CompTIA Advanced Security Practitioner (CASP+) Training Course Outline
Information security is a crucial field in the world of business. You have experience in this field, and now you're ready to take that experience to the next level. In this course, you will expand on your knowledge of information security to apply more advanced principles that will keep your organization safe from the many ways it can be threatened. You'll apply critical thinking and judgment across a broad spectrum of security disciplines to propose and implement sustainable security solutions that map to organizational strategies; translate business needs into security requirements; support IT governance and risk management; architect security for hosts, networks, and software; respond to security incidents; and more.
Today's IT climate demands individuals with demonstrable skills, and the information and activities in this course can help you develop the skill set you need to confidently perform your duties as an advanced security practitioner.
Exam Prep Software
All of our CompTIA classes include access to web-based practice exams. CompTIA certification exams are very rigorous and challenging. By studying after the class and using these practice exams, you will greatly improve your chances of passing the actual certification exam the first time. Exam prep software is included with all CompTIA classes delivered by ONLC Training Centers.
ONLC’s Exam Pass Guarantee
ONLC’s CompTIA certification classes come with an Exam Pass Guarantee. What that essentially means is that we want to make sure that everyone is taking advantage of the Practice Test that we are providing and achieve and 85% or better in Certification Mode prior to us releasing the initial exam voucher. The practice test is typically ordered the first day of class and emailed to each student. Once you email us at firstname.lastname@example.org with proof of the 85% or better, we will go ahead and release the exam voucher to you within 24 hours. Should you fail on the first attempt, we will then give you a second voucher. However, should you decide to not take the practice exam or to take the exam without first achieving the 85% in certification mode, the Exam Pass is null and void. Please read through our:
Exam Pass Guarantee
Additional Notes Regarding CompTIA Certification Exams
As with most professional IT certifications, many addition hours of study are required before the class (meeting the prerequisites) and after the class (reviewing exam objectives and practice questions). Expect to spend a significant number of hours studying outside of the class before you take a CompTIA or any other IT professional exam.
In this course, you will analyze and apply advanced security concepts, principles, and implementations that contribute to enterprise-level security.
Support IT governance in the enterprise with an emphasis on managing risk.
Leverage collaboration tools and technology to support enterprise security.
Use research and analysis to secure the enterprise.
Integrate advanced authentication and authorization techniques.
Implement cryptographic techniques.
Implement security controls for hosts.
Implement security controls for mobile devices.
Implement network security.
Implement security in the systems and software development lifecycle.
Integrate hosts, storage, networks, applications, virtual environments, and cloud technologies in a secure enterprise architecture.
Conduct security assessments.
Respond to and recover from security incidents.
This course is designed for IT professionals in the cybersecurity industry whose primary job responsibility is to secure complex enterprise environments. The target student should have real-world experience with the technical administration of these enterprise environments.
This course is also designed for students who are seeking the CompTIA® Advanced Security Practitioner (CASP+®) certification and who want to prepare for Exam CAS-003. Students seeking CASP+ certification should have at least 10 years of experience in IT management, with at least 5 years of hands-on technical security experience.
To be fit for this advanced course, you should have at least a foundational knowledge of information security. This includes, but is not limited to:
Knowledge of identity and access management (IAM) concepts and common implementations, such as authentication factors and directory services.
Knowledge of cryptographic concepts and common implementations, such as Secure Sockets Layer/Transport Layer Security (SSL/TLS) and public key infrastructure (PKI).
Knowledge of computer networking concepts and implementations, such as the TCP/IP model and configuration of routers and switches.
Knowledge of common security technologies used to safeguard the enterprise, such as anti-malware solutions, firewalls, and VPNs.
You can obtain this level of knowledge by taking the CompTIA® Security+® (Exam SY0-501) course or by demonstrating this level of knowledge by passing the exam.
Lesson 1: Supporting IT Governance and Risk Management
Topic A: Identify the Importance of IT Governance and Risk Management
Topic B: Assess Risk
Topic C: Mitigate Risk
Topic D: Integrate Documentation into Risk Management
Lesson 2: Leveraging Collaboration to Support Security
Topic A: Facilitate Collaboration across Business Units
Topic B: Secure Communications and Collaboration Solutions
Lesson 3: Using Research and Analysis to Secure the Enterprise
Topic A: Determine Industry Trends and Their Effects on the Enterprise
Topic B: Analyze Scenarios to Secure the Enterprise
Lesson 4: Integrating Advanced Authentication and Authorization techniques
Topic A: Implement Authentication and Authorization Technologies
Topic B: Implement Advanced Identity and Access Management
Lesson 5: Implementing Cryptographic Techniques
Topic A: Select Cryptographic Techniques
Topic B: Implement Cryptography
Lesson 6: Implementing Security Controls for Hosts
Topic A: Select Host Hardware and Software
Topic B: Harden Hosts
Topic C: Virtualize Servers and Desktops
Topic D: Protect Boot Loaders
Lesson 7: Implementing Security Controls for Mobile Devices
Topic A: Implement Mobile Device Management
Topic B: Address Security and Privacy Concerns for Mobile Devices
Lesson 8: Implementing Network Security
Topic A: Plan Deployment of Network Security Components and Devices
Topic B: Plan Deployment of Network-Enabled Devices
Topic C: Implement Advanced Network Design
Topic D: Implement Network Security Controls
Lesson 9: Implementing Security in the Systems and Software Development Lifecycle
Topic A: Implement Security throughout the Technology Lifecycle
Topic B: Identify General Application Vulnerabilities
Topic C: Identify Web Application Vulnerabilities
Topic D: Implement Application Security Controls
Lesson 10: Integrating Assets in a Secure Enterprise Architecture
Topic A: Integrate Standards and Best Practices in Enterprise Security
Topic B: Select Technical Deployment Models
Topic C: Integrate Cloud-Augmented Security Services
Topic D: Secure the Design of the Enterprise Infrastructure
Topic E: Integrate Data Security in the Enterprise Architecture
Topic F: Integrate Enterprise Applications in a Secure Architecture
Lesson 11: Conducting Security Assessments
Topic A: Select Security Assessment Methods
Topic B: Perform Security Assessments with Appropriate Tools
Lesson 12: Responding to and Recovering from Incidents
Topic A: Prepare for Incident Response and Forensic Investigations
Topic B: Conduct Incident Response and Forensic Analysis
Appendix A: Taking the Exams
Appendix B: Mapping Course Content to CompTIA® Advanced Security Practitioner (CASP+®) Exam CAS-003
View outline in Word