Get up to 20% off courses booked in April!

CompTIA - Security Analytics Expert (Security+/CySA+/CASP)

Duration

Duration:

Only 11 Days

Method

Method:

Classroom / Online / Hybrid

Next date

Next date:

24/6/2024 (Monday)

Overview

On this accelerated 11-day CompTIA Security Analytics Expert (CSAE) certification course, you'll learn the basics of troubleshooting security incidents and how to mitigate risks. You'll then advance your cyber security skills by learning to design and create secure solutions across complex business environments.

Combining theory and practice from official CompTIA Security+, CySA+ and CASP+ curricula, your expert instructor will take you through infrastructure and operational security using risk analysis and mitigation. You'll learn about the following CompTIA Security+ topics:

  • Network Security
  • Compliance and Operational Security
  • Threats and Vulnerabilities
  • Application, Data and Host Security
  • Access Control and Identity Management
  • Cryptography

You'll build on the foundation knowledge gained from Security+, focusing on tools and techniques to assess cyber security risks using the four cyber security domains from CySA+:

  • Threat Management
  • Vulnerability Management
  • Cyber Incident Response
  • Security Architecture and Tool Sets

Then, prove your ability to work as an advanced security practitioner, creating security solutions across enterprises. You'll learn:

  • Enterprise security
  • Risk management
  • Research and analysis
  • Integration of computing, communications, and business disciplines

You'll be immersed in the course through our unique Lecture | Lab | Review technique, you'll get a minimum of 12 hours quality training per day.


Train at twice the speed on this official CompTIA course


Firebrand is an Authorised CompTIA Platinum Partner. This means you'll get access to experienced instructors and up-to-date course material, officially approved by CompTIA.

During the course, you'll prepare for and sit the following CompTIA Security+, CySA+ and CASP+ exams, covered by your Certification Guarantee.

  • Exam SY0-401
  • Exam CS1-001
  • Exam CAS-002

Upon successful completion of all exams, you will achieve the Security+, CySA+ and CASP+ credentials as well as the aligned CSAE Stackable Certification - proving your skills as a Security Analytics Expert.

See prices now to find out how much you could save when you train at twice the speed.

 See prices

Benefits

Seven reasons why you should sit your course with Firebrand Training

  1. Two options of training. Choose between residential classroom-based, or online courses
  2. You'll be certified fast. With us, you’ll be trained in record time
  3. Our course is all-inclusive. A one-off fee covers all course materials, exams**, accommodation* and meals*. No hidden extras.
  4. Pass the first time or train again for free. This is our guarantee. We’re confident you’ll pass your course the first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
  5. You’ll learn more. A day with a traditional training provider generally runs from 9 am – 5 pm, with a nice long break for lunch. With Firebrand Training you’ll get at least 12 hours/day of quality learning time, with your instructor
  6. You’ll learn faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
  7. You’ll be studying with the best. We’ve been named in the Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified over 135,000 professionals
  • * For residential training only. Doesn't apply for online courses
  • ** Some exceptions apply. Please refer to the Exam Track or speak with our experts

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

 Free Practice Test

Curriculum

Security+

1.0 Network Security

  • 1.1 Implement security configuration parameters on network devices and other technologies.
  • 1.2 Given a scenario, use secure network administration principles.
  • 1.3 Explain network design elements and components.
  • 1.4 Given a scenario, implement common protocols and services.
  • 1.5 Given a scenario, troubleshoot security issues related to wireless networking.

2.0 Compliance and Operational Security

  • 2.1 Explain the importance of risk related concepts.
  • 2.2 Summarise the security implications of integrating systems and data with third parties.
  • 2.3 Given a scenario, implement appropriate risk mitigation strategies.
  • 2.4 Given a scenario, implement basic forensic procedures.
  • 2.5 Summarise common incident response procedures.
  • 2.6 Explain the importance of security related awareness and training.
  • 2.7 Compare and contrast physical security and environmental controls.
  • 2.8 Summarise risk management best practices.
  • 2.9 Given a scenario, select the appropriate control to meet the goals of security.

3.0 Threats and Vulnerabilities

  • 3.1 Explain types of malware.
  • 3.2 Summarise various types of attacks.
  • 3.3 Summarise social engineering attacks and the associated effectiveness with each attack.
  • 3.4 Explain types of wireless attacks.
  • 3.5 Explain types of application attacks.
  • 3.6 Analyse a scenario and select the appropriate type of mitigation and deterrent techniques.
  • 3.7 Given a scenario, use appropriate tools and techniques to discover security threats and vulnerabilities.
  • 3.8 Explain the proper use of penetration testing versus vulnerability scanning.

4.0 Application, Data and Host Security

  • 4.1 Explain the importance of application security controls and techniques.
  • 4.2 Summarise mobile security concepts and technologies.
  • 4.3 Given a scenario, select the appropriate solution to establish host security.
  • 4.4 Implement the appropriate controls to ensure data security.
  • 4.5 Compare and contrast alternative methods to mitigate security risks in static environments.

5.0 Access Control and Identity Management

  • 5.1 Compare and contrast the function and purpose of authentication services.
  • 5.2 Given a scenario, select the appropriate authentication, authorisation or access control.
  • 5.3 Install and configure security controls when performing account management, based on best practices.

6.0 Cryptography

  • 6.1 Given a scenario, utilise general cryptography concepts.
  • 6.2 Given a scenario, use appropriate cryptographic methods.
  • 6.3 Given a scenario, use appropriate PKI, certificate management and associated components.

CySA+

1. Threat Management

  • Given a scenario, apply environmental reconnaissance techniques using appropriate tools and processes.
  • Given a scenario, analyse the results of a network reconnaissance.
  • Given a network-based threat, implement or recommend the appropriate response and countermeasure.
  • Explain the purpose of practices used to secure a corporate environment.

2. Vulnerability Management

  • Given a scenario, implement an information security vulnerability management process.
  • Given a scenario, analyse the output resulting from a vulnerability scan.
  • Compare and contrast common vulnerabilities found in the following targets

3. Cyber Incident Response

  • Given a scenario, distinguish threat data or behaviour to determine the impact of an incident
  • Given a scenario, prepare a toolkit and use appropriate forensics tools during an investigation.
  • Explain the importance of communication during the incident response process.
  • Given a scenario, analyse common symptoms to select the best course of action to support incident response.
  • Summarise the incident recovery and post-incident response process.

4. Security Architecture and Tool Sets

  • Explain the relationship between frameworks, common policies, controls, and procedures.
  • Given a scenario, use data to recommend remediation of security issues related to identity and access management.
  • Given a scenario, review security architecture and make recommendations to implement compensating controls.
  • Given a scenario, use application security best practices while participating in the Software Development Life Cycle (SDLC).
  • Compare and contrast the general purpose and reasons for using various cybersecurity tools and technologies.

CASP+

Enterprise Security (30% of exam)

  • Given a scenario, select appropriate cryptographic concepts and techniques
  • Explain the security implications associated with enterprise storage
  • Given a scenario, analyse network and security components, concepts and architectures
  • Given a scenario, select and troubleshoot security controls for hosts
  • Differentiate application vulnerabilities and select appropriate security controls

Risk Management and Incident Response (20% of exam)

  • Interpret business and industry influences and explain associated security risks
  • Given a scenario, execute risk mitigation planning, strategies and controls
  • Compare and contrast security, privacy policies and procedures based on organisational requirements
  • Given a scenario, conduct incident response and recovery procedures

Research, Analysis and Assessment (18% of exam)

  • Apply research methods to determine industry trends and impact to the enterprise
  • Analyse scenarios to secure the enterprise
  • Given a scenario, select methods or tools appropriate to conduct an assessment and analyse results

Integration of Computing, Communications and Business Disciplines (16% of exam)

  • Given a scenario, facilitate collaboration across diverse business units to achieve security goals
  • Given a scenario, select the appropriate control to secure communications and collaboration solutions
  • Implement security activities across the technology life cycle

Technical Integration of Enterprise Components (16% of exam)

  • Given a scenario, integrate hosts, storage, networks and applications into a secure enterprise architecture
  • Given a scenario, integrate advanced authentication and authorisation technologies to support enterprise objectives

Exam Track

You'll sit the following exams at the Firebrand Training Centre during the course, covered by your Certification Guarantee:

  • CompTIA Security+ Exam SY0-401
    • Number of questions: Maximum of 90 questions
    • Type of questions: Multiple choice questions, drag and drops and performance-based
    • Exam duration: 90 Minutes
    • Passing score: 750 (on a scale of 100-900)
    • Languages: English, Japanese, Portuguese and Simplified Chinese
  • CompTIA CySA+ Exam CS1-001
    • Number of questions: Maximum of 85 questions
    • Type of questions: Multiple choice and performance based
    • Exam duration: 165 Minutes
    • Passing score: 750 (on a scale of 100-900)
    • Languages: English
  • CompTIA CASP+ Exam CAS-002
    • Number of questions: Maximum of 90 questions
    • Type of questions: Multiple choice and performance based
    • Exam duration: 165 Minutes
    • Passing score: Pass/Fail only. No scaled score.
    • Languages: English

What's Included

In addition to official course material and exams at the Firebrand Training Centre, you'll receive:

  • CASP CompTIA Advanced Security Practitioner Study Guide - CAS002 - ISBN - 978-1118930847
  • Professor Messer - CompTIA SY0-501 Security+ Course Notes
  • Firebrand Value Add material

Your accelerated course includes:

  • Accommodation *
  • Meals, unlimited snacks, beverages, tea and coffee *
  • On-site exams **
  • Exam vouchers **
  • Practice tests **
  • Certification Guarantee ***
  • Courseware
  • Up-to 12 hours of instructor-led training each day
  • 24-hour lab access
  • Digital courseware **
  • * For residential training only. Accommodation is included from the night before the course starts. This doesn't apply for online courses.
  • ** Some exceptions apply. Please refer to the Exam Track or speak with our experts
  • *** Pass first time or train again free as many times as it takes, unlimited for 1 year. Just pay for accommodation, exams, and incidental costs.

Prerequisites

Before attending the course, it is recommended that you have:

  • Previously attended the CompTIA A+ and/or CompTIA Network+ course
  • Two years of experience in IT administration with a security focus
  • An understanding of operating systems and knowledge of Windows-based systems such as Windows 7 or Windows 8.1
  • The ability to identify basic network components and their roles, including routers, switches, firewalls and server roles. Some firewall configuration experience would be beneficial
  • A basic understanding of Wireless networks
  • A basic understanding of the OSI Model and TCP/IP including IPv4 subnetting

Unsure whether you meet the prerequisites? Don’t worry. Your training consultant will discuss your background with you to understand if this course is right for you.

Reviews

Here's the Firebrand Training review section. Since 2001 we've trained exactly 134561 students and asked them all to review our Accelerated Learning. Currently, 96.41% have said Firebrand exceeded their expectations.

Read reviews from recent accelerated courses below or visit Firebrand Stories for written and video interviews from our alumni.


"Had a great time meeting and networking with other people. A great teacher."
Pritpal Hundel, Computacenter. (8/1/2024 (Monday) to 11/1/2024 (Thursday))

"Our instructor was very knowledgeable and delivered the online course well. The labs are great for getting hands-on experience."
Anonymous. (8/1/2024 (Monday) to 11/1/2024 (Thursday))

"Instructor has plenty of anecdotes that help drive home a lot of the points and commit them to memory, also better place them to real world scenarios."
BH, Dudley Building Society. (18/12/2023 (Monday) to 21/12/2023 (Thursday))

"My instructor really helped me to understand the topic we were learning. He was very knowledgeable and broke it down with simple examples to help reinforce the message."
SB, Morgan Sindall. (18/12/2023 (Monday) to 21/12/2023 (Thursday))

"WOULD HIGHLY RECOMMEND FIREBRAND AS A TRAINING PROVIDER!"
Grant Currie, LLOYDS BANKING GROUP PLC. (18/12/2023 (Monday) to 21/12/2023 (Thursday))

Course Dates

Start

Finish

Status

Location

Book now

19/2/2024 (Monday)

29/2/2024 (Thursday)

Finished - Leave feedback

-

 

24/6/2024 (Monday)

4/7/2024 (Thursday)

Wait list

Nationwide

 

5/8/2024 (Monday)

15/8/2024 (Thursday)

Limited availability

Nationwide

 

16/9/2024 (Monday)

26/9/2024 (Thursday)

Open

Nationwide

 

28/10/2024 (Monday)

7/11/2024 (Thursday)

Open

Nationwide

 

9/12/2024 (Monday)

19/12/2024 (Thursday)

Open

Nationwide

 

Latest Reviews from our students

Trustpilot