Looking for Global training? Go to https://firebrand.training/en or stay on the current site (Schweiz)
This accelerated Certiport Cybersecurity, Information Technology Specialist program is a way for students validate entry level IT skills sought after by employers. The IT Specialist program is aimed at candidates who are considering or just beginning a path to a career in information technology.
Candidates for this exam are starting their journey in the cybersecurity field. This exam assesses their understanding of key security paradigms, terminology, and mindset. Successful candidates will have a keen awareness of the importance of security and the threats to a business when security procedures are not followed. They are willing to teach others about security concerns. They are developing the investigative and implementation skills necessary to succeed in the field and have an aptitude and desire to learn more.
At the end of this course, you’ll achieve your Certiport Cybersecurity certification.
Through Firebrand’s Lecture | Lab | Review methodology you’ll certify at twice the speed of traditional training and get access to courseware, learn from certified instructors, and train in a distraction-free environment.
40% faster
Distraction-free environment
Candidates for this exam are starting their journey in the cybersecurity field. This exam assesses their understanding of key security paradigms, terminology, and mindset. Successful candidates will have a keen awareness of the importance of security and the threats to a business when security procedures are not followed. They are willing to teach others about security concerns. They are developing the investigative and implementation skills necessary to succeed in the field and have an aptitude and desire to learn more.
CertiPort Cybersecurity
Essential Security Principles
1.1 Define essential security principles
• Vulnerabilities, threats, exploits, and risks; attack vectors; hardening; defense-in-depth; confidentiality, integrity, and availability (CIA); types of attackers; reasons for attacks; code of ethics
1.2 Explain common threats and vulnerabilities
• Malware, ransomware, denial of service, botnets, social engineering attacks (tailgating, spear phishing, phishing, vishing, smishing, etc.), physical attacks, man in the middle, IoT vulnerabilities, insider threats, Advanced Persistent Threat (APT)
1.3 Explain access management principles
• Authentication, authorization, and accounting (AAA); RADIUS; multifactor authentication (MFA); password policies
1.4 Explain encryption methods and applications
• Types of encryption, hashing, certificates, public key infrastructure (PKI); strong vs. weak encryption algorithms; states of data and appropriate encryption (data in transit, data at rest, data in use); protocols that use encryption
2. Basic Network Security Concepts
2.1 Describe TCP/IP protocol vulnerabilities
• TCP, UDP, HTTP, ARP, ICMP, DHCP, DNS
2.2 Explain how network addresses impact network security
• IPv4 and IPv6 addresses, MAC addresses, network segmentation, CIDR notation, NAT, public vs. private networks
2.3 Describe network infrastructure and technologies
• Network security architecture, DMZ, virtualization, cloud, honeypot, proxy server, IDS, IPS
2.4 Set up a secure wireless SoHo network
• MAC address filtering, encryption standards and protocols, SSID
2.5 Implement secure access technologies
• ACL, firewall, VPN, NAC 3. Endpoint Security Concepts
3.1 Describe operating system security concepts
• Windows, macOS, and Linux; security features, including Windows Defender and host-based firewalls; CLI and PowerShell; file and directory permissions; privilege escalation
3.2 Demonstrate familiarity with appropriate endpoint tools that gather security assessment information
• netstat, nslookup, tcpdump
3.3 Verify that endpoint systems meet security policies and standards
• Hardware inventory (asset management), software inventory, program deployment, data backups, regulatory compliance (PCI DSS, HIPAA, GDPR), BYOD (device management, data encryption, app distribution, configuration management)
3.4 Implement software and hardware updates
• Windows Update, application updates, device drivers, firmware, patching
3.5 Interpret system logs
• Event Viewer, audit logs, system and application logs, syslog, identification of anomalies
3.6 Demonstrate familiarity with malware removal
• Scanning systems, reviewing scan logs, malware remediation
4. Vulnerability Assessment and Risk Management
4.1 Explain vulnerability management
• Vulnerability identification, management, and mitigation; active and passive reconnaissance; testing (port scanning, automation)
4.2 Use threat intelligence techniques to identify potential network vulnerabilities
• Uses and limitations of vulnerability databases; industry-standard tools used to assess vulnerabilities and make recommendations, policies, and reports; Common Vulnerabilities and Exposures (CVEs), cybersecurity reports, cybersecurity news, subscription services, and collective intelligence; ad hoc and automated threat intelligence; the importance of updating documentation and other forms of communication proactively before, during, and after cybersecurity incidents; how to secure, share and update documentation
4.3 Explain risk management
• Vulnerability vs. risk, ranking risks, approaches to risk management, risk mitigation strategies, levels of risk (low, medium, high, extremely high), risks associated with specific types of data and data classifications, security assessments of IT systems (information security, change management, computer operations, information assurance)
4.4 Explain the importance of disaster recovery and business continuity planning
• Natural and human-caused disasters, features of disaster recovery plans (DRP) and business continuity plans (BCP), backup, disaster recovery controls (detective, preventive, and corrective)
5. Incident Handling
5.1 Monitor security events and know when escalation is required
• Role of SIEM and SOAR, monitoring network data to identify security incidents (packet captures, various log file entries, etc.), identifying suspicious events as they occur
5.2 Explain digital forensics and attack attribution processes
• Cyber Kill Chain, MITRE ATT&CK Matrix, and Diamond Model; Tactics, Techniques, and Procedures (TTP); sources of evidence (artifacts); evidence handling (preserving digital evidence, chain of custody)
5.3 Explain the impact of compliance frameworks on incident handling
• Compliance frameworks (GDPR, HIPAA, PCI-DSS, FERPA, FISMA), reporting and notification requirements 5.4 Describe the elements of cybersecurity incident response
• Policy, plan, and procedure elements; incident response lifecycle stages (NIST Special Publication 800-61 sections 2.3, 3.1-3.4)
As part of your accelerated course, you’ll sit the following exam at the Firebrand Training centre, covered by your Certification Guarantee:
40 - 50 MCQ Questions
Duration - 50 Minutes
Successful candidates will have a keen awareness of the importance of security and the threats to a business when security procedures are not followed. They are willing to teach others about security concerns. They are developing the investigative and implementation skills necessary to succeed in the field and have an aptitude and desire to learn more. They are familiar with the toolset at a fundamental level and can assist in threat mitigation and incident response. Candidates should have at least 150 hours of instruction or hands-on experience knowledge and skills. Candidates should have at least 150 hours of instruction or hands-on experience with cybersecurity.
To be successful on the test, the candidate is also expected to have the following prerequisite knowledge and skills:
Sind Sie sich unsicher, ob Sie die Voraussetzungen erfüllen? Wir besprechen gerne mit Ihnen Ihren technischen Hintergrund, Erfahrung und Qualifikation, um herauszufinden, ob dieser Intensivkurs der richtige für Sie ist.
Bereits 134561 Kursteilnehmer haben seit 2001 erfolgreich einen Firebrand-Kurs absolviert. Unsere aktuellen Kundenbefragungen ergeben: Bei 94.76% unserer Teilnehmer wurde die Erwartungshaltung durch Firebrand übertroffen!
"The tutors are exceptional, offering practical knowledge that's directly applicable. Their depth of experience in the field is evident, which is incredibly reassuring. While some concepts may initially feel overwhelming, the tutors have a knack for simplifying complex material, ensuring a solid understanding without the intimidation factor. Special thanks to the instructor."
Anonymous. (29.4.2024 (Montag) bis 1.5.2024 (Mittwoch))
"The course was very insightful and was taught extremely well!"
Anonymous. (29.4.2024 (Montag) bis 1.5.2024 (Mittwoch))
"Great teacher. Would recommend."
Stephen Fishwick, Lloyds banking group. (29.4.2024 (Montag) bis 1.5.2024 (Mittwoch))
"It's been an amazing journey so far. Enjoyed all the training, networking and new skills gained."
Marinos Chalkiadakis, LBG. (29.4.2024 (Montag) bis 1.5.2024 (Mittwoch))
"A great teacher, spends time explaining information and is always helpful."
Richard Cox, Lloyds banking group. (29.4.2024 (Montag) bis 1.5.2024 (Mittwoch))
Start |
Ende |
Verfügbarkeit |
Standort |
Anmelden |
---|---|---|---|---|
26.8.2024 (Montag) |
27.8.2024 (Dienstag) |
Kurs gelaufen - Hinterlasse Kommentar |
- |
|
|
|
|
|
|
10.2.2025 (Montag) |
11.2.2025 (Dienstag) |
Einige Plätze frei |
Überregional |
|
24.3.2025 (Montag) |
25.3.2025 (Dienstag) |
Einige Plätze frei |
Überregional |
|
5.5.2025 (Montag) |
6.5.2025 (Dienstag) |
Einige Plätze frei |
Überregional |
|
16.6.2025 (Montag) |
17.6.2025 (Dienstag) |
Einige Plätze frei |
Überregional |
|