Contact us now and book your course.

Retired courses - Security Analytics Expert (Security+/CySA+/CASP)

Duration

Duration:

Just 11 Days

Method

Method:

Classroom / Online / Hybrid

Next date

Next date:

10/2/2025 (Monday)

Overview

On this accelerated 11-day CompTIA Security Analytics Expert (CSAE) certification course, you'll learn the basics of troubleshooting security incidents and how to mitigate risks. You'll then advance your cyber security skills by learning to design and create secure solutions across complex business environments.

Combining theory and practice from official CompTIA Security+, CySA+ and CASP+ curricula, your expert instructor will take you through infrastructure and operational security using risk analysis and mitigation. You'll learn about the following CompTIA Security+ topics:

  • Network Security
  • Compliance and Operational Security
  • Threats and Vulnerabilities
  • Application, Data and Host Security
  • Access Control and Identity Management
  • Cryptography

You'll build on the foundation knowledge gained from Security+, focusing on tools and techniques to assess cyber security risks using the four cyber security domains from CySA+:

  • Threat Management
  • Vulnerability Management
  • Cyber Incident Response
  • Security Architecture and Tool Sets

Then, prove your ability to work as an advanced security practitioner, creating security solutions across enterprises. You'll learn:

  • Enterprise security
  • Risk management
  • Research and analysis
  • Integration of computing, communications, and business disciplines

You'll be immersed in the course through our unique Lecture | Lab | Review technique, you'll get a minimum of 12 hours quality training per day.


Train at twice the speed on this official CompTIA course


Firebrand is an Authorised CompTIA Platinum Partner. This means you'll get access to experienced instructors and up-to-date course material, officially approved by CompTIA.

During the course, you'll prepare for and sit the following CompTIA Security+, CySA+ and CASP+ exams, covered by your Certification Guarantee.

  • Exam SY0-401
  • Exam CS1-001
  • Exam CAS-002

Upon successful completion of all exams, you will achieve the Security+, CySA+ and CASP+ credentials as well as the aligned CSAE Stackable Certification - proving your skills as a Security Analytics Expert.

See prices now to find out how much you could save when you train at twice the speed.

 See prices

Four reasons why you should sit your CSAE course with Firebrand Training

  1. You'll be CSAE trained and certified faster. Learn more on this 11-day accelerated course. You'll get at least 12 hours a day of quality learning time in a distraction-free environment
  2. Your CSAE course is all-inclusive. One simple price covers all course materials, exams, accommodation and meals – so you can focus on learning
  3. Pass CSAE first time or train again for free. Your expert instructor will deliver our unique accelerated learning methods, allowing you to learn faster and be in the best possible position to pass first time. In the unlikely event that you don't, it's covered by your Certification Guarantee
  4. Study CSAE with an award-winning training provider. We've won the Learning and Performance Institute's "Training Company of the Year" three times. Firebrand is your fastest way to learn, with 134.561 students saving more than one million hours since 2001

Benefits

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

 Free Practice Test

Curriculum

Security+

1.0 Network Security

  • 1.1 Implement security configuration parameters on network devices and other technologies.
  • 1.2 Given a scenario, use secure network administration principles.
  • 1.3 Explain network design elements and components.
  • 1.4 Given a scenario, implement common protocols and services.
  • 1.5 Given a scenario, troubleshoot security issues related to wireless networking.

2.0 Compliance and Operational Security

  • 2.1 Explain the importance of risk related concepts.
  • 2.2 Summarise the security implications of integrating systems and data with third parties.
  • 2.3 Given a scenario, implement appropriate risk mitigation strategies.
  • 2.4 Given a scenario, implement basic forensic procedures.
  • 2.5 Summarise common incident response procedures.
  • 2.6 Explain the importance of security related awareness and training.
  • 2.7 Compare and contrast physical security and environmental controls.
  • 2.8 Summarise risk management best practices.
  • 2.9 Given a scenario, select the appropriate control to meet the goals of security.

3.0 Threats and Vulnerabilities

  • 3.1 Explain types of malware.
  • 3.2 Summarise various types of attacks.
  • 3.3 Summarise social engineering attacks and the associated effectiveness with each attack.
  • 3.4 Explain types of wireless attacks.
  • 3.5 Explain types of application attacks.
  • 3.6 Analyse a scenario and select the appropriate type of mitigation and deterrent techniques.
  • 3.7 Given a scenario, use appropriate tools and techniques to discover security threats and vulnerabilities.
  • 3.8 Explain the proper use of penetration testing versus vulnerability scanning.

4.0 Application, Data and Host Security

  • 4.1 Explain the importance of application security controls and techniques.
  • 4.2 Summarise mobile security concepts and technologies.
  • 4.3 Given a scenario, select the appropriate solution to establish host security.
  • 4.4 Implement the appropriate controls to ensure data security.
  • 4.5 Compare and contrast alternative methods to mitigate security risks in static environments.

5.0 Access Control and Identity Management

  • 5.1 Compare and contrast the function and purpose of authentication services.
  • 5.2 Given a scenario, select the appropriate authentication, authorisation or access control.
  • 5.3 Install and configure security controls when performing account management, based on best practices.

6.0 Cryptography

  • 6.1 Given a scenario, utilise general cryptography concepts.
  • 6.2 Given a scenario, use appropriate cryptographic methods.
  • 6.3 Given a scenario, use appropriate PKI, certificate management and associated components.

CySA+

1. Threat Management

  • Given a scenario, apply environmental reconnaissance techniques using appropriate tools and processes.
  • Given a scenario, analyse the results of a network reconnaissance.
  • Given a network-based threat, implement or recommend the appropriate response and countermeasure.
  • Explain the purpose of practices used to secure a corporate environment.

2. Vulnerability Management

  • Given a scenario, implement an information security vulnerability management process.
  • Given a scenario, analyse the output resulting from a vulnerability scan.
  • Compare and contrast common vulnerabilities found in the following targets

3. Cyber Incident Response

  • Given a scenario, distinguish threat data or behaviour to determine the impact of an incident
  • Given a scenario, prepare a toolkit and use appropriate forensics tools during an investigation.
  • Explain the importance of communication during the incident response process.
  • Given a scenario, analyse common symptoms to select the best course of action to support incident response.
  • Summarise the incident recovery and post-incident response process.

4. Security Architecture and Tool Sets

  • Explain the relationship between frameworks, common policies, controls, and procedures.
  • Given a scenario, use data to recommend remediation of security issues related to identity and access management.
  • Given a scenario, review security architecture and make recommendations to implement compensating controls.
  • Given a scenario, use application security best practices while participating in the Software Development Life Cycle (SDLC).
  • Compare and contrast the general purpose and reasons for using various cybersecurity tools and technologies.

CASP+

Enterprise Security (30% of exam)

  • Given a scenario, select appropriate cryptographic concepts and techniques
  • Explain the security implications associated with enterprise storage
  • Given a scenario, analyse network and security components, concepts and architectures
  • Given a scenario, select and troubleshoot security controls for hosts
  • Differentiate application vulnerabilities and select appropriate security controls

Risk Management and Incident Response (20% of exam)

  • Interpret business and industry influences and explain associated security risks
  • Given a scenario, execute risk mitigation planning, strategies and controls
  • Compare and contrast security, privacy policies and procedures based on organisational requirements
  • Given a scenario, conduct incident response and recovery procedures

Research, Analysis and Assessment (18% of exam)

  • Apply research methods to determine industry trends and impact to the enterprise
  • Analyse scenarios to secure the enterprise
  • Given a scenario, select methods or tools appropriate to conduct an assessment and analyse results

Integration of Computing, Communications and Business Disciplines (16% of exam)

  • Given a scenario, facilitate collaboration across diverse business units to achieve security goals
  • Given a scenario, select the appropriate control to secure communications and collaboration solutions
  • Implement security activities across the technology life cycle

Technical Integration of Enterprise Components (16% of exam)

  • Given a scenario, integrate hosts, storage, networks and applications into a secure enterprise architecture
  • Given a scenario, integrate advanced authentication and authorisation technologies to support enterprise objectives

Exam Track

You'll sit the following exams at the Firebrand Training Centre during the course, covered by your Certification Guarantee:

  • CompTIA Security+ Exam SY0-401
    • Number of questions: Maximum of 90 questions
    • Type of questions: Multiple choice questions, drag and drops and performance-based
    • Exam duration: 90 Minutes
    • Passing score: 750 (on a scale of 100-900)
    • Languages: English, Japanese, Portuguese and Simplified Chinese
  • CompTIA CySA+ Exam CS1-001
    • Number of questions: Maximum of 85 questions
    • Type of questions: Multiple choice and performance based
    • Exam duration: 165 Minutes
    • Passing score: 750 (on a scale of 100-900)
    • Languages: English
  • CompTIA CASP+ Exam CAS-002
    • Number of questions: Maximum of 90 questions
    • Type of questions: Multiple choice and performance based
    • Exam duration: 165 Minutes
    • Passing score: Pass/Fail only. No scaled score.
    • Languages: English

What's Included

In addition to official course material and exams at the Firebrand Training Centre, you'll receive:

  • CASP CompTIA Advanced Security Practitioner Study Guide - CAS002 - ISBN - 978-1118930847
  • Professor Messer - CompTIA SY0-501 Security+ Course Notes
  • Firebrand Value Add material

Your accelerated course includes:

  • Accommodation *
  • Meals, unlimited snacks, beverages, tea and coffee *
  • On-site exams **
  • Exam vouchers **
  • Practice tests **
  • Certification Guarantee ***
  • Courseware
  • Up-to 12 hours of instructor-led training each day
  • 24-hour lab access
  • Digital courseware **
  • * For residential training only. Accommodation is included from the night before the course starts. This doesn't apply for online courses.
  • ** Some exceptions apply. Please refer to the Exam Track or speak with our experts
  • *** Pass first time or train again free as many times as it takes, unlimited for 1 year. Just pay for accommodation, exams, and incidental costs.

Prerequisites

Before attending the course, it is recommended that you have:

  • Previously attended the CompTIA A+ and/or CompTIA Network+ course
  • Two years of experience in IT administration with a security focus
  • An understanding of operating systems and knowledge of Windows-based systems such as Windows 7 or Windows 8.1
  • The ability to identify basic network components and their roles, including routers, switches, firewalls and server roles. Some firewall configuration experience would be beneficial
  • A basic understanding of Wireless networks
  • A basic understanding of the OSI Model and TCP/IP including IPv4 subnetting

Are you ready to get certified in record time?

We interview all applicants for the course on their technical background, degrees and certifications held, and general suitability. If you get through this screening process, it means you stand a great chance of passing.

Firebrand Training is an immersive training environment. You must be committed to the course. The above prerequisites are guidelines, but many students with less experience have other background or traits that have enabled their success in accelerated training through Firebrand Training.

If you have any doubts as to whether you meet the pre-requisites please call (0)8 44 68 27 85 and speak to one of our enrolment consultants, who can help you with a training plan.

Reviews

We've currently trained 134.561 students in 12 years. We asked them all to review our Accelerated Learning. Currently,
94,91% have said Firebrand exceeded their expectations:

"Effective way to gain certification. Would highly recommend to colleagues. Great location. Comfortable environment. Good food."
Nigel Hodges, Pyrus Consulting. (21/5/2024 (Tuesday) to 24/5/2024 (Friday))

"Effective way to gain certification. Would highly recommend to colleagues. Great location. Comfortable environment. Good food."
Nigel Hodges, Pyrus Consulting. (21/5/2024 (Tuesday) to 24/5/2024 (Friday))

"Very good Resources within the E-Book, Mixed with the Lessons, it is also has good Labs to get hands on Practice and put the theory somewhere practical to get full learning experience, with very high standard explanation throughout the lectures. 10/10!"
Rhys Thomas, Nokia. (7/5/2024 (Tuesday) to 10/5/2024 (Friday))

"All the staff are very attentive. A fantastic instructor that was able to answer all questions whilst keeping the sessions informative."
Ash Petch, Cepac. (7/5/2024 (Tuesday) to 10/5/2024 (Friday))

"My experience at Firebrand was brilliant. The people here are nice and approachable among the other apprentices of whom also are very nice and made great friends here too! I am looking forward to my next 2 trips here!"
Lewis Vick, Computacenter. (7/5/2024 (Tuesday) to 10/5/2024 (Friday))

Course Dates

Start

Finish

Status

Location

Book now

26/8/2024 (Monday)

5/9/2024 (Thursday)

Finished - Leave feedback

-

 

 

10/2/2025 (Monday)

20/2/2025 (Thursday)

Limited availability

Nationwide

 

24/3/2025 (Monday)

3/4/2025 (Thursday)

Open

Nationwide

 

5/5/2025 (Monday)

15/5/2025 (Thursday)

Open

Nationwide

 

16/6/2025 (Monday)

26/6/2025 (Thursday)

Open

Nationwide

 

Latest Reviews from our students

Trustpilot