Skip Navigation Links

Course Length:
5 Days
Course Description:
This course will prepare students to pass the current CompTIA Security+ SY0-301 certification exam. After taking this course, students will understand the field of network security and how it relates to other areas of information technology. This course also provides the broad-based knowledge necessary to prepare for further study in specialized security fields, or it can serve as a capstone course that gives a general introduction to the field. Comes with CertBlaster exam prep software (download).
Who Should Attend:
This course is targeted toward an Information Technology (IT) professional who has networking and administrative skills in Windows-based TCP/IP networks and familiarity with other operating systems, such as NetWare, Macintosh, UNIX/Linux, and OS/2, who wants to: further a career in IT by acquiring a foundational knowledge of security topics; prepare for the CompTIA Security+ Certification examination; or use Security+ as the foundation for advanced security certifications or career roles.
Benefits of Attendance:
Upon completion of this course, students will be able to:
  • Identify security threats.
  • Harden internal systems and services.
  • Harden internetwork devices and services.
  • Secure network communications.
  • Manage a PKI.
  • Manage certificates.
  • Enforce an organizational security policy.
  • Monitor the security infrastructure.
Prerequisites:
Students should have CompTIA A+ and Network+ certifications, or equivalent knowledge, and six to nine months experience in networking, including experience configuring and managing TCP/IP. Although not required, students might find it helpful to obtain foundational information from introductory operating system administration courses.
Course Outline:
  • Mitigating threats
    1. System maintenance
    2. Application security
    3. Physical security
    4. Malware
    5. Social engineering
  • Cryptography
    1. Symmetric cryptography
    2. Public key cryptography
  • Authentication
    1. : Authentication factors and requirements
    2. Authentication systems
    3. Authentication system vulnerabilities
  • User- and role-based security
    1. Baseline security policies
    2. Resource access
  • Peripheral security
    1. File and disk encryption
    2. Peripheral and component security
    3. Mobile device security
  • Public key infrastructure
    1. Public key cryptography
    2. Implementing public key infrastructure
    3. Web server security with PKI
  • Application and messaging security
    1. Application security
    2. E-mail security
    3. Social networking and messaging
  • Ports and protocols
    1. TCP/IP basics
    2. Protocol-based attacks
  • Network security
    1. Network devices
    2. Secure network topologies
    3. Secure networking
    4. Virtualization and cloud computing
  • Wireless security
    1. Wireless network security
    2. Mobile device security
  • Remote access security
    1. Remote access
    2. Virtual private networks
  • Vulnerability testing and monitoring
    1. Risk and vulnerability assessment
    2. Auditing and logging
    3. Intrusion detection and prevention systems
    4. Incident response
  • Organizational security
    1. Organizational policies
    2. Education and training
    3. Disposal and destruction
  • Business continuity
    1. Business continuity planning
    2. Disaster recovery
    3. Environmental controls