CompTIA Security Analyst Advanced

The CompTIA Cyber Security Analyst (CySA+) Certification

CompTIA Cyber Security Analyst (CySA+) is the first intermediate-level high-stakes cyber security analyst certification program that includes performance-based questions in security analytics, intrusion detection, and response. In a post-2014 cybersecurity landscape, CompTIA security+ is the most up-to-date security analyst certification that includes advanced persistent threats.

Successful candidates who earn the CompTIA Cybersecurity Analyst (CySA+) certification have the knowledge and skills to use intelligence and threat detection techniques, analyze and interpret data, identify and more.

CompTIA CySA+ is for IT professionals looking to gain the following security analyst skills:

• Perform data analysis and interpret the results to identify vulnerabilities, threats and risks to an organization.
• Configure and use threat-detection tools.
• Secure and protect applications and systems within an organization.

CySA+ KEY Learning

MODULE-01 THREAT MANAGEMENT

• Apply environmental reconnaissance techniques using appropriate tools, analyzing results, and implementing recommended response

MODULE-02 VULNERABILITY MANAGEMENT

• Implement vulnerability management process and analyze results of the scan

MODULE-03 SECURITY ARCHITECTURE & TOOL SETS

• Use data to recommend remediation of security issues related to identity and access management and recommend implementation strategy while participating in the Software Development Life Cycle (SDLC).

MODULE-04 CYBER-INCIDENT RESPONSE

• Distinguish threat data to determine incident impact and prepare a toolkit with appropriate forensics tools, communication strategy, and best practices as a response

COURSE OUTLINE

Assessing information security risk

• Identify the importance of risk management
• Assess risk
• Mitigate risk
• Integrate documentation into risk management

Analyzing the threat landscape

• Classify threats and threat profiles
• Perform ongoing threat research

Analyzing reconnaissance threats to computing and network environments

• Implement threat modeling
• Assess the impact of reconnaissance incidents
• Assess the impact of social engineering

Analyzing attacks on computing and network environments

• Assess the impact of system hacking attacks
• Assess the impact of web-based attacks
• Assess the impact of malware
• Assess the impact of hijacking and impersonation attacks
• Assess the impact of dos incidents
• Assess the impact of threats to mobile security
• Assess the impact of threats to cloud securty

Analyzing post-attack techniques

• Assess command and control techniques
• Assess persistence techniques
• Assess lateral movement and pivoting techniques
• Assess data exfiltration techniques
• Assess anti-forensics techniques

Managing vulnerabilities in the organization

• Implement a vulnerability management plan
• Assess common vulnerabilities
• Conduct vulnerability scans

Implementing penetration testing to evaluate security

• Conduct penetration tests on network assets
• Follow up on penetration testing

Collecting cybersecurity intelligence

• Deploy a security intelligence collection and analysis platform
• Collect data from network-based intelligence sources
• Collect data from host-based intelligence sources

Analyzing log data

• Use common tools to analyze logs
• Use siem tools for analysis
• Parse log files with regular expressions

Performing active asset and network analysis

• Analyze incidents with windows-based tools
• Analyze incidents with linux-based tools
• Analyze malware
• Analyze indicators of compromise

Responding to cybersecurity incidents

• Deploy an incident handling and response architecture
• Mitigate incidents
• Prepare for forensic investigation as a csirt

Investigating cybersecurity incidents

• Apply a forensic investigation plan
• Securely collect and analyze electronic evidence
• Follow up on the results of an investigation

Addressing security architecture issues

• Remediate identity and access management issues
• Implement security during the sdlc

Jobs that use CompTIA CySA+

• IT Security Analyst
• Tier II SOC Analyst
• Vulnerability Analyst
• Cybersecurity Specialist
• Threat Intelligence Analyst
• Security Engineer
• Cybersecurity Analyst
• Security Monitoring

Cyber Security Analyst (CySA+) Certification FREE Exam Guide

International Student Fee: 400 USD (Online Classes)

Flexible Class Options

• Corporate Group Training | Fast-Track
• Week End Classes For Professionals SAT | SUN
• Online Classes – Live Virtual Class (L.V.C), Online Training