CompTIA, Cyber Security

CompTIA Cybersecurity Analyst

IN-CySA

Type

Virtual

Classroom ILT

Skill Level

Intermediate

Available dates

November 11, 2024

November 25, 2024

December 9, 2024

February 24, 2025

Learning Path

Cybersecurity

Virtual

Duration

5 Days

1 Day

TYPE

Virtual

Classroom ILT

LEARNING PATH

Cybersecurity

SKILL LEVEL

Intermediate

DURATION

5 Days

AVAILABLE DATES

November 11, 2024

November 25, 2024

December 9, 2024

February 24, 2025

Choose date

R7 300,00

Price excluding VAT

Introduction

The CompTIA Cybersecurity Analyst (CySA+) course is an international, vendor-neutral cybersecurity certification that applies behavioural analytics to improve the overall state of IT security. The CySA+ course validates knowledge and skills that are required to prevent, detect and combat cybersecurity threats.

In addition, this course covers the duties of those who are responsible for monitoring and detecting security incidents in information systems and networks, and for executing a proper response to such incidents. Depending on the size of the organization, this individual may act alone or may be a member of a cybersecurity incident response team (CSIRT).

The course introduces delegates to tools and tactics to manage cybersecurity risks, identify various types of common threats, evaluate the organization’s security, collect and analyse cybersecurity intelligence, and handle incidents as they occur. Ultimately, the course promotes a comprehensive approach to security aimed towards those on the front lines of defence.

Audience profile

This course is designed primarily for cybersecurity practitioners who perform job functions related to protecting information systems by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation. This course focuses on the knowledge, ability, and skills necessary to provide for the defence of those information systems in a cybersecurity context, including protection, detection, analysis, investigation, and response processes.

In addition, the course ensures that all members of an IT team; everyone from help desk staff to the Chief Information Officer; understand their role in these security processes.

Pre-requisites

To ensure your success in this course, delegates should meet the following requirements:

At least two years (recommended) of experience in computer network security technology or a related field
The ability to recognize information security vulnerabilities and threats in the context of risk management
Foundation-level operational skills with some of the common operating systems for computing environments
Foundational knowledge of the concepts and operational framework of common assurance safeguards in computing environments. Safeguards include, but are not limited to, basic authentication and authorization, resource permissions, and anti-malware mechanisms
Foundation-level understanding of some of the common concepts for network environments, such as routing and switching
Foundational knowledge of major TCP/IP networking protocols, including, but not limited to, TCP, IP, UDP, DNS, HTTP, ARP, ICMP, and DHCP
Foundational knowledge of the concepts and operational framework of common assurance safeguards in network environments. Safeguards include, but are not limited to, firewalls, intrusion prevention systems, and VPNs

Delegates can obtain this level of skills and knowledge by taking the following courses at Torque IT:

CompTIA A+ Bootcamp;
CompTIA Network+
CompTIA Security+

Course objectives

After completing the CompTIA CySA+ course, delegates will have the skills and knowledge to:

Assess information security risk in computing and network environments
Analyse the cybersecurity threat landscape
Analyse reconnaissance threats to computing and network environments
Analyse attacks on computing and network environments
Analyse post-attack techniques on computing and network environments
Implement a vulnerability management program
Evaluate the organization’s security through penetration testing
Collect cybersecurity intelligence
Analyse data collected from security and event logs
Perform active analysis on assets and networks
Respond to cybersecurity incidents
Investigate cybersecurity incidents
Address security issues with the organization’s technology architecture

Course content

Lesson 1: Explaining the Importance of Security Controls and Security Intelligence:
Identify Security Control Types	Explain the Importance of Threat Data and Intelligence
Lesson 2: Utilizing Threat Data and Intelligence:
Classify Threats and Threat Actor Types	Utilize Attack Frameworks and Indicator Management
Utilize Threat Modelling and Hunting Methodologies
Lesson 3: Analysing Security Monitoring Data:
Analyse Network Monitoring Output	Analyse Appliance Monitoring Output
Analyse Endpoint Monitoring Output	Analyse Email Monitoring Output
Lesson 4: Collecting and Querying Security Monitoring Data:
Configure Log Review and SIEM Tools	Analyse and Query Logs and SIEM Data
Lesson 5: Utilizing Digital Forensics and Indicator Analysis Techniques:
Identify Digital Forensics Techniques	Analyse Network-related IOCs
Analyse Host-related IOCs	Analyse Application-related IOCs
Analyse Lateral Movement and Pivot IOCs
Lesson 6: Applying Incident Response Procedure:
Explain Incident Response Processes	Apply Detection and Containment Processes
Apply Eradication, Recovery, and Post-incident Processes
Lesson 7: Applying Risk Mitigation and Security Frameworks:
Apply Risk Identification, Calculation, and Prioritization Processes	Explain Frameworks, Policies, and Procedures
Lesson 8: Performing Vulnerability Management:
Analyse Output from Enumeration Tools	Configure Infrastructure Vulnerability Scanning Parameters
Analyse Output from Infrastructure Vulnerability Scanners	Mitigate Vulnerability Issues
Lesson 9: Applying Security Solutions for Infrastructure Management:
Apply Identity and Access Management Security Solutions	Apply Network Architecture and Segmentation Security Solutions
Explain Hardware Assurance Best Practices	Explain Vulnerabilities Associated with Specialized Technology
Lesson 10: Understanding Data Privacy and Protection:
Identify Non-technical Data and Privacy Control	Identify Technical Data and Privacy Controls
Lesson 11: Applying Security Solutions for Software Assurance:
Mitigate Software Vulnerabilities and Attacks	Mitigate Web Application Vulnerabilities and Attacks
Analyse Output from Application Assessments
Lesson 12: Applying Security Solutions for Cloud and Automation:
Identify Cloud Service and Deployment Model Vulnerabilities	Explain Service-oriented Architecture
Analyse Output from Cloud Infrastructure Assessment Tools	Compare Automation Concepts and Technologies

Associated certifications and exam

This course is designed to prepare the students to take the CompTIA CS0-003 international examination.

Successfully passing this exam will result in the attainment of the CompTIA Cybersecurity Analyst (CySA+) certification.

The CompTIA Cybersecurity Analyst (CySA+) certification verifies that successful candidates have the knowledge and skills required to detect and analyse indicators of malicious activity, understand threat intelligence and threat management, respond to attacks and vulnerabilities, perform incident response, and report and communicate related activity.

Exam Details	CompTIA Cybersecurity Analyst+
Exam Title	CompTIA Cybersecurity Analyst+
Number of Questions/Practical Challenges	85 Questions
Recommended Experience	Network+, Security+ or equivalent knowledge. Minimum of 4 years of hands-on experience as an incident response analyst or security operations centre (SOC) analyst, or equivalent experience.
Test Duration	2 Hours 45 Minutes
Test Format	Multiple choice questions and performance-based questions.
Test Delivery	Pearson VUE Testing Centres Online Testing
Availability	Pearson VUE
Exam Prefix	CS0-003
Passing Score	750 (on a scale of 100-900)
Retirement	Three years after date of launch.

CompTIA Overview

Torque IT, an established player in the CompTIA arena.

Torque IT offers comprehensive CompTIA training paths that form a foundation for a career in computer technology, which allows for the pursuit of specific areas of specialisation. Depending on the path chosen, Torque IT CompTIA vendor neutral certifications assist Students in building skills and knowledge, supporting learning throughout their entire IT career.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

CompTIA Cybersecurity Analyst

Type

Skill Level

Available dates

Learning Path

Duration

TYPE

Virtual

Classroom ILT

LEARNING PATH

SKILL LEVEL

DURATION

AVAILABLE DATES

Price excluding VAT

CompTIA Overview

contact

Vendor
Authorised

Details

Menu

newsletter

CompTIA Cybersecurity Analyst

Type

Skill Level

Available dates

Learning Path

Duration

TYPE

Virtual

Classroom ILT

LEARNING PATH

SKILL LEVEL

DURATION

AVAILABLE DATES

Price excluding VAT

CompTIA Overview

contact

Vendor Authorised

Details

Menu

newsletter

Vendor
Authorised