Course Code: 19120

CompTIA Network+ / Security +

Class Dates:
10/18/2021
11/8/2021
12/6/2021
9/27/2021
Length:
10 Days
Cost:
$4895
Class Time:
Technology:
Server
Delivery:
Instructor-Led Training, Virtual Instructor-Led Training

Overview

  • Course Overview
  • The CompTIA Network+ certification ensures that the successful candidate has the important knowledge and skills necessary to manage, maintain, troubleshoot, install, operate and configure basic network infrastructure, describe networking technologies, basic design principles, and adhere to wiring standards and use testing tools.

    CompTIA Security+ is the primary course you will need to take if your job responsibilities include securing network services, network devices, and network traffic. It is also the main course you will take to prepare for the CompTIA Security+ examination. In this course, you'll build on your knowledge and professional experience with computer hardware, operating systems, and networks as you acquire the specific skills required to implement basic security services on any type of computer network.
  • Audience
  • Jobs that use CompTIA Security+
    •Security Administrator
    •Systems Administrator
    •Helpdesk Manager / Analyst
    •Network / Cloud Engineer
    •Security Engineer / Analyst
    •DevOps / Software Developer
    •IT Auditors
    •IT Project Manager

Prerequisites

Course Details

  • 1.0 Networking Concepts
  • Explain the purposes and uses of ports and protocols.
  • Protocols and ports, Protocol types, Connection-oriented vs. connectionless
  • Explain devices, applications, protocols and services at their appropriate OSI layers.
  • Layer 1 - Physical, Layer 2 - Data link, Layer 3 - Network, Layer 4 - Transport
  • Layer 5 - Session, Layer 6 - Presentation, Layer 7 - Application
  • Explain the concepts and characteristics of routing and switching.
  • Properties of network traffic, •Segmentation and interface properties, Routing, IPv6 concepts
  • Performance concepts, NAT/PAT, Port forwarding
  • Access control list, Distributed switching,
  • Packet-switched vs. circuit-switched network
  • Software-defined networking
  • 1.0 Networking Concepts.
  • Given a scenario, configure the appropriate IP addressing components
  • Private vs. public, Loopback and reserved, Default gateway
  • Virtual IP, Subnet mask, Subnetting, Address Assignments
  • Compare and contrast the characteristics of network topologies, types and technologies.
  • Wired topologies, Wireless topologies, Types
  • Given a scenario, implement the appropriate wireless technologies and configurations.
  • 802.11 standards, Cellular, Frequencies
  • Speed and distance requirements, Channel bandwidth, Channel Bonding
  • MIMO/MU-MIMO, Unidirectional/omnidirectional, Site Surveys
  • Summarize cloud concepts and their purposes.
  • Types of services, Cloud delivery models, Connectivity methods, Security implications/considerations
  • Relationship between local and cloud resources
  • 1.0 Networking Concepts..
  • Explain the functions of network services.
  • DNS service, DHCP service, NTP, IPAM
  • 2.0 Infrastructure
  • Given a scenario, deploy the appropriate cabling solution.
  • Media types, Plenum vs. PVC, Connector types, Transceivers, Termination points
  • Copper cable standards, Copper termination standards, Ethernet deployment standards
  • Given a scenario, determine the appropriate placement of networking devices on a network and install/configure them.
  • Firewall, Router, Switch, Hub, Bridge, Modems, Wireless access point
  • Media converter, Wirless range extender, VoIP endpoint
  • Explain the purposes and use cases for advanced networking devices.
  • •Multilayer switch, Wireless controller, Load balancer, IDS/IPS, Proxy server
  • VPN concentrator, AAA/Radius server, UTM appliance
  • NGFW/Layer 7 firewall, VoIP PBX, VoIP gateway, Content filter
  • Explain the purposes of virtualization and network storage technologies.
  • Virtual networking components, Network storage types, Connection type, Jumbo frame
  • 2.0 Infrastructure.
  • Compare and contrast WAN technologies.
  • Service type, transmission mediums, characteristics of service, Termination
  • 3.0 Network Operations
  • Given a scenario, use appropriate documentation and diagrams to manage the network.
  • Diagram symbols, Standard operating procedures / work instructions
  • Logical vs. physical diamgrams, Rack diagrams, Change management documentation
  • Wiring and port locations, IDF/MDF documentation, Labeling, Network configuration and performance baselines
  • Inventory management.
  • Compare and contrast business continuity and disaster recovery concepts.
  • Availability concepts, Recovery, MTTR, MTBF, SLA requirements
  • Explain common scanning, monitoring and patching processes and summarize their expected outputs.
  • Processes, Event management, SNMP monitors, Metrics
  • Given a scenario, use remote access methods.
  • VPN, RDP, SSH, VNC, Telnet, HTTPS/management URL, Remote file access, Out -of-band management
  • 3.0 Network Operations.
  • Identify policies and best practices
  • Privileged user agreement, Password policy, On-boarding/off-boarding procedures, Licensing restrictions
  • International export controls, Data loss prevention, Remote access policies, incident response policies,
  • BYOD, AUP, NDA, System life cycle, Safety procedures and policies
  • 4.0 NETWORK SECURITY
  • Summarize the purposes of physical security devices
  • Detection, Prevention
  • Explain authentication and access controls.
  • Authorization, authentication and accounting, Multifactorauthentication, Access control.
  • Given a scenario, secure a basic wireless network.
  • WPA, WPA2, TKIP-RC4, CCMP-AES, Authentication and authorization, Geofencing.
  • Summarize common networking attacks.
  • DoS, Social engineering, Insider threat, Logic bomb, Rogue access point
  • Evil twin, War-driving, Phishing, Ransomware, DNS poisoning, ARP poisoning, Spoofing
  • Deauthentication, Brute force, VLAN hopping, Main-in the middel, Exploits vs. vulnerabilities
  • Given a scenario, implement network device hardening.
  • Changing default credentials, Avoiding common passwords, Upgrading firmware, Patching and updates, File hasing, Disabling unnecessarry services, Using secure protcols, Generating new keys,
  • 4.0 NETWORK SECURITY.
  • Disabling unused ports
  • Explain common mitigation techniques and their purposes.
  • Signature management, Device hardening, Change native VLAN, Switch port protection
  • Network segmentation, Privileged user account, File integrity monitoring, Role separation,
  • Restricting access via ACLs, Honeypot/honeynet, Penetration testing
  • 5.0 Network Troubleshooting and Tools
  • Explain the network troubleshooting methodology.
  • Identify the problem, Establish a therory of probable cause, Test the theory to determine the cause.
  • •Establish a plan of action to resolve the problem and identify potential effects,•Implement the solution or escalate as necessary
  • •Verify full system functionality and, if applicable, implement preventive measures, Document findings, actions, and outcomes
  • Given a scenario, use the appropriate tool.
  • Hardware tools, Software tools.
  • iven a scenario, troubleshoot common wired connectivity and performance issues.
  • Attenuation, Latency, Jitter, Crosstalk, EMI, Open/short, Incorrect pin-out
  • Incorrect cable type, Bad port, Transceiver mismatch, TX/RX reverse, Duplex/speed mismatch
  • Damaged cables, Ben pins, Bottlenecks, VLAN mismatch, Network connection LED status indicators
  • Given a scenario, troubleshoot common wireless connectivity and performance issues.
  • Names not resolving, Incorrect gateway, Incorrect netmask, Duplicate IP addresses, Duplicate MAC addresses, Expired IP address
  • 5.0 Network Troubleshooting and Tools.
  • Rogue DHCP server, Untrestued SSL certificate, Incorrect time, Exhausted DHCP scope
  • Blocked TCP/UDP ports, Incorrect host-based firewall settings, Incorrect ACL settings
  • Unresponsive service, Hardware failure.
  • Security+ certification - 1.0 Threats, Attacks, and Vulnerabilities
  • Phishing, Smishing, Vishing, Spam, Spam over instant messaging (SPIM)
  • Spear phishing, Dumpster diving, Shoulder surfing, Pharming, Tailgating, Eliciting information, Whaling
  • Prepending, Identity fraud, Invoice scams, Credential harvesting, Reconnaissance, Hoax, Impersonation, Watering hole attack
  • Typosquatting, Pretexting, Influence campaigns, Principles (reasons for effectiveness)
  • Given a scenario, analyze potential indicators to determine the type of attack.
  • Malware, Password attacks, Physical attacks, Adversarial artificial intelligence (AI) Supply -chain attacks
  • Cloud-based vs. on-premises attacks, Cryptographic attacks
  • Given a scenario, analyze potential indicators associated with application attacks.
  • Privilege escalation, Cross-site scripting, Injections, Pointer/object dereference, Directory traversal
  • Buffer overflows, Race conditions, Error handling, Improper input handling, Replay attack, Integer overflow, Request forgeries
  • Application programming interface (API) attacks, Resource exhaustion
  • Memory leak, Secure Sockets Layer (SSL) stripping, Driver manipulation, Pass the hash
  • 1.0 Threats, Attacks, and Vulnerabilities
  • Given a scenario, analyze potential indicators associated with network attacks.
  • Wireless, On-path attack, Layer 2 attacks, Domain name system (DNS), Distributed denial of service (DDoS), Malicious code or script execution
  • Explain different threat actors, vectors, and intelligence sources.
  • Actors and threats, Attributes of actors, Vectors, Threat intelligence sources, Research sources
  • Explain the security concerns associated with various types of vulnerabilities.
  • •Cloud-based vs. on-premises vulnerabilities, Zero-day, Weak configurations, Third-party risks,•Improper or weak patch management, Legacy platforms, Impacts
  • Summarize the techniques used in security assessments.
  • Threat hunting, Vulnerability scans, •Syslog/Security information and event management (SIEM),•Security orchestration, automation, and response (SOAR)
  • Explain the techniques used in penetration testing.
  • Penetration testing, Passive and active reconnaissance, Exercise types
  • 2.0 Architecture and Design
  • Explain the importance of security concepts in an enterprise environment.
  • Configuration management, Data sovereignty, Data protection, Geographical considerations, Response and recovery controls
  • Secure Sockets Layer (SSL)/Transport Layer Security (TLS) inspection, Hashing, API considerations, Site resiliency, Deception and disruption
  • Summarize virtualization and cloud computing concepts.
  • Cloud models, Cloud service providers,•Managed service provider (MSP)/ managed security service provider (MSSP), On-premises vs. off-premises
  • Fog computing, Edge computing, Thin client, Containers, Microservices/API, Infrastructure as code
  • Serverless architecture, Services Integration, Resource policies, Transit gateway, Virtualization
  • Summarize secure application development, deployment, and automation concepts.
  • Environment, Provisioning and deprovisioning, Integrity measurement, Secure coding techniques
  • •Open Web Application Security Project (OWASP), Software diversity, Automation/scripting, Elasticity, Scalability, Version control
  • Summarize authentication and authorization design concepts.
  • Authentication methods, Biometrics, •Multifactor authentication (MFA) factors and attributes, •Authentication, authorization, and accounting (AAA), •Cloud vs. on-premises requirements
  • 2.0 Architecture and Design.
  • Given a scenario, implement cybersecurity resilience.
  • Redundancy, Replication, On-premises vs. cloud, Backup types
  • Non-persistence, High availability, Restoration order, Diversity
  • Explain the security implications of embedded and specialized systems.
  • Embedded systems, •Supervisory control and data acquisition (SCADA)/industrial control system (ICS), Internet of Things (IoT)
  • Specialized, Voice over IP (VoIP), Heating, ventilation, air conditioning (HVAC), Drones, Multifunction printer (MFP),
  • Real-time operating system (RTOS), Surveillance systems, System on chip (SoC), Communication considerations , Constraints
  • Explain the importance of physical security controls.
  • Bollards/barricades, Access control vestibules, Badges, Alarms, Signage, Cameras, Closed-circuit television (CCTV), Industrial camouflage, Personnel, Locks, USB data blocker, Lighting, Fencing,
  • Fire suppression, Sensors, Drones, Visitor logs, Faraday cages, Air gap,•Screened subnet (previously known as demilitarized zone), Protected cable distribution, Secure areas, Secure data destruction
  • Summarize the basics of cryptographic concepts, Digital signatures , Key length, Salting, Hashing, Key exchange, Elliptic-curve cryptography
  • Perfect forward secrecy, Perfect forward secrecy, Quantum, Post-quantum, Ephemeral, Modes of operation, Blockchain, Cipher suites, Symmetric vs. asymmetric, Lightweight cryptography, Steganography,
  • 2.0 Architecture and Design..
  • Homomorphic encryption, Common use cases, Limitations
  • 3.0 Implementation
  • Given a scenario, implement secure protocols.
  • Protocols, Use cases
  • Given a scenario, implement host or application security solutions.
  • Endpoint protection, Boot integrity, Database, Application security, Hardening,•Self-encrypting drive (SED)/ full-disk encryption (FDE), Hardware root of trust , Trusted Platform Module (TPM),
  • Sandboxing
  • Given a scenario, implement secure network designs.
  • Load balancing, Network segmentation, Virtual private network (VPN), DNS,•Network access control (NAC), Out-of-band management, Port Security, Network appliances
  • Access control list (ACL), Route security, Quality of service (Qos), Implications of Ipv6, Port spanning/port mirroring
  • Monitoring services, File integrity monitors
  • Given a scenario, install and configure wireless security settings.
  • Crytogrphic protocols, Authentication protocols, Methods, Installation considerations
  • Given a scenario, implement secure mobile solutions
  • 3.0 Implementation.
  • Connection methods and receivers, Mobile device management (MDM), •Mobile devices, Enforcement and monitoring , Deployment models
  • Given a scenario, apply cybersecurity solutions to the cloud.
  • Cloud security controls, Solutions, Cloud native controls vs. third-party solutions.
  • Given a scenario, implement identity and account management controls.
  • Given a scenario, implement public key infrastructure.
  • •Public key infrastructure (PKI), Types of certificates, Certificate formats, Concepts
  • 4.0 Operations and Incident Response
  • Given a scenario, use the appropriate tool to assess organizational security.
  • •Network reconnaissance and discovery, File manipulation, •Shell and script environments, Packet capture and replay, Forensics, Exploitation frameworks, Password crackers, Data santization
  • Summarize the importance of policies, processes, and procedures for incident response.
  • Incident response plans, Incidetn response process, Exercises, Attack frameworks
  • Stakeholder Management, Communication plan, Disaster recovery plan, Disaster recovery plan, Business continuity plan, Continuity of operations planning (COOP) Incident response team,
  • Retention policies
  • Given an incident, utilize appropriate data sources to support an investigation.
  • Vulnerability scan output, SIEM dashboards, Log files, syslog/rsyslog/syslog-ng
  • journalctl, NXlog, Bandwitdth monitors, Metadata, Netflow/sFlow, Protocol analyzer output
  • Given an incident, apply mitigation techniques or controls to secure an environment
  • Reconfigure endpoint security solutions, Configuration changes, Isolation, Containment, Segmentation, SOAR
  • Explain the key aspects of digital forensics.
  • 4.0 Operations and Incident Response.
  • •Documentation/evidence, Acquisition, On-premises vs. cloud, Integrity, Preservation, E-discovery, Data recovery,m Non-repudiation
  • •Strategic intelligence/ counterintelligence
  • 5.0 Governance, Risk, and Compliance
  • Compare and contrast various types of controls.
  • Category, Control Type
  • Explain the importance of applicable regulations, standards, or frameworks that impact organizational security posture.
  • Regulations, standards, and legislation, Key frameworks
  • •Benchmarks /secure configuration guides
  • Explain the importance of policies to organizational security.
  • Personnel, Diversity of training techniques, Third-Party risk management, data, Creditial policies, Organizational policies
  • Summarize risk management processes and concepts.
  • Risk types, Risk management strategies, Risk analysis, Disaster, Business impact analysis
  • Explain privacy and sensitive data concepts in relation to security
  • •Organizational consequences of privacy and data breaches,Notifications of breaches , Data types,Privacy enhancing technologies , Roles and responsibilities
  • Information life cycle, Impact assessment, Terms of agreement, Privacy notice.