COMPTIA CYBERSECURITY+ (CYSA+) CS0-001 ONLINE COURSE

Chapter & Lessons:

Lesson 1: Assessing Information Security Risk

This lesson covers the following subjects: Identify the Importance of Risk Management; Assess Risk; Mitigate Risk; and Integrate Documentation into Risk Management.

Lesson 2: Analyzing the Threat Landscape

This lesson covers the following subjects: Classify Threats and Threat Profiles; and Perform Ongoing Threat Research.

Lesson 3: Analyzing Reconnaissance Threats to Computing and Network Environments

This lesson covers the following subjects: Implement Threat Modeling; Assess the Impact of Reconnaissance Incidents; and Assess the Impact of Social Engineering.

Lesson 4: Analyzing Attacks on Computing and Network Environments

This lesson covers the following subjects: Assess the Impact of System Hacking Attacks; Assess the Impact of Web-Based Attacks; Assess the Impact of Malware; Assess the Impact of Hijacking and Impersonation Attacks; Assess the Impact of DoS Incidents; Assess the Impact of Threats to Mobile Security; and Assess the Impact of Threats to Cloud Security.

Lesson 5: Analyzing Post-Attack Techniques

This lesson covers the following subjects: Assess Command and Control Techniques; Assess Persistence Techniques; Assess Lateral Movement and Pivoting Techniques; Assess Data Exfiltration Techniques; and Assess Anti-Forensics Techniques.

Lesson 6: Managing Vulnerabilities in the Organization

This lesson covers the following subjects: Implement a Vulnerability Management Plan; Assess Common Vulnerabilities; and Conduct Vulnerability Scans.

Lesson 7: Implementing Penetration Testing to Evaluate Security

This lesson covers the following subjects: Conduct Penetration Tests on Network Assets; and Follow Up on Penetration Testing.

Lesson 8: Collecting Cybersecurity Intelligence

This lesson covers the following subjects: Deploy a Security Intelligence Collection and Analysis Platform; Collect Data from Network-Based Intelligence Sources; and Collect Data from Host-Based Intelligence Sources.

Lesson 9: Analyzing Log Data

This lesson covers the following subjects: Use Common Tools to Analyze Logs; Use SIEM Tools for Analysis; and Parse Log Files with Regular Expressions.

Lesson 10: Performing Active Asset and Network Analysis

This lesson covers the following subjects: Analyze Incidents with Windows-Based Tools; Analyze Incidents with Linux-Based Tools; Analyze Malware; and Analyze Indicators of Compromise.

Lesson 11: Responding to Cybersecurity Incidents

This lesson covers the following subjects: Deploy an Incident Handling and Response Architecture; Mitigate Incidents; and Prepare for Forensic Investigation as a CSIRT.

Lesson 12: Investigating Cybersecurity Incidents

This lesson covers the following subjects: Apply a Forensic Investigation Plan; Securely Collect and Analyze Electronic Evidence; and Follow Up on the Results of an Investigation.

Lesson 13: Addressing Security Architecture Issues

This lesson covers the following subjects: Remediate Identity and Access Management Issues; and Implement Security During the SDLC.

Assessment:
Assessment is in the form of the CySA+ Certification CS0-001 examination. The Examination has 85 questions in a multiple choice and performance-based format over a 165 minute period. The Exam is graded on a scale of 100 - 900 with a minimum passing score of 750.