Facebook Pixel
Microsoft Certification Training
Search classes by keyword:
Search classes by category:
Microsoft Certification and Microsoft Training, Cisco Certification and MCSE Certification
CompTIA CSA+ CASP space



CompTIA CSA+ / CASP Certification Training

CompTIA CSA+ / CASP

Course Number: #CED-1387
Course Length: 12 days
Number of Exams: 2
Certifications: CompTIA Cybersecurity Analyst (CSA+)
CompTIA Advanced Security Practitioner (CASP)

Grants (discounts) are available for multiple students for the same or different courses.

Upcoming Dates Class Times Class Format Quote
12/11 - 12/22, 2017 8:00 AM - 5:00 PM Instructor-Led Quote
1/29 - 2/9, 2018 8:00 AM - 5:00 PM Instructor-Led Quote
4/23 - 5/4, 2018 8:00 AM - 5:00 PM Instructor-Led Quote

Instructor-Led

  • Roundtrip Airfare & Lodging
    (Atlanta boot camps only)
  • Hands-on instruction by a certified instructor
  • Includes all course materials
  • On-site Testing
  • Lunch & Snacks provided each day
  • Practice Exam
  • Certification Exam

$500 Gift Card for the Holidays!

Purchase your class now and choose your $500 Gift Card.

Expires December 25, 2017.


Can't travel or you want to stay with your family or business. No problem! Stay in your own city and save the additional expenses of roundtrip airfare, lodging, transportation, and meals and receive the same great instruction live from our instructors in our Live Instructor-Led Remote Classroom Training.

Remote Classroom Training

Our Remote Classroom Training is a live class with students observing the instructor and listening through your computer speakers. You will see the instructor's computer, slides, notes, etc., just like in the classroom. You will be following along, doing work, labs, and individual assignments.

Like us on Facebook and SAVE $100 on your next course

CompTIA Cybersecurity Analyst (CSA+) is an international, vendor-neutral cybersecurity certification that applies behavioral analytics to improve the overall state of IT security. CSA+ validates critical knowledge and skills that are required to prevent, detect and combat cybersecurity threats.

The CompTIA Advanced Security Practitioner (CASP) Certification is a vendor-neutral credential. The CASP exam is an internationally targeted validation of advanced-level security skills and knowledge. While there is no required prerequisite, the CASP certification is intended to follow CompTIA Security+ or equivalent experience and has a technical, "hands-on" focus at the enterprise level.


CompTIA Cybersecurity Analyst (CSA+)

CompTIA Cybersecurity Analyst (CSA+) is an international, vendor-neutral cybersecurity certification that applies behavioral analytics to improve the overall state of IT security. CSA+ validates critical knowledge and skills that are required to prevent, detect and combat cybersecurity threats.

Overview

As attackers have learned to evade traditional signature-based solutions such as firewalls, an analytics-based approach within the IT security industry is increasingly important for most organizations. The behavioral analytics skills covered by CSA+ identify and combat malware, and advanced persistent threats (APTs), resulting in enhanced threat visibility across a broad attack surface. CompTIA CSA+ is for IT professionals looking to gain the following security analyst skills:

  • Configure and use threat detection tools.
  • Perform data analysis.
  • Interpret the results to identify vulnerabilities, threats and risks to an organization.
CSA+ certified skills are in-demand

Properly trained IT security staff who can analyze, monitor and protect cybersecurity resources are in high demand. The U.S. Bureau of Labor Statistics (BLS) predicts that information security analysts will be the fastest growing overall job category, with 37 percent overall growth between 2012 and 2022.

CSA+ is globally recognized

CompTIA CSA+ is ISO/ANSI 17024 accredited and is awaiting approval by the U.S. Department of Defense (DoD) for directive 8140/8570.01-M requirements.

CSA+ provides substantial earnings potential

A career in information security analysis ranked seventh on U.S. News and World Report's list of the 100 best technology jobs for 2017. According to the Bureau of Labor Statistics, the median pay for an information security analyst is $90,120 per year.

Target Student

The CompTIA CSA+ examination is designed for IT security analysts, vulnerability analysts or threat intelligence analysts. The exam will certify that the successful candidate has the knowledge and skills required to configure and use threat detection tools, perform data analysis and interpret the results to identify vulnerabilities, threats and risks to an organization with the end goal of securing and protecting applications and systems within an organization.

Prerequisite

The CompTIA CSA+ exam is an internationally targeted validation of intermediate-level security skills and knowledge. While there is no required prerequisite, the CompTIA CSA+ certification is intended to follow CompTIA Security+ or equivalent experience and has a technical, "hands-on" focus on IT security analytics.

It is recommended for CompTIA CSA+ certification candidates to have the following:

  • 3-4 years of hands-on information security or related experience
  • Network+, Security+ or equivalent knowledge

Course Content

Threat Management
  • Given a scenario, apply environmental reconnaissance techniques using appropriate tools and processes.
  • Given a scenario, analyze the results of a network reconnaissance.
  • Given a network-based threat, implement or recommend the appropriate response and countermeasure.
  • Explain the purpose of practices used to secure a corporate environment.
Vulnerability Management
  • Given a scenario, implement an information security vulnerability management process.
  • Given a scenario, analyze the output resulting from a vulnerability scan.
  • Compare and contrast common vulnerabilities found in the following targets within an organization.
Cyber Incident Response
  • Given a scenario, distinguish threat data or behavior to determine the impact of an incident.
  • Given a scenario, prepare a toolkit and use appropriate forensics tools during an investigation.
  • Explain the importance of communication during the incident response process.
  • Given a scenario, analyze common symptoms to select the best course of action to support incident response.
  • Summarize the incident recovery and post-incident response process.
Security Architecture and Tool Sets
  • Explain the relationship between frameworks, common policies, controls, and procedures.
  • Given a scenario, use data to recommend remediation of security issues related to identity and access management.
  • Given a scenario, review security architecture and make recommendations to implement compensating controls.
  • Given a scenario, use application security best practices while participating in the Software Development Life Cycle (SDLC).
  • Compare and contrast the general purpose and reasons for using various cybersecurity tools and technologies.

[ back to top ]

CompTIA Advanced Security Practitioner (CASP)

The CompTIA Advanced Security Practitioner (CASP) Certification is a vendor-neutral credential. The CASP exam is an internationally targeted validation of advanced-level security skills and knowledge. While there is no required prerequisite, the CASP certification is intended to follow CompTIA Security+ or equivalent experience and has a technical, "hands-on" focus at the enterprise level.

The CASP exam will certify that the successful candidate has the technical knowledge and skills required to conceptualize, engineer, integrate and implement secure solutions across complex environments. The candidate will apply critical thinking and judgment across a broad spectrum of security disciplines to propose and implement sustainable security solutions that map to organizational strategies, translate business needs into security requirements, analyzes risk impact and respond to security incidents.

Exam: CAS-002

The CompTIA Advanced Security Practitioner (CASP) Certification is aimed at an IT security professional who has:

  • A minimum of 10 years experience in IT administration including at least 5 years of hands-on technical security experience.

1.0 Enterprise Security

1.1 Given a scenario, select appropriate cryptographic concepts and techniques.
  • Techniques
  • Concepts
  • Implementations
1.2 Explain the security implications associated with enterprise storage
  • Storage types
  • Storage protocols
  • Secure storage management
1.3 Given a scenario, analyze network and security components, concepts and architectures
  • Advanced network design (wired/wireless)
  • Security devices
  • Virtual networking and security components
  • Complex network security solutions for data flow
  • Secure configuration and baselining of networking and security components
  • Software defined networking
  • Cloud managed networks
  • Network management and monitoring tools
  • Advanced configuration of routers, switches and other network devices
  • Security zones
  • Network access control
  • Operational and consumer network enabled devices
  • Critical infrastructure/Supervisory Control and Data Acquisition (SCADA)/Industrial Control Systems (ICS)

1.4 Given a scenario, select and troubleshoot security controls for hosts

  • Trusted OS (e.g. how and when to use it)
  • End point security software
  • Host hardening
  • Security advantages and disadvantages of virtualizing servers
  • Cloud augmented security services
  • Boot loader protections
  • Vulnerabilities associated with co-mingling of hosts with different security requirements
  • Virtual Desktop Infrastructure (VDI)
  • Terminal services/application delivery services
  • TPM
  • VTPM
  • HSM
1.5 Differentiate application vulnerabilities and select appropriate security controls
  • Web application security design considerations
  • Specific application issues
  • Application sandboxing
  • Application security frameworks
  • Secure coding standards
  • Database Activity Monitor (DAM)
  • Web Application Firewalls (WAF)
  • Client-side processing vs. server-side processing

2.0 Risk Management and Incident Response

2.1 Interpret business and industry influences and explain associated security risks
  • Risk management of new products, new technologies and user behaviors
  • New or changing business models/strategies
  • Security concerns of integrating diverse industries
  • Ensuring third party providers have requisite levels of information security
  • Internal and external influences
  • Impact of de-perimeterization (e.g. constantly changing network boundary)
2.2 Given a scenario, execute risk mitigation planning, strategies and controls
  • Classify information types into levels of CIA based on organization/industry
  • Incorporate stakeholder input into CIA decisions
  • Implement technical controls based on CIA requirements and policies of the organization
  • Determine aggregate score of CIA
  • Extreme scenario planning/worst case scenario
  • Determine minimum required security controls based on aggregate score
  • Conduct system specific risk analysis
  • Make risk determination
  • Recommend which strategy should be applied based on risk appetite
  • Risk management processes
  • Enterprise Security Architecture frameworks
  • Continuous improvement/monitoring
  • Business Continuity Planning
  • IT Governance
2.3 Compare and contrast security, privacy policies and procedures based on organizational requirements
  • Policy development and updates in light of new business, technology, risks and environment changes
  • Process/procedure development and updates in light of policy, environment and business changes
  • Support legal compliance and advocacy by partnering with HR, legal, management and other entities
  • Use common business documents to support security
  • Use general privacy principles for sensitive information (PII)
  • Support the development of policies
2.4 Given a scenario, conduct incident response and recovery procedures
  • E-Discovery
  • Data breach
  • Design systems to facilitate incident response
  • Incident and emergency response

3.0 Research, Analysis and Assessment

3.1 Apply research methods to determine industry trends and impact to the enterprise
  • Perform ongoing research
  • Situational awareness
  • Research security implications of new business tools
  • Global IA industry/community
  • Research security requirements for contracts
3.2 Analyze scenarios to secure the enterprise
  • Create benchmarks and compare to baselines
  • Prototype and test multiple solutions
  • Cost benefit analysis
  • Metrics collection and analysis
  • Analyze and interpret trend data to anticipate cyber defense needs
  • Review effectiveness of existing security controls
  • Reverse engineer/deconstruct existing solutions
  • Analyze security solution attributes to ensure they meet business needs
  • Conduct a lessons-learned/after-action report
  • Use judgment to solve difficult problems that do not have a best solution
3.3 Given a scenario, select methods or tools appropriate to conduct an assessment and analyze results
  • Tool type
  • Methods

4.0 Integration of Computing, Communications and Business Disciplines

4.1 Given a scenario, facilitate collaboration across diverse business units to achieve security goals
  • Interpreting security requirements and goals to communicate with stakeholders from other disciplines
  • Provide objective guidance and impartial recommendations to staff and senior management on security processes and controls
  • Establish effective collaboration within teams to implement secure solutions
  • IT governance
4.2 Given a scenario, select the appropriate control to secure communications and collaboration solutions
  • Security of unified collaboration tools
  • Remote access
  • Mobile device management
  • Over-the-air technologies concerns
4.3 Implement security activities across the technology life cycle
  • End-to-end solution ownership
  • Systems Development Life Cycle
  • Adapt solutions to address emerging threats and security trends
  • Asset management (inventory control)

5.0 Technical Integration of Enterprise Components

5.1 Given a scenario, integrate hosts, storage, networks and applications into a secure enterprise architecture
  • Secure data flows to meet changing business needs
  • Standards
  • Interoperability issues
  • Technical deployment models (Outsourcing/insourcing/managed services/partnership)
  • Logical deployment diagram and corresponding physical deployment diagram of all relevant devices
  • Secure infrastructure design (e.g. decide where to place certain devices/applications)
  • Storage integration (security considerations)
  • Enterprise application integration enablers
5.2 Given a scenario, integrate advanced authentication and authorization technologies to support enterprise objectives
  • Authentication
  • Authorization
  • Attestation
  • Identity propagation
  • Federation
  • Advanced trust models

[ back to top ]


CED Solutions is your best choice for CompTIA CSA+ CASP, CompTIA CSA+ CASP training, CompTIA CSA+ CASP certification, CompTIA CSA+ CASP boot camp, CompTIA CSA+ CASP certification training, CompTIA CSA+ CASP certification course, CompTIA CSA+ CASP course, CompTIA CSA+ CASP class.



CompTIA CSA+ CASP space
Search classes by keyword:
Search classes by category:


Copyright © 2017 CED Solutions. CED Solutions Refund Policy. All Rights Reserved.