Course Description
This course covers topics on threats, attacks, and vulnerabilities for Security+. It also includes the ins and outs of Malware, ransom-ware, viruses, Trojans, rootkits, social engineering attacks, application vulnerabilities, and DDoS attacks. In addition, students will learn the characteristics of the various types of threat actors, the skills they have and the tools they use to defend the cyberspace. Finally, they will acquire knowledge and skills about penetration testing and vulnerability scanning and how they are used to help tighten security and mitigate potential breaches.
By the end of this ____ week-long course, students will have a solid understanding of the various threats and and likely the tools to be used to mitigate these threats.
Sept. 12, 2020
Program Requirements
| Delivery | Online |
| Length | 2-4 weeks |
| VA Approved | GI Bill & VET-TEC |
| Certification | Security + |
Objectives
- Detect various types of compromise and have an understanding of penetration testing and vulnerability scanning concepts
- Install, configure, and deploy network components while assessing and troubleshooting issues to support organizational security
- Implement secure network architecture concepts and systems design
- Install and configure identity and access services, as well as management controls
- Implement and summarize risk management best practices and the business impact
- Install and configure wireless security settings and implement public key infrastructure
Prerequisite
Students must have obtained the Network+ credential and have at least two years of IT administration experience with a security focus.
Course Content
Threats, Attacks, and Vulnerabilities
- Analyzing Indicators of Compromise & Determining Malware Types
- Comparing & Contrasting Attacks Types
- Exploring Threat Actor Types and Attributes
- Defining the Penetration Testing Process
- Defining the Vulnerability Scanning Process
- Impacts Associated with Types of Vulnerabilities
Technologies and Tools
- Installing and Configuring Network Components
- Assessing the Security Posture of an Organization
- Troubleshooting Common Security Issues
- Analyzing and Interpreting Output from Security Technologies
- Deploying Mobile Devices Securely
- Implementing Secure Protocols
Architecture and Design
- Frameworks, Best Practices, and Secure Configuration Guides
- Implementing Secure Network Architecture
- Implementing Secure Systems Design
- Secure Staging Deployment
- Security Implications of Embedded Systems
- Secure Application Development and Deployment
- Cloud and Virtualization
- Reducing Risk with Resiliency and Automation Strategies
- Physical Security Controls
Identity and Access Management
- Comparing and Contrasting Identity and Access Management Concepts
- Installing and Configuring Identity and Access Services
- Implementing Identity and Access Management Controls
- Differentiating Common Account Management Practices
Risk Management
- Understanding Organizational Policies, Plans, and Procedures
- Business Impact Analysis Concepts
- Understanding Risk Management Processes and Concepts
- Following Incident Response Procedures
- Reviewing the Fundamentals of Digital Forensics
- Defining Disaster Recovery and Continuity of Operation
- Comparing and Contrasting Various Types of Controls
- Performing Data Security and Privacy Practices
Cryptography and PKI
- Comparing and Contrasting Basic Cryptography Concepts
- Deciphering Cryptographic Algorithms
- Installing and Configuring Wireless Security Settings
- Implementing Public Key Infrastructure
