CompTIA Security+™ CompTIA 8570 package - $1,995 per person! or $1,400 for groups of 5 or more - exam fee not included
FREE online Quizzes to engage you in Security+ materials, excellent instructor led training, with on-site exam last day.
Certifications obtained after Jan 2011, are now only good for 3 years. CompTIA has Continuing Education program
SU Security+™® Class Security+™ (SY0-301) Exam Objectives Instructor Led VIDEO SECURITY+ Training on iPad2 $3,000 incl 5 day class
For sale for $3,000 incl iPad2 Puchase online at SU registrations/ VIDEO
The 2011 Edition of the CompTIA® Security+™ exam places greater emphasis on knowing how to address specific security issues, rather than simply being able to recognize these issues. The new exam covers six major objectives, or topics: Network Security; Compliance and Operational Security; Threats and Vulnerabilities; Application, Data, and Host Security; Access Control and Identity Management; Cryptography.
A 2008 CompTIA survey of more than 2,000 individuals with responsibilities for information security found that more organizations are requiring security certifications, such as CompTIA Security+, for their IT staff because certified staff is better able to identify potential security risks proactively, and to respond more quickly when security breaches do occur.
Who Should Attend: COMPTIA Security + Bootcamp class is ideal for those working toward or who have already attained positions as Senior Network Security Engineers, Senior Security Systems Analysts or Senior Security Administrators and looking for their first security credentials. It is also useful to IT Auditors who are looking to deepen their IT infrastructure audit skills beyond the CISA.
Class Fee:
$1,995 ($2,350 including SYO-301 exam voucher)
Time:
8:30am - 6pm
Learning Level:
Beginner
Prerequisites:
You should have a basic understanding of TCP/IP
CPE Credits
40
Instructor:
Ken Cutler, Security+ (SY0-301), CISSP, CISA, CISM
We're here to help! CALL NOW 877-357-7744
Hands-on labs for each class
Our Security+ Boot Camp covers the following material during our hands-on lab: SU Security+™® Class Security+™ (SY0-301) Exam Objectives
• Configuring Firewalls: basic firewall configuration walk-through.
• Configuring VPNs: evaluate IPSec and SSL VPN configurations.
• Network Scanning: fundamental network and host vulnerability assessment using port scanners and network vulnerability scanners.
• Web Attack: observe impact of poor input validation and programming in a web application.
• Packet Analysis: get under the hood of network communications using packet analysis.
• System Hardening: evaluate baselines for server and network device hardening.
• Access Control: learn how to prevent unintended access with NTFS and Unix permissions.
• Encryption Deployment: examine application of digital certificates and file encryption.
COMPTIA Security+ SY0-301 Class Outline: Security + Certification / What You Will Learn: The Security+ exam contains six domain areas: COMPTIA Security+Class Outline:
Security + Certification / What You Will Learn:
The Security+ exam contains five domain areas:
1.0 Network Security 21%
2.0 Compliance and Operational Security 18%
3.0 Threats and Vulnerabilities 16%
4.0 Application, Data, and Host Security 13%
5.0 Access Control and Identity Management 13%
6.0 Cryptography 11%
1.0 Systems Security
1.1 Explain the security function and purpose of network devices and technologies
1.3 Distinguish and differentiate network design elements and compounds
- DMZ
- Subnetting
- VLAN
- NAT
- Remote Access
- Telephony
- NAC
- Virtualization
- Cloud Computing
1.4 Implement and use common protocols
- TCP/IP: IPv4 vs. IPv6
- IPSec
- SNMP
- SSH/SCP
- DNS
- SSL/TLS
- TELNET
- FTP/FTPS/SFTP
- HTTP/HTTPS
- ICMP
- NetBIOS
1.5 Identify commonly used default network ports
1.6 Implement wireless network in a secure manner
- WPA/ WPA2
- WEP
- EAP: PEAP, LEAP
- MAC filter
- SSID broadcast
- TKIP
- CCMP
- Antenna Placement
- Power level controls
2.0 Compliance and Operational Security
2.1 Explain risk related concepts
- Control types: Technical, Management, Operational
- False positives
- Importance of policies in reducing risk: Privacy, Acceptable use, Security
- Mandatory vacations
- Job rotation
- Separation of duties
- Least privilege
- Risk calculation: Likelihood, Annualized Loss Expectancy (ALE), Impact
- Quantitative vs. qualitative
- Risk-avoidance, transference, acceptance, mitigation, deterrence
- Risks associated to Cloud Computing and Virtualization
2.2 Carry out appropriate risk mitigation strategies
- Implement security controls based on risk
- Change management
- Incident management
- User rights and permissions reviews
- Perform routine audits
- Implement policies and procedures to prevent data loss or theft
2.3 Execute appropriate incident response procedures
- Basic forensic procedures
- Evidence data collection and preservation
- Damage and loss control
- Chain of custody - Incident response: first responder
2.4 Explain the importance of security related awareness and training
- Security policy training and procedures
- Personally identifiable information
- Information classification: Sensitivity of data (hard or soft)
- Data labeling, handling and disposal
- Compliance with laws, best practices and standards
- User habits
- Threat awareness: New Malware, Phishing, Zero days exploits
- Use of social networking and P2P
2.5 Compare and contrast aspects of business continuity
- Business impact analysis
- Removing single points of failure
- Business continuity planning and testing
- Continuity of operations
- Disaster recovery
- IT contingency planning
- Succession planning
2.6 Explain the impact and proper use of environmental controls
- HVAC
- Fire suppression
- EMI shielding
- Hot and cold aisles
- Environmental monitoring
- Temperature and humidity controls
- Video monitoring
2.7 Execute disaster recovery plans and procedures
- Backup / backout contingency plans or policies
- Backups, execution and frequency
- Redundancy and fault tolerance: Clustering, RAID
- High availability
- Cold site, hot site, warm site
- Mean time to restore, mean time between failures, recovery time objectives and recovery point objectives
2.8 Exemplify the concepts of confidentiality, integrity and availability (CIA)
3.0 Threats and Vulnerabilities 3.1 Analyze and differentiate among types of malware
- Adware
- Virus
- Worms
- Spyware
- Trojan
- Rootkits
- Backdoors
- Logic bomb
- Botnets
3.2 Analyze and differentiate among types of attacks
- Man-in-the-middle
- DDoS
- DoS
- Replay
- Smurf attack
- Spoofing
- Spam
- Spim
- Xmas attack
- Pharming
- Privilege escalation
- Malicious insider threat
- DNS poisoning and ARP poisoning
- Transitive access
- Client-side attacks
3.3 Analyze and differentiate among types of social engineering attacks
- Shoulder surfing
- Dumpster diving
- Tailgating
- Impersonation
- Hoaxes
- Phishing: Spear Phishing, Whaling, Vishing
3.4 Analyze and differentiate among types of wireless attacks
- Rogue access points
- Interference
- Evil twin
- War driving
- Bluejacking/Bluesnarfing
- War chalking
- IV attack
- Packet sniffing
3.5 Analyze and differentiate among types of application attacks
- Cross-site scripting
- SQL injection
- LDAP injection
- XML injection
- Directory traversal/command injection
- Buffer overflow
- Cookies and attachments
- Malicious add-ons
- Session hijacking
- Header manipulation
3.6 Analyze and differentiate among types of mitigation and deterrent techniques
- Manual bypassing of electronic controls
- Failsafe/failsecure/ failopen
- Monitoring system logs
- Physical security
- System and Application hardening
- Port security: MAC limiting, 802.1x, disabling unused ports
- Security posture: baselines, continuous monitoring, remediation
- Reporting: alarms, alerts, trends
- Detection controls vs. prevention controls: IDS vs. IPS, camera vs. guard
3.7 Implement assessment tools and techniques to discover security threats and vulnerabilities
- Vulnerability scanning tools and results interpretation: port scanner, vulnerability scanner
- Protocol analyzer, sniffer
- Honeypots, honeynets, tarpits
- Risk calculations: threat vs. likelihood
- Assessment types: risk, threat, vulnerability
- Assessment techniques: baseline, design and code reviews, threat modeling
3.8 Within the realm of vulnerability assessments, explain the proper use of penetration testing versus vulnerability scanning
- Penetration testing
- Vulnerability scanning
- Identify common misconfiguration: Black box, White box, Gray box
4.0 Application, Data and Host Security 4.1 Explain the importance of application security
- Fuzzing
- Secure coding concepts: error and exception handling, input validation
- Cross-site scripting prevention
- Cross-site Request Forgery (XSRF) prevention - Application configuration baseline (proper settings)
- Application hardening
- Application patch management
4.2 Carry out appropriate procedures to establish host security
- Operating system security and settings
- Anti-malware
- Host-based firewalls
- Patch management
- Hardware security
- Host software baselining
- Mobile device security
- Virtualization
4.3 Explain the importance of data security
- Data Loss Prevention (DLP)
- Data encryption
- Hardware based encryption devices: TPM, HSM, USB encryption, Hard drive
- Cloud computing
5.0 Access Control and Identity Management 5.1 Explain the function and purpose of authentication services
- RADIUS - TACACS/XTACACS/ TACACS+ - PAP
- CHAP
- Kerberos
- LDAP
5.2 Explain the fundamental concepts and best practices related to authentication, authorization and access control
- Identification vs. authentication
- Authentication (single factor) and authorization
- Multifactor authentication
- Biometrics
- Tokens
- Common access card (CAC)
- Personal identification verification card - Smart card
- Least privilege - Separation of duties
- Single sign on
- ACLs
- Access control: Discretionary, mandatory, role/rule-based
- Implicit deny
- Time of day restrictions
- Trusted OS
5.3 Implement appropriate security controls when performing account management
- Mitigates issues associated with users with multiple account/roles
- Account policy enforcement and password management
- Group based privileges
- User assigned privileges
6.0 Cryptography 6.1 Summarize general cryptography concepts
- Symmetric vs. asymmetric
- Fundamental differences and encryption methods: Block vs. stream
- Transport encryption
- Non-repudiation
- Hashing
- Key escrow
- Digital signatures
- Use of proven technologies
- Elliptic curve and quantum cryptography
- Steganography
6.2 Use and apply appropriate cryptographic tools and products
- WEP vs. WPA/WPA2 and pre-shared key
- Symmetric key: AES, 3DES, DES, RC4, Blowfish, Twofish, One-Time Pads (OTP)
- Asymmetric key: RSA, El Gamal, ECC
- Hashing/MAC: MD5, SHA, HMAC
- Authentication: LANMAN, NTLM, NTLMv2
- Pretty Good Privacy (PGP)
- Comparative strengths of algorithms
- Use of algorithms with transport encryption: SSL/TLS, IPSec, SSH, HTTPS
6.3 Explain the core concepts of public key infrastructure
- Certificate authorities and digital certificates: CA, CRL
- PKI
- Recovery agent
- Public key/ Private key
- Registration
- Key escrow
- Trust models
6.4 Implement PKI, certificate management and associated component
About the Exam :
Exam Costs : $266 per attempt. Exam Location : You can take the exam on site last day of class -we are a mobile testing site Time Allocated : 90 minutes per exam Total marks : Graded from 100-900 marks Minimum Pass Marks : 750 Number Of Questions : 100 questions per exam Exam format : Linear format; computer-based test (CBT) Prerequisites : None. CompTIA Network+ certification is officially recommended but not required Validation Period : Certification does not expire, but the requirements are occasionally updated Score Report : Delivered immediate on test completion
