CompTIA Security+

Working World provides training on many of the leading software programs and applications.  To book your next computer training course please call our main office number at (800) 463-3074.

Course length

• 5 days

Objectives

• identify fundamental concepts of computer security.
• identify security threats.
• harden internal systems and services.
• harden internetwork devices and services.
• secure network communications.
• establish security best practices for creating and running web-based applications.
• manage public key infrastructure (PKI).
• manage certificates.
• enforce organizational security policies.
• monitor the security infrastructure.
• manage security incidents.

Prerequisites

• Basic Windows skills and fundamental understanding of computer and networking concepts are required.
• CompTIA A+ and Network+ certifications, or equivalent knowledge, and six to nine months experience in networking, including experience configuring and managing TCP/IP, are strongly recommended.

Content

Security Fundamentals

• Security Building Blocks
• Authentication Methods
• Cryptography Fundamentals
• Security Policy Fundamentals

Security Threats

• Social Engineering
• Software-Based Threats
• Network-Based Threats
• Hardware-Based Threats

Hardening Internal Systems and Services

• Harden Operating Systems
• Harden Directory Services
• Harden DHCP Servers
• Harden File and Print Servers

Hardening Internetwork Devices and Services

• Harden Internetwork Connection Devices
• Harden DNS and BIND Servers
• Harden Web Servers
• Harden Email Servers
• Harden Conferencing and Messaging Servers
• Secure File Transfers

Securing Network Communications

• Protect Network Traffic with IP Security (IPSec)
• Secure Wireless Traffic
• Secure the Network Telephony Infrastructure
• Secure the Remote Access Channel

Securing Web Applications

• Prevent Input Validation Attacks
• Protect Systems from Buffer Overflow Attacks
• Implement ActiveX and Java Security
• Protect Systems from Scripting Attacks
• Implement Secure Cookies
• Harden a Web Browser

Managing Public Key Infrastructure (PKI)

• Install a Certificate Authority (CA) Hierarchy
• Harden a Certificate Authority
• Back Up a CA
• Restore a CA

Managing Certificates

• Enroll Certificates
• Secure Network Traffic by Using Certificates
• Renew Certificates
• Revoke Certificates
• Back Up Certificates and Private Keys
• Restore Certificates and Private Keys

Enforcing Organizational Security Policies

• Perform a Risk Assessment
• Enforce Corporate Security Policy Compliance
• Enforce Legal Compliance
• Enforce Physical Security Compliance
• Educate Users
• Plan for Disaster Recovery
• Conduct a Security Audit

Monitoring the Security Infrastructure

• Scan for Vulnerabilities
• Monitor for Security Anomalies
• Set Up a Honeypot

Managing Security Incidents

• Respond to Security Incidents
• Evidence Administration
• Recover From a Security Incident