CompTIA Cybersecurity Analyst Zelfstudiepakket + Examenvoucher

Algemene omschrijving

In dit zelfstudiepakket zit het officiële cursusmateriaal: "CertMaster Learn for Cybersecurity Analyst+ (CS0-003) + CertMaster Labs" en een CompTIA Cybersecurity Analyst+ CS0-003-examenvoucher. Zodra je dit zelfstudiepakket hebt geactiveerd, zijn het cursusmateriaal en de examenvoucher een jaar geldig.

CompTIA Cybersecurity Analyst+ (CySA+) is an IT workforce certification that applies behavioral analytics to networks and devices to prevent, detect and combat cybersecurity threats through continuous security monitoring.

As attackers have learned to evade traditional signature-based solutions, such as firewalls and anti-virus software, an analytics-based approach within the IT security industry is increasingly important for organizations.

CompTIA CySA+ applies behavioral analytics to networks to improve the overall state of security through identifying and combating malware and advanced persistent threats (APTs), resulting in an enhanced threat visibility across a broad attack surface. It will validate an IT professional’s ability to proactively defend and continuously improve the security of an organization.

Doelgroep

• Security analyst.
  • Tier II SOC analyst.
  • Security monitoring.
• Threat intelligence analyst.
• Security engineer.
• Application security analyst.
• Incident response or handler.
• Compliance analyst.
• Threat hunter.

Leerdoelen

CompTIA Cybersecurity Analyst+ will verify the successful candidate has the knowledge and skills required to:

• Leverage intelligence and threat detection techniques.
• Analyze and interpret data.
• Identify and address vulnerabilities.
• Suggest preventative measures.
• Effectively respond to and recover from incidents.

Voorkennis

Recommended CompTIA Network+, Security+ or equivalent knowledge plus a minimum of 4 years of hands-on experience in a technical cybersecurity job role.

Onderwerpen

• Lesson 1: Explaining the Importance of Security Controls and Security Intelligence.
• Lesson 2: Utilizing Threat Data and Intelligence.
• Lesson 3: Analyzing Security Monitoring Data.
• Lesson 4: Collecting and Querying Security Monitoring Data.
• Lesson 5: Utilizing Digital Forensics and Indicator Analysis Techniques.
• Lesson 6: Applying Incident Response Procedures.
• Lesson 7: Applying Risk Mitigation and Security Frameworks.
• Lesson 8: Performing Vulnerability Management.
• Lesson 9: Applying Security Solutions for Infrastructure Management.
• Lesson 10: Understanding Data Privacy and Protection.
• Lesson 11: Applying Security Solutions for Software Assurance.
• Lesson 12: Applying Security Solutions for Cloud and Automation.

Labs Available

• Analyzing Output from Network Security Monitoring Tools.
• Discovering the Lab Environment.
• Analyzing Output from Security Appliance Logs.
• Analyzing Output from Endpoint Security Monitoring Tools.
• Analyzing Email Headers.
• Configuring SIEM Agents and Collectors.
• Analyzing, Filtering, and Searching Event Log and syslog Output.
• Collecting and Validating Digital Evidence.
• Analyzing Network-related IoCs.
• Analyzing Host and Application IoCs.
• Observing IoCs during a Security Incident.
• Analyzing Output from Topology and Host Enumeration Tools.
• Testing Credential Security.
• Configuring Vulnerability Scanning and Analyzing Outputs.
• Assessing Vulnerability Scan Outputs.
• Assessing the Impact of Regulation on Vulnerability Management.
• Performing Account and Permissions Audits.
• Configuring Network Segmentation and Security.
• Configuring and Analyzing Share Permissions.
• Assessing the Impact of Web Application Vulnerabilities.
• Analyzing Output from Web Application Assessment Tools.
• Analyzing Output from Cloud Infrastructure Assessment Tools.