CompTIA CSA+ Training | CompTIA Cybersecurity Analyst Training

Print Friendly, PDF & Email
Introduction

CompTIA CSA+ Training | CompTIA Cybersecurity Analyst Training with Hands-on Labs

CompTIA CSA+ Training; CompTIA Cybersecurity Analyst (CSA+) is a vendor-neutral cyber security program that applies behavioral analytics to improve the overall state of an organizations IT security. ENO’s CompTIA CSA+ training will develop the critical knowledge and skills that are required to prevent, detect and combat cybersecurity threats.

Led by an authorized CompTIA instructor, ENO’s CompTIA CSA+ training program will cover the expected skills and knowledge of those who are responsible for monitoring and detecting security incidents in information systems and networks, and for executing a proper response to such incidents. The CompTIA CSA+ training course will introduce tools and tactics you can use to manage cybersecurity risks, identify various types of common threats, evaluate the organization’s security, collect and analyze cybersecurity intelligence, and handle incidents as they occur. Additionally, this CompTIA CSA+ training course will also help students successfully prepare for the CompTIA CSA+ exam.

Duration: 5 days

CompTIA CSA+ Training | CompTIA Cybersecurity Analyst Training Related Courses

Customize It

• We can adapt this CompTIA CSA+ Training course to your group’s background and work requirements at little to no added cost.
• If you are familiar with some aspects of this CompTIA CSA+ Training course, we can omit or shorten their discussion.
• We can adjust the emphasis placed on the various topics or build the CompTIA CSA+ Training course around the mix of technologies of interest to you (including technologies other than those included in this outline).
• If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the CompTIA CSA+ Training course in manner understandable to lay audiences.

Audience / Target Group

The target audience for this CompTIA CSA+ | CompTIA Cybersecurity Analyst Training course is defined here:

The CompTIA CSA+ Certification Training program, much like the certification itself, is intended for professionals who use threat detection tools, perform data analysis, and interpret the results to identify vulnerabilities, threats, and risks to an organization with the end goal of securing and protecting applications and systems within an organization. Some example job functions may include, but are not limited to:

• IT Security Analyst
• Vulnerability Analyst
• Threat Intelligence Analyst
• SOC Analyst
• Security Engineer
• Cybersecurity Specialist

CompTIA CSA+ Training - Prerequisites

The knowledge and skills that a learner must have before attending this CompTIA CSA+ Training | CompTIA Cybersecurity Analyst Training course are:

• At least two years (recommended) of experience in computer network security technology or a related field.
• The ability to recognize information security vulnerabilities and threats in the context of risk management.
• Foundation-level operational skills with some of the common operating systems for computing environments.
• Foundational knowledge of the concepts and operational framework of common assurance safeguards in computing environments. Safeguards include, but are not limited to, basic authentication and authorization, resource permissions, and anti-malware mechanisms.
• Foundation-level understanding of some of the common concepts for network environments, such as routing and switching.
• Foundational knowledge of major TCP/IP networking protocols including, but not limited to, TCP, IP, UDP, DNS, HTTP, ARP, ICMP, and DHCP.
• Foundational knowledge of the concepts and operational framework of common assurance safeguards in network environments. Safeguards include, but are not limited to, firewalls, intrusion prevention systems, and VPNs.

CompTIA CSA+ Training - Objectives:

This official CompTIA CSA+ training seminar has a total of five primary modules. All five sections will collectively help you prepare for the CSA+ certification exam while also enhance your overall competencies in cybersecurity. The five modules of this class are the following:

• Module 1: Threat Management (Pt. 1)
• Module 2: Vulnerability Management
• Module 3: Threat Management (Pt. 2)
• Module 4: Cyber Incident Response
• Module 5: Security Architecture

CompTIA CSA+ Training - Course Content:

Our CompTIA CSA+ Certification Training | CompTIA Cybersecurity Analyst Training course covers the following:

Module 1: Threat Management (Pt. 1)

The first module covered in our official CompTIA CSA+ training seminar is “Threat Management”. This is the first of two modules focusing on threat management. Students will review the following two subjects during this module: (1) Cybersecurity Analysts and (2) Reconnaissance Techniques.

CompTIA CSA+ Training Objectives:

• Cybersecurity Analysts: Cybersecurity Roles and Responsibilities; Frameworks and Security Controls; Risk Evaluation; and Penetration Testing Processes.
• Reconnaissance Techniques: The Kill Chain; Open Source Intelligence; Social Engineering; Topology Discovery; OS Fingerprinting; Labs; OSINT; VM Orientation; and Host, Topology, and Service Discovery with Nmap.

Module 2: Vulnerability Management

“Vulnerability Management” is the second module you will review in this class. It focuses on three key areas: (1) Managing Vulnerabilities, (2) Remediating Vulnerabilities, and (3) Secure Software Development.

CompTIA CSA+ Training Objectives:

• Managing Vulnerabilities: Vulnerability Management Requirements; Asset Inventory; Data Classification; Vulnerability Management Processes; Vulnerability Scanners; Microsoft Baseline Security Analyzer; Vulnerability Feeds and SCAP; Configuring Vulnerability Scans; Vulnerability Scanning Criteria; Exploit Frameworks; Labs; and Vulnerability Scanning with OpenVAS and MBSA
• Remediating Vulnerabilities: Analyzing Vulnerability Scans; Remediation and Change Control; Remediating Host Vulnerabilities; Remediating Network Vulnerabilities; and Remediating Virtual Infrastructure Vulnerabilities
• Secure Software Development: Software Development Lifecycle; Software Vulnerabilities; Software Security Testing; Interception Proxies; Web Application Firewalls; Source Authenticity; Reverse Engineering; Labs; Web Application Testing with Nikto and Burpsuite

Module 3: Threat Management (Pt. 2)

Module 3 covers the second half of “Threat Management”, which was initially reviewed in Module 1. Students can expect to review the following two topics: (1) Security Appliances and (2) Logging and Analysis.

CompTIA CSA+ Training Objectives:

• Security Appliances: Configuring Firewalls; Intrusion Detection and Prevention; Configuring IDS; Malware Threats; Configuring Anti-virus Software; Sysinternals; Enhanced Mitigation Experience Toolkit; Labs; Network Security Monitoring with Snort and Security Onion; and Malware Analysis with Sysinternals
• Logging and Analysis: Packet Capture; Packet Capture Tools; Monitoring Tools; Log Review and SIEM; SIEM Data Outputs; SIEM Data Analysis; Point-in-Time Data Analysis; Labs; Packet Analysis with Wireshark and Network Miner; SIEM with OSSIM

Module 4: Cyber Incident Response

The fourth module in this class is “Cyber Incident Response”. Students will review the following subjects: (1) Incident Response, (2) Forensics Tools, and (3) Incident Analysis and Recovery.

CompTIA CSA+ Training Objectives:

• Incident Response: Incident Response Processes; Threat Classification; Incident Severity and Prioritization; and Types of Data
• Forensics Tools: Digital Forensics Investigations; Documentation and Forms; Digital Forensics Crime Scenes; Digital Forensics Kits; Image Acquisition; Password Cracking; Analysis Utilities; Labs; and Forensic Image Analysis with Autopsy
• Incident Analysis and Recovery: Analysis and Recovery Frameworks; Analyzing Network Symptoms; Analyzing Host Symptoms; Analyzing Data Exfiltration; Analyzing Application Symptoms; Using Sysinternals; Containment Techniques; Eradication Techniques; Validation Techniques; Corrective Actions; Labs; and Red Team Versus Blue Team

Module 5: Security Architecture

“Security Architecture” is the fifth and final module that is reviewed in this course. The specific topics that will be covered include (1) Secure Network design, (2) Managing Identities and Access, and (3) Security Frameworks and Policies.

CompTIA CSA+ Training Objectives:

• Secure Network Design: Network Segmentation; Blackholes, Sinkholes, and Honeypots; System Hardening; Group Policies and MAC; Endpoint Security; Labs; and Network Segmentation with pfSense
• Managing Identities and Access: Network Access Control; Identity Management; Identity Security Issues; Identity Repositories; Context-based Authentication; Single Sign On and Federation; Exploiting Identities; Exploiting Web Browsers and Applications; Labs; Secure Appliance Administration; and Email Spoofing and XSS
• Security Frameworks and Policies: Frameworks and Compliance; Reviewing Security Architecture; Procedures and Compensating Controls; Verifications and Quality Control; Security Policies and Procedures; and Personnel Policies and Training

Request More Information

Time Frame: 0-3 Months4-12 Months

No Comments Yet.

Leave a comment

0