Course Overview

This course will teach students about identifying security fundamentals and threats, analyzing risk, conducting security assessments, implementing network, operational, host, and software security, managing identity and access, implementing cryptography, addressing security issues, and ensuring business continuity. The CompTIA Security+ certification is mainly targeted to those candidates who want to build their career in IT Security domain. The CompTIA Security+ exam verifies that the candidate possesses the fundamental knowledge and proven skills in the area of CompTIA Security Plus.

Course Objectives

The main objective of this course is to prepare aspiring IT professionals with job roles such as security architect, security engineer, security consultant/specialist, information assurance technician, security administrator, systems administrator and network administrator.

Course Learning Outcomes

CompTIA Certification

Security +

Associate Level

Contents

Module 1

Module 2

Module 3

Module 4

Introduction

Identifying Security Fundamentals

Analyzing Risk

Identifying Security Threats

Conducting Security Assessment

Implementing Host and Software Security

Implementing Network Security

Managing Identity and Access

Implementing Cryptography

Implementing Operational Security

Addressing Security Issues

Ensuring Business Continuity

Conclusion

Course Learning Syllabus

Lecturer Introduction

Importance of this course

What you will learn in this course

Topic A: 

 Identify Information Security Concepts

 Information Security

 Goals of Information Security, 

 Risk, Vulnerabilities, Threats, Attacks

 Controls and Types of Controls 

 The Security Management Process

 Demo - Identifying Information Security Basics

Topic B: 

 Identify Basic Security Controls

 The CIA Triad, Non-repudiation

 Identification

 Authentication 

 Authentication Factors

 Authorization

 Access Control

 Accounting and Auditing 

 Principle of Least Privilege

 Privilege Management

 Demo - Identifying Basic Security Controls

Topic C: 

 Identify Basic Authentication and Authorization Concepts,

 Passwords, Tokens, Biometrics, Geolocation

 Keystroke Authentication

 Multi-factor Authentication

 Mutual Authentication

 Demo - Identifying Basic Authentication and Authorization Concepts

Topic D: 

 Identify Basic Cryptography Concepts

 Cryptography

 Encryption and Decryption

 Encryption and Security Goals

 Ciphers A Key

 Symmetric Encryption and Asymmetric Encryption

 Hashing

 Steganography

 Demo - Identifying Basic Cryptography Concepts

Topic A: Analyze Organizational Risk

 Risk Management 

 Components of Risk Analysis

 Phases of Risk Analysis

 Categories of Threat Types

 Risk Analysis Methods

 Risk Calculation

 Risk Response Techniques 

 Risk Mitigation and Control Types

 Change Management

 Guidelines for Analyzing Risk 

 Demo - Analyzing Risks to the Organization

Topic B: Analyze the Business Impact of Risk

 BIA

 Impact Scenarios

 Privacy Assessments

 Critical Systems and Functions

 Maximum Tolerable Downtime

 Recovery Point Objective 

 Recovery Time Objective

 Mean Time to Failure

 Mean Time to Repair

 Mean Time Between Failures

 Guidelines for Performing a Business Impact Analysis

 Demo - Performing a Business Impact Analysis

Topic A: 

 Identify Types of Attackers

 Hackers and Attackers 

 Threat Actors

 Threat Actor Attributes

 Open-Source Intelligence 

 Demo - Identifying Types of Attackers

Topic B:

 Identify Social Engineering Attacks

 Social Engineering

 Effectiveness, Impersonation

 Phishing and Related Attacks

 Hoaxes

 Physical Exploits

 Watering Hole Attacks

 Demo - Identifying Social Engineering Attacks

 Topic C: 

 Identify Malware

 Malicious Code, Viruses, Worms, Adware, Spyware, Trojan Horses, Keyloggers

 Remote Access Trojans, Logic, Bombs, Botnets, Ransomware, Advance Persistent Threats

 Demo - Identifying Types of Malware

 Topic D: 

 Identify Software-Based Threats, Software Attacks, Password Attacks, Types of Password Attacks, Cryptographic Attacks, Types of Cryptographic Attacks, Backdoor Attacks, Application Attacks, Types of Application Attacks, Driver Manipulation, Privilege Escalation

 Demo - Identifying Password Attacks

 Topic E: 

 Identify Network-Based Threats

 TCP/IP Basics, Spoofing Attacks

 IP and MAC, Address Spoofing

 ARP Poisoning

 DNS Poisoning

 Port Scanning Attacks

 Scan Types

 Eavesdropping Attacks

 Man-in-the-Middle Attacks

 Man-in-the-Browser Attacks

 Replay Attacks

 DoS Attacks

 DDoS Attacks

 Hijacking Attacks

 Amplification Attacks

 Pass the Hash Attacks

 Demo - Identifying Threats to DNS

 Demo - Identifying Port Scanning Threats

 Topic F: 

 Identify Wireless Threats

 Rogue Access Points

 Evil Twins

 Jamming

 Bluejacking 

 Bluesnarfing

 Near Field Communication Attacks

 RFID System Attacks

 War Driving

 War Walking and War Chalking

 Packet Sniffing

 IV Attacks

 Wireless Replay Attacks

 WEP and WPA Attacks

 WPS Attacks

 Wireless Disassociation

 Demo - Identifying Wireless Threats

 Topic G: 

 Identify Physical Threats

 Physical Threats and Vulnerabilities

 Hardware Attacks

 Environmental Threats and Vulnerabilities

 Demo - Identifying Physical Threats

Topic A: Identify Vulnerabilities

 Host Vulnerabilities

 Software Vulnerabilities

 Encryption Vulnerabilities

 Network Architecture Vulnerabilities

 Account Vulnerabilities

 Operations Vulnerabilities

 Demo - Identifying Vulnerabilities

Topic B: Assess Vulnerabilities

 Security Assessment

 Security Assessment Techniques

 Vulnerability Assessment Tools

 Types of Vulnerability Scans

 False Positives

 Guidelines for Assessing Vulnerabilities

 Demo - Capturing Network Data with Wireshark

 Demo - Scanning for General Vulnerabilities

Topic C: Implement Penetration Testing

 Penetration Testing

 Penetration Testing Techniques

 Box Testing Methods

 Penetration Testing Tools

 Guidelines for Implementing Penetration Testing

 Demo - Implementing Penetration Testing

Topic A: Implement Host Security

 Hardening

 Operating System Security

 Operating System Hardening Techniques

 Trusted Computing Base

 Hardware and Firmware Security

 Security Baselines

 Software Updates

 Application Blacklisting and Whitelisting

 Logging

 Auditing 

 Anti-malware Software

 Types of Anti-malware Software

 Hardware Peripheral Security

 Embedded Systems

 Security Implications for Embedded Systems

 Guidelines for Securing Hosts

 Demo - Implementing Auditing

 Demo - Hardening a Server

Topic B: Implement Cloud and Virtualization Security

 Virtualization

 Hypervisors 

 Virtual Desktop Infrastructure

 Virtualization Security

 Cloud Computing

 Cloud Deployment Models 

 Cloud Service Types

 Guidelines for Securing Virtualized and Cloud-Based Resources

 Demo - Securing Virtual Machine Networking

Topic C: Implement Mobile Device Security

 Mobile Device Connection Methods

 Mobile Device Management

 Mobile Device Security Controls

 Mobile Device Monitoring and Enforcement

 Mobile Deployment Models

 BYOD Security Controls

 Guidelines for Implementing Mobile Device Security

 Demo - Implementing Mobile Device Security

Topic D: Incorporate Security in the Software Development Lifecycle

 Software Development Lifecycle

 Software Development Model

 DevOps, Versioning

 Secure Coding Techniques

 Code Testing Methods

 Guidelines for Incorporating Security in the Software Development Lifecycle

 Demo - Performing Static Code Analysis

Topic A: Configure Network Security Technologies

 Network Components

 Network Devices

 Routers, Switches, Proxies, Firewalls

 Load Balancer 

 Network Scanners and Analysis Tools

 Intrusion Detection Systems

 Network IDS

 Intrusion Prevention Systems

 Network IPS

 Types of Network Monitoring Systems

 Security Information and Event Management

 Data Loss/Leak Prevention

 Virtual Private Networks

 VPN Concentrators

 Security Gateways

 Unified Threat Management

 Guidelines for Configuring Network

 Security Technologies

 Demo - Configuring a Network IDS

Topic B: Secure Network Design Elements

 Network Access Control

 Demilitarized Zones

 Network Isolation

 Virtual Local Area Networks

 Network Security Device Placement

 Network Address Translation

 Software-Defined Networking

 Guidelines for Securing Network Design Elements

 Demo - Securing Network Design Elements

Topic C: Implement Secure Networking Protocols and Services

 The Open Systems Interconnection Model 

 OSI Model and Security

 Internet Protocol Suite

 Domain Name System

 Hypertext Transfer Protocol

 Secure Sockets Layer/Transport

 Layer Security

 HTTP Secure, Secure Shell, Simple Network Management 

 Protocol, Real-Time Transport Protocol, Internet Control Message Protocol 

 Internet Protocol Security

 Network Basic Input/Output System

 File Transfer Protocols, Email Protocols, Additional Networking Protocols and Services

 Ports and Port Ranges

 Demo - Installing an Internet Information Services Web Server with Basic Security

 Demo - Securing Network Traffic Using IPSec

Topic D: Secure Wireless Traffic

 Wireless Networks

 Wireless Antenna Types

 802.11 Protocols

 Wireless Cryptographic Protocols

 Wireless Authentication Protocols

 VPNs and Open Wireless

 Wireless Client Authentication Methods

 Wireless Access Point Security

 Captive Portals, Site Surveys

 Guidelines for Securing Wireless Traffic

 Demo - Securing Wireless Traffic

Topic A: Implement Identity and Access Management

 Identity and Access Management

 Access Control Models

 Physical Access Control Devices 

 Biometric Devices

 Certificate-Based Authentication

 File System and Database Access

 Guidelines for Implementing IAM

 Demo - Implementing DAC for a File Share

Topic B: Configure Directory Services

 Directory Services

 Lightweight Directory Access Protocol

 Secure LDAP

 Common Directory Services

 Demo - Backing Up Active Directory

Topic C: Configure Access Services

 Remote Access Methods

 Tunneling

 Remote Access Protocols

 HMAC-Based One-Time Password

 Time-Based OTP

 Password Authentication Protocol

 Challenge-Handshake Authentication Protocol

 NT LAN Manager

 Authentication, Authorization, and Accounting

 Remote Authentication Dial-In User Service

 Terminal Access Controller

 Access-Control System

 Kerberos

 Demo - Configuring a Remote Access Server

 Demo - Setting Up Remote Access Authentication

Topic D: Manage Accounts

 Account Management

 Account Privileges

 Account Types

 Account Policy

 Password Policy

 Multiple Accounts

 Shared Accounts

 Account Management Security Controls

 Credential Management

 Group Policy

 Identity Federation

 Identity Federation Methods

 Guidelines for Managing Accounts

 Demo - Managing Accounts

Topic A: Identify Advanced Cryptography Concepts

 Cryptography Elements

 Hashing Concepts

 Data States

 Key Exchange

 Digital Signatures

 Cipher Suites

 Session Keys

 Key Stretching

 Special Considerations for Cryptography

 Demo - Identifying Advanced Cryptographic Concepts

Topic B: Select Cryptographic Algorithms

 Types of Ciphers

 Types of Hashing Algorithms 

 Types of Symmetric

 Encryption Algorithms

 Types of Asymmetric Encryption Techniques

 Types of Key Stretching Algorithms

 Substitution Ciphers

 Exclusive Or Cryptographic Modules

 Demo - Selecting Cryptographic Algorithms

Topic C: Configure a Public Key Infrastructure, Public Key Infrastructure

 PKI Components

 CA Hierarchies

 The Root CA

 Subordinate Cas

 Offline Root Cas

 Types of Certificates

 X.509

 Certificate File Formats

 CA Hierarchy Design Options

 Demo - Installing a CA

 Demo - Securing a Windows Server 2016 CA

Topic D: Enroll Certificates

 The Certificate Enrollment Process

 The Certificate Lifecycle

 Certificate Lifecycle Management

 The SSL/TLS Connection Process

 Demo - Enrolling Certificates

 Demo - Securing Network Traffic with Certificates

Topic E: Back Up and Restore Certificates and Private Keys

 Private Key Protection Methods

 Key Escrow

 Private Key Restoration Methods

 Private Key Replacement

 Demo - Backing Up a Certificate and Private Key

 Demo - Restoring a Certificate and Private Key

 Topic F: Revoke Certificates

 Certificate Revocation

 Certificate Revocation List

 Online Certificate Status Protocol

 Demo - Revoking Certificates

Topic A: Evaluate Security Frameworks and Guidelines

 Security Frameworks

 Security Framework Examples

 Security Configuration Guides

 Compliance

 Layered Security

 Defense in Depth

 Demo - Evaluating Security Frameworks and Guidelines

Topic B: Incorporate Documentation in Operational Security

 Security Policies

 Common Security Policy Types

 Personnel Management

 Separation of Duties

 Job Rotation

 Mandatory Vacation

 Additional Personnel Management Tasks

 Training and Awareness

 Business Agreements

 Guidelines for Incorporating Documentation in Operational Security

 Demo - Incorporating Documentation in Operational Security

Topic C: Implement Security Strategies

 Security Automation

 Scalability

 Elasticity

 Redundancy

 Fault Tolerance

 Redundant Array of Independent Disks

 Non-persistence

 High Availability

 Deployment Environments

 Guidelines for Implementing Security Strategies

 Demo - Implementing Virtual Machine Snapshots



Topic D: Manage Data Security Processes

 Data Security

 Data Security Vulnerabilities

 Data Storage Methods

 Data Encryption Methods

 Data Sensitivity

 Data Management Roles

 Data Retention

 Data Disposal

 Guidelines for Managing Data Security

 Demo - Destroying Data Securely

 Demo - Encrypting a Storage Device



Topic E: Implement Physical Controls

 Physical Security Controls

 Physical Security Control Types

 Environmental Exposures

 Environmental Controls

 Environmental Monitoring

 Safety

 Guidelines for Implementing Physical Controls

 Demo - Implementing Physical Controls

Topic A: Troubleshoot Common Security Issues

 Access Control Issues

 Encryption Issues

 Data Exfiltration

 Anomalies in Event Logs

 Security Configuration Issues

 Baseline Deviations

 Software Issues

 Personnel Issues

 Asset Management Issues

 Demo - Identifying Event Log Anomalies

Topic B: Respond to Security Incidents

 Incident Response

 Incident Preparation

 Incident Detection and Analysis

 Incident Containment

 Incident Eradication

 Incident Recovery

 Lessons Learned

 Incident Response Plans

 First Responders

 An Incident Report

 Guidelines for Responding to Security Incidents

 Demo - Responding to a Security Incident

Topic C: Investigate Security Incidents

 Computer Forensics

 The Basic Forensic Process

 Preservation of Forensic Data

 Basic Forensic Response Procedures

 Order of Volatility

 Chain of Custody

 Guidelines for Investigating Security Incidents

 Demo - Implementing Forensic Procedures

Topic A: Select Business Continuity and Disaster Recovery Processes

 Business Continuity and Disaster Recovery

 The Disaster Recovery Process

 Recovery Team

 Order of Restoration

 Recovery Sites

 Secure Recovery

 Backup Types (Full)

 Backup Types (Differential vs. Incremental)

 Secure Backups

 Geographic Considerations

 Guidelines for Selecting Business Continuity and Disaster Recovery Processes

 Demo - Selecting Business Continuity and Disaster Recovery Processes

Topic B: Develop a Business Continuity Plan

 Business Continuity Plans

 Disaster Recovery Plans

 IT Contingency Plans

 Succession Plans

 Failover

 Alternate Business Practices

 Testing Exercises

 After-Action Reports

 Guidelines for Developing a BCP

 Demo - Developing a BCP