Overview
Learn about the duties of cybersecurity analysts who are responsible for monitoring and detecting security incidents in information systems and networks and for executing a proper response to such incidents. Depending on the size of the organization, this individual may act alone or may be a member of a cybersecurity incident response team (CSIRT).
Gain the tools and tactics to manage cybersecurity risks, identify various types of common threats, evaluate an organization’s security, collect and analyze cybersecurity intelligence, and handle incidents as they occur. This is a comprehensive approach to security aimed toward those on the front lines of defense.
This course is designed to assist students in preparing for the CompTIACySA+ – Cybersecurity Analyst+ (CS0-002) certification exam.
WHO SHOULD ATTEND?
- IT Security Analyst
- Security Operations Center (SOC) Analyst
- Vulnerability Analyst
- Cybersecurity Specialist
- Threat Intelligence Analyst
- Security Engineer
WHAT YOU’LL LEARN
- Explain the Importance of Security Controls and Security Intelligence
- Utilize Threat Data and Intelligence
- Analyze Security Monitoring Data
- Collect and Query Security Monitoring Data
- Utilize Digital Forensics and Indicator Analysis Techniques
- Apply Incident Response Procedures
- Apply Risk Mitigation and Security Frameworks
- Perform Vulnerability Management
- Apply Security Solutions for Infrastructure Management
- Understand Data Privacy and Protection
- Apply Security Solutions for Software Assurance
- Apply Security Solutions for Cloud and Automation
PREREQUISITES
To ensure your success in this course, you should meet the following requirements:
- At least two years (recommended) of experience in computer network security technology or a related field.
- The ability to recognize information security vulnerabilities and threats in the context of risk management.
- Foundation-level operational skills with some of the common operating systems for computing environments.
- Foundational knowledge of the concepts and operational framework of common assurance safeguards in computing environments. Safeguards include, but are not limited to, basic authentication and authorization, resource permissions, and anti-malware mechanisms.
- Foundation-level understanding of some of the common concepts for network environments, such as routing and switching.
- Foundational knowledge of major TCP/IP networking protocols including, but not limited to, TCP, IP, UDP, DNS, HTTP, ARP, ICMP, and DHCP.
- Foundational knowledge of the concepts and operational framework of common assurance safeguards in network environments. Safeguards include, but are not limited to, firewalls, intrusion prevention systems, and VPNs.