CompTIA Security+

The CompTIA Security+ course is designed for IT professionals responsible for securing network services, devices, and traffic within their organizations. This course provides the foundational knowledge and skills required to implement basic security services on any type of computer network. It covers a wide range of topics, including general security concepts, threats, vulnerabilities, mitigations, security architecture, operations, and program management. It also prepares participants for the CompTIA Security+ certification examination, which validates the baseline skills necessary to perform core security functions and pursue an IT security career.

CompTIA Security+ is a globally recognized certification that validates essential cybersecurity skills, serving as a foundation for IT security careers.

Widely Trusted: Chosen by corporations and defense organizations to meet DoD 8570 compliance and validate core security skills.
Hands-On Focus: The only foundational certification emphasizing practical skills to address complex security challenges.
Versatile Application: Relevant across diverse job roles, enhancing the ability to secure systems, software, and hardware.
Industry-Aligned: Covers the latest trends in risk management, incident response, forensics, enterprise networking, and cloud security to prepare professionals for high-performance roles.

This course is ideal for:

Information Technology (IT) professionals with networking and administrative skills in Windows®-based Transmission Control Protocol/Internet Protocol (TCP/IP) networks and familiarity with other operating systems such as macOS, Unix, or Linux
Individuals seeking to further their IT careers by acquiring foundational knowledge of security topics
Candidates preparing for the CompTIA Security+ certification examination
Cybersecurity professionals using Security+ as the foundation for advanced security certifications or career roles

General Security Concepts
Threats, Vulnerabilities & Mitigations
Security Architecture
Security Operations
Security Program Management & Oversight

By the end of this course, participants will:

Assess the security posture of an enterprise environment and recommend and implement appropriate security solutions
Monitor and secure hybrid environments, including cloud, mobile, and IoT
Operate with an awareness of applicable regulations and policies, including principles of governance, risk, and compliance
Identify, analyze, and respond to security events and incidents

Module 1: Fundamental Security Concepts

Understanding Security Principles: Explore essential security concepts and their significance.
Security Controls: Compare and evaluate different types of security controls.

Module 2: Threat Types and Vectors

Threat Actors: Examine various threat actors and their motivations.
Attack Surfaces: Understand common threat vectors and attack surfaces.
Social Engineering: Identify and mitigate social engineering techniques.

Module 3: Cryptographic Solutions

Cryptographic Algorithms: Learn the role of cryptography in securing data.
Public Key Infrastructure (PKI): Understand PKI and its applications.
Implementing Cryptography: Apply cryptographic solutions for secure communications.

Module 4: Identity and Access Management

Identity Management: Learn to implement and maintain identity solutions.
Authorization Techniques: Explore methods for managing user access securely.

Module 5: Securing Enterprise Network Architectures

Infrastructure Security: Apply security principles to enterprise infrastructure.
Network Security Devices: Configure and maintain network security appliances.
Secure Communication: Implement protocols to ensure secure data transmission.

Module 6: Cloud and Embedded Systems Security

Cloud Infrastructure: Analyze the security implications of different cloud architectures.
Zero Trust Architecture: Apply zero-trust principles to embedded and cloud systems.

Module 7: Resiliency and Site Security

Asset Management: Explore strategies for managing hardware, software, and data assets.
Redundancy Strategies: Ensure business continuity with effective redundancy measures.
Physical Security: Implement security measures to protect physical assets.

Module 8: Vulnerability Management

Device Vulnerabilities: Identify and mitigate operating system and device vulnerabilities.
Application Vulnerabilities: Address security risks in cloud and application environments.
Vulnerability Analysis: Utilize tools and techniques for vulnerability identification and remediation.

Module 9: Network Security Enhancements

Security Baselines: Establish baseline configurations for enhanced network security.
Capability Enhancements: Upgrade enterprise network security capabilities.

Module 10: Endpoint Security

Device Hardening: Implement endpoint protection measures and secure mobile devices.

Module 11: Application Security

Protocol Security: Ensure secure application protocols and configurations.
Cloud and Web Security: Protect cloud and web applications from security breaches.

Module 12: Incident Response and Monitoring

Incident Handling: Develop effective incident response strategies.
Digital Forensics: Use forensic tools to investigate security breaches.
Alerting and Monitoring: Leverage monitoring tools to identify and respond to threats.

Module 13: Indicators of Malicious Activity

Malware Detection: Recognize and analyze malware attack indicators.
Physical and Network Attacks: Identify signs of physical and network-based attacks.

Module 14: Security Governance

Policies and Procedures: Understand governance frameworks and their elements.
Change Management: Implement secure processes for managing organizational changes.
Automation and Orchestration: Streamline operations with automation tools.

Module 15: Risk Management

Risk Assessment: Explore risk management processes and concepts.
Vendor Management: Assess and manage third-party risks.
Audits: Conduct security audits and assessments.

Module 16: Data Protection and Compliance

Data Classification: Protect sensitive data through effective classification strategies.
- Security Awareness: Implement personnel policies to enhance compliance and awareness.

—