Learning Objective:

• Compare and contrast different types of social engineering techniques
• Given a scenario, analyze potential indicators to determine the type of attack
• Analyze potential indicators associated with application and network attacks
• Explain different threat actors, vectors, and intelligence sources
• Explain the security concerns associated with various types of vulnerabilities
• Explain the techniques used in penetration testing

Topics:

• Security Policy
• Threat Actors
• Social Engineering
• Phishing & Types of Malware
• Trojans and Spyware
• Security Control Types
• Defence in Depth
• Frameworks and Compliance
• Vulnerability Scanning and Pen Tests
• Security Assessment Techniques
• Pen Testing Concepts
• Vulnerability Scanning Concepts
• Exploitation Frameworks

Learning Objective:

• Summarize the techniques used in security assessments
• Explain the importance of security concepts in an enterprise environment
• Use the appropriate tool to assess organizational security
• Summarize the importance of policies, processes, and procedures for incident response
• Given an incident, utilize appropriate data sources to support an investigation
• Apply mitigation techniques or controls to secure an environment

Topics:

• Topology & Service Discovery
• Packet Capture Tools
• Remote Access Trojans
• Honeypots and Honeynets
• Incident Response Procedures
• Preparation Phase
• Identification Phase
• Containment Phase
• Eradication and Recovery Phases

Learning Objective:

• Summarize the basics of cryptographic concepts
• Implement Symmetric & Asymmetric Algorithms
• Understand Cryptographic Attacks & how to mitigate them
• Implement public key infrastructure

Topics:

• Cryptographic Terminology and Ciphers
• Cryptographic Products
• Hashing Algorithms
• Symmetric Algorithms
• Asymmetric Algorithms
• Diffie-Hellman and Elliptic Curve
• Transport Encryption
• Cryptographic Attacks
• PKI Standards
• Digital Certificates
• Certificate Authorities
• Types of Certificate
• Implementing PKI
• Storing and Distributing Keys
• Key Status and Revocation
• PKI Trust Models
• PGP / GPG

Learning Objective:

• Summarize authentication and authorization design concepts
• Implement identity and account management controls
• Implement authentication and authorization solutions
• Understand LDAP & Active Directory

Topics:

• Access Control Systems
• Identification & Authentication
• LAN Manager / NTLM
• Kerberos
• PAP, CHAP, and MS-CHAP
• Password Attacks
• Token-based & Biometric Authentication
• Common Access Card
• Authorization
• Directory Services
• RADIUS and TACACS+
• Federation and Trusts
• Federated Identity Protocols
• Formal Access Control Model
• Account Types
• Windows Active Directory
• Creating and Managing Accounts
• Account Policy Enforcement
• Credential Management Policies
• Account Restrictions
• Accounting and Auditing

Learning Objective:

• Understand how to make a network secure
• Implement secure network designs
• Install and Configure Security Appliances

Topics:

• Network Zones and Segments
• Subnetting
• Switching Infrastructure
• Switching Attacks and Hardening
• Endpoint Security
• Network Access Control
• Routing Infrastructure
• Network Address Translation
• Software Defined Networking
• Basic & Stateful Firewalls
• Implementing a Firewall or Gateway
• Web Application Firewalls
• Proxies and Gateways
• Denial of Service Attacks
• Load Balancers

Learning Objective:

• Explain the security implications of embedded and specialized systems
• Implement host or application security solutions
• Install and configure wireless security settings
• Understand various hardening concepts
• Deploying Secure Host Embedded Systems

Topics:

• Wireless LANs
• WEP and WPA
• Wi-Fi Authentication
• Extensible Authentication Protocol
• Wi-Fi Site Security
• Personal Area Networks
• Trusted Computing
• Hardware / Firmware Security
• Peripheral Device Security
• Secure Configurations
• OS Hardening
• Patch Management
• Embedded Systems
• Security for Embedded System

Learning Objective:

• Understand all the important security protocols & where they are used
• Implementing Secure Network Access Protocols
• Given a scenario, implement secure protocols
• Implementing Secure Network Applications

Topics:

• DHCP Security
• DNS Security
• Network Management Protocols
• HTTP and Web Servers
• SSL / TLS and HTTPS
• Web Security Gateways
• Email Services
• S/MIME
• File Transfer
• Voice and Video Services
• Voice over IP (VoIP)
• Remote Access Architecture
• Virtual Private Networks
• IPsec and IKE
• Remote Access Servers
• Remote Administration Tools
• Hardening Remote Access Infrastructure

Learning Objective:

• Summarize mobile and cloud computing concepts
• Explain the importance of physical security controls
• Implement secure mobile solutions
• Apply cybersecurity solutions to the cloud

Topics:

• Mobile Device Deployments
• Mobile Connection Methods
• Mobile Access Control Systems
• Enforcement and Monitoring
• Virtualization Technologies
• Virtualization Security Best Practices
• Cloud Computing
• Cloud Security Best Practices
• Site Layout and Access
• Gateways and Locks
• Alarm Systems
• Surveillance
• Hardware Security
• Environmental Controls

Learning Objective:

• Summarize secure application development, deployment, and automation concepts
• Summarize risk management processes and concepts
• Explain the importance of applicable regulations, standards, or frameworks that impact organizational security posture

Topics:

• Business Impact Analysis
• Identification of Critical Systems
• Risk Assessment
• Risk Mitigation
• Application Vulnerabilities
• Application Exploits
• Web Browser Exploits
• Secure Application Design
• Secure Coding Concepts
• Auditing Applications
• Secure DevOps

Learning Objective:

• Implement cybersecurity resilience
• Explain the key aspects of digital forensics
• Explaining Disaster Recovery Concepts
• Explain the importance of policies to organizational security
• Explain privacy and sensitive data concepts in relation to security

Topics:

• Continuity of Operations Planning
• Disaster Recovery Planning
• Resiliency Strategies
• Recovery Sites
• Backup Plans and Policies
• Resiliency and Automation Strategies
• Corporate Security Policy
• Personnel Management Policies
• Interoperability Agreements
• Data Roles
• Data Sensitivity Labeling and Handling
• Data Wiping and Disposal
• Privacy and Employee Conduct Policies
• Security Policy Training
• Forensic Procedures
• Collecting Evidence
• Capturing System Images
• Handling and Analyzing Evidence

CertAdda’s CompTIA Security+ SY0-701 Training is designed to help you prepare for the new CompTIA Security+ certification exam. You will be able to establish the core knowledge required of any cybersecurity role. As an official training partner of CompTIA Security+ we help you get hands-on with the best practices associated with troubleshooting networks, techniques in risk management, risk mitigation, threat management and intrusion detection, etc.

CertAdda’s CompTIA Security+ training will teach you the fundamental principles of installing and configuring cybersecurity controls and participating in incident response and risk mitigation. You will be able to identify strategies developed by cyber adversaries to attack networks, deploy countermeasures to defend them, understand the principles of organizational security, and implement the elements of effective security policies along with the uses of cryptographic standards and products.

The following professionals can go for this course:

• Enthusiasts looking to build a career in security domain such as System admin, Security Consultant, Network Admin, Security Specialist, Security Engineer, etc.
• Professionals looking for Junior Penetration Tester and IT Auditor job role
• Professionals willing to attain CompTIA’s Security+ Certification
• Cyber Security Enthusiasts

On course completion, you will be able to:

• Identify potent threats and vulnerabilities that may cause harm to a network or system
• Identify corrective measures for incident response
• Implement cryptographic standards and products
• Install, configure, and deploy network components, identity and access services (Identity & Access Management), and management controls
• Understand the principles of organizational security and the elements of effective security policies
• Implement secure network architecture concepts and systems design
• Describe how wireless and remote access security is enforced
• Identify risks and take corrective measures for risk mitigation and management
• Summarize application, coding vulnerabilities and identify development and deployment methods designed to mitigate them
• Identify strategies for ensuring business continuity, fault tolerance, and disaster recovery

There are no specific prerequisites to take up this certification but having an understanding for Linux OS and networking will be an add on.

• Memory – Minimum 4 GB RAM
• Processor – Intel Core i3 CPU @2.00 GHz or later
• Storage – 250 GB HDD/SDD or later

You will be provided with CompTIA Labs licenses. The licenses will be valid for one year and can be used for Web, iOS, and Android apps.

• Determining Malware Types
• Performing Network scanning with Software tools
• Analyzing Network Traffic with Packet Sniffing Software Tools
• Concealing Data with Steganography Tools
• Identifying vulnerabilities with Scanning Software Tools
• Implementing Certificate Services
• Deploying Certificates and Implementing Key Recovery
• Cracking Password using Software Tools
• Managing Accounts in a Windows Domain
• Implementing a Secure Network Design
• Installing & Configuring a Firewall
• Installing & Configuring an Intrusion Detection System
• Implementing Secure Network Addressing Services
• Implementing a Virtual Private Network
• Installing & Configuring a Secure Email Service
• Using Forensics Tools
• Identifying a Man-in-the-Browser Attack

You must clear the SY0-701 exam with a minimum score of 750. Do note that the exam duration is 90 minutes and comprises 90 questions.

Yes, the exam fee is part of your course fee.

You must procure the exam voucher within 3 months from the date of enrollment.
Note: CertAdda doesn’t own the voucher policies and cost. In light of this, if the exam price increases and you have not yet procured your exam voucher, you will be asked to pay the difference in the latest amount to CertAdda.

Your exam voucher is valid for one year from the date of course enrollment. In case you don’t procure the voucher and book the exam within one year from the purchase of your course, you will need to buy the voucher again as per the updated price.

Unfortunately no. The exam voucher cost cannot be refunded once it is issued to a learner.

Prices change as the exam is being governed by the certification body. However, the changes in the exam prices are normally announced at the end of the calendar year.

• At least two years of experience in IT administration (with a focus on security) is preferred
• Hands-on experience of technical information security is beneficial
• Broad knowledge of security concepts would give you an edge as well

To pass the exam, you will have to score a minimum of 750 out of 900. Do keep in mind that the examination is 90 minutes long and comprises MCQs.

If you fail to clear the CompTIA Security+ Exam on your first attempt, there is no waiting period for attempting the exam a second time. However, if you still don’t manage to clear the second attempt, you are required to wait fourteen days to retake the exam.
Do note that once you have cleared the exam, you cannot retake the exam without prior consent from CompTIA.
Note: Candidates are required to pay the exam fee for every attempt at the CompTIA Security+ Exam.

The CompTIA Security+ certification is valid for three years from the date you clear your exam.

You will never miss a lecture at CertAdda You can choose either of the two options: View the recorded session of the class available in your LMS or You can attend the missed session, in any other live batch.

Your access to the Support Team is for lifetime and will be available 24/7. The team will help you in resolving queries, during and after the course.

Post-enrolment, the LMS access will be instantly provided to you and will be available for lifetime. You will be able to access the complete set of previous class recordings, PPTs, PDFs, assignments. Moreover the access to our 24×7 support team will be granted instantly as well. You can start learning right away.

Yes, the access to the course material will be available for lifetime once you have enrolled into the course.