnel, civilians, and contractors. Many IT contracts specifically state that hired contractors must have at least the Security+ certification to work on the contract, having this on your resume often opens many more doors of opportunity.
- Ability to identify network attack strategies & defenses. Including host-based security technologies and practices
- Grasp the significance of the principles of organizational security and the elements of effective security policies.
- Encryption standards and products: Both technologies and real world applications.
- Describe how remote access security is enforced including the standards and products used to enforce security on web and communications technologies.
- Ability to identify strategies for ensuring business continuity, fault tolerance, and disaster recovery.
Preferably, students should process CompTIA A+ or Network+ certification and have 18-36 months’ experience of desktop or networking support. Passing CompTIA A+ or Network+ is encouraged however, it is recommended that they have the following skills and knowledge before starting this course:
- Know the basic features and functions of the components of a desktop.
- Create and manage files and use basic administrative features (Explorer, Control Panel and Management Consoles) with Windows
- Basic network terminology (OSI Model, Topology, Ethernet, TCP/IP).
- TCP/IP addressing, core protocols, and troubleshooting tools.
- Basic use of desktop virtual workstation environments.
Students looking to qualify with CompTIA Security+. Security is vital to all levels and job roles within an organization, the benefit of this course will extend far beyond networking professionals. Desktop support, software developers, senior managers in accounting, sales, product development and marketing would all benefit from this course.
Sample CompTIA Security+ Course Outline
The course consists of two volumes, with a study volume, containing indexed notes and review questions, and a companion volume, containing exam objectives mapping, exam information, practical labs, answers to review questions, and a comprehensive glossary.
Module 1 – Security Fundamentals
- Security Concepts
- Why is Security Important?
- Security Controls
- Identification and Authentication
- Accounting Threats
- Types and Sources of Threats
- Social Engineering
- Preventing Virus Infection
- Network Vulnerabilities
- Network Fundamentals
- Network Attack Strategies
- Layer 2 Attacks
- IP Spoofing and Hijacking
- Denial of Service Attacks
- Application Layer Attacks
Module 2 – Network Security
- Penetration Testing
- Vulnerability Assessments and Penetration Tests
- Vulnerability Scanners
- Honeypots and Honeynets
- Secure Network Design
- Secure Network Topologies
- Network Device Exploitation
- Switches and VLANs
- Security Appliances and Software
- Proxy Servers and Gateways Intrusion Detection Systems
- Audit Logs
- Network Application Security DHCP Security
- DNS Security
- SNMP Security
Module 3 – Internet Security
- What is Cryptography?
- Encryption Technologies
- Cryptographic Attacks
- Public Key Infrastructure
- What is PKI?
- Implementing PKI
- Cryptographic Standards
- Securing Web Services
- SSL / TLS
- Web Servers
- Securing Web Applications
- Web Browsers
- File Transfer
Module 4 – Access Control
- LAN Manager / NTLM
- PAP and CHAP
- Password Management
- Token-based Authentication Biometric Authentication Extensible Authentication Protocol (EAP)
- Privilege Policies
- Directory Services
- Lightweight Directory Access Protocol (LDAP)
- Operating System Security
- Computer Hardening OS Hardening
- Hardware and Software Updates Network Access Control
- What is Remote Access?
- Remote Connectivity Protocols
- Access Servers
- Remote Administration Tools
- Hardening Remote Access Infrastructure
- Wireless Access Security
- Wireless LAN Security
Module 5 – Organizational Security
- Site Security
- Physical Access Controls
- Environmental Security
- Mobile Device Security
- Disaster Recovery and Business Continuity
- Disaster Recovery Planning
- Business Continuity and Risk Management
- Fault Tolerance
- Backup Strategies
- Incident Response and Forensics
- Incident Response Policy
- Forensic Investigations
- Operational Security
- Corporate Security Policy
- Data Handling
- HR Policies
- Next Generation Networks
- Virtualization Defined
- Virtual Platform Applications
- Security and Best Practice
- Cloud Computing
- IPv4 versus IPv6
CompTIA Security+ Certification Information
The Security+ exam covers the most important foundational principles for securing a network and managing risk. Access control, identity management and cryptography are important topics on the exam, as well as selection of appropriate mitigation and deterrent techniques to address network attacks and vulnerabilities. Security concerns associated with cloud computing, BYOD and SCADA are addressed in the SY0-401 exam.
While there is no required prerequisite, Network+ certification is recommended before taking the Security+ exam.
The cost of the CompTIA Security+ certification is $. Testing is available at authorized VMTraining testing centers throughout the world. Click here to purchase a certification exam voucher.