Schedule your class   Schedule >

CompTIA Advanced Security Practitioner (CASP)
Exam CAS - 003dod approved

Course length:  5-days

Certification Newsletter 

Course Description

 

 

Information security is a crucial field in the world of business. You have experience in this field, and now you're ready to take that experience to the next level. In this course, you will expand on your knowledge of information security to apply more advanced principles that will keep your organization safe from the many ways it can be threatened. You'll apply critical thinking and judgment across a broad spectrum of security disciplines to propose and implement sustainable security solutions that map to organizational strategies; translate business needs into security requirements; support IT governance and risk management; architect security for hosts, networks, and software; respond to security incidents; and more.

 

Today's IT climate demands individuals with demonstrable skills, and the information and activities in this course can help you develop the skill set you need to confidently perform your duties as an advanced security practitioner.

 

Course Objectives:

 

In this course, you will analyze and apply advanced security concepts, principles, and implementations that contribute to enterprise-level security.

 

You will:

  • Support IT governance in the enterprise with an emphasis on managing risk.
  • Leverage collaboration tools and technology to support enterprise security.
  • Use research and analysis to secure the enterprise.
  • Integrate advanced authentication and authorization techniques.
  • Implement cryptographic techniques.
  • Implement security controls for hosts.
  • Implement security controls for mobile devices.
  • Implement network security.
  • Implement security in the systems and software development lifecycle.
  • Integrate hosts, storage, networks, applications, virtual environments, and cloud technologies in a secure enterprise architecture.
  • Conduct security assessments.
  • Respond to and recover from security incidents.

Target Student:

 

This course is designed for IT professionals in the cybersecurity industry whose primary job responsibility is to secure complex enterprise environments. The target student should have real-world experience with the technical administration of these enterprise environments.

 

This course is also designed for students who are seeking the CompTIA Advanced Security Practitioner (CASP) certification and who want to prepare for Exam CAS-003. Students seeking CASP certification should have at least 10 years of experience in IT management, with at least 5 years of hands-on technical security experience.

 

Prerequisites:

 

To be fit for this advanced course, you should have at least a foundational knowledge of information security. This includes, but is not limited to:

  • Knowledge of identity and access management (IAM) concepts and common implementations, such as authentication factors and directory services.
  • Knowledge of cryptographic concepts and common implementations, such as Secure Sockets Layer/Transport Layer Security (SSL/TLS) and public key infrastructure (PKI).
  • Knowledge of computer networking concepts and implementations, such as the TCP/IP model and configuration of routers and switches.
  • Knowledge of common security technologies used to safeguard the enterprise, such as anti-malware solutions, firewalls, and VPNs.You can obtain this level of knowledge by taking the CompTIA® Security+ (SY0-501) course, or by demonstrating this level of knowledge by passing the exam.

Course Content

 

Lesson 1: Supporting IT Governance and Risk Management

 

 Topic A: Identify the Importance of IT Governance and Risk Management

 Topic B: Assess Risk

 Topic C: Mitigate Risk

 Topic D: Integrate Documentation into Risk Management

 

Lesson 2: Leveraging Collaboration to Support Security

 Topic A: Facilitate Collaboration Across Business Units

 Topic B: Secure Communications and Collaboration Solutions

 

Lesson 3: Using Research and Analysis to Secure the Enterprise

 Topic A: Determine Industry Trends and Their Effects on the Enterprise

 Topic B: Analyze Scenarios to Secure the Enterprise

 

Lesson 4: Integrating Advanced Authentication and Authorization Techniques

 Topic A: Implement Authentication and Authorization Technologies

 Topic B: Implement Advanced Identity and Access Management

 

Lesson 5: Implementing Cryptographic Techniques

 Topic A: Select Cryptographic Techniques

 Topic B: Implement Cryptography

 

Lesson 6: Implementing Security Controls for Hosts

 Topic A: Select Host Hardware and Software

 Topic B: Harden Hosts

 Topic C: Virtualize Servers and Desktops

 Topic D: Protect Boot Loaders

 

Lesson 7: Implementing Security Controls for Mobile Devices

 Topic A: Implement Mobile Device Management

 Topic B: Address Security and Privacy Concerns for Mobile Devices

 

Lesson 8: Implementing Network Security

 Topic A: Plan Deployment of Network Security Components and Devices

 Topic B: Plan Deployment of Network-Enabled Devices

 Topic C: Implement Advanced Network Design

 Topic D: Implement Network Security Controls

 

Lesson 9: Implementing Security in the Systems and Software Development Lifecycle

 Topic A: Implement Security Throughout the Technology Lifecycle

 Topic B: Identify General Application Vulnerabilities

 Topic C: Identify Web Application Vulnerabilities

 Topic D: Implement Application Security Controls

 

Lesson 10: Integrating Assets in a Secure Enterprise Architecture

 Topic A: Integrate Standards and Best Practices in Enterprise Security

 Topic B: Select Technical Deployment Models

 Topic C: Integrate Cloud-Augmented Security Services

 Topic D: Secure the Design of the Enterprise Infrastructure

 Topic E: Integrate Data Security in the Enterprise Architecture

 Topic F: Integrate Enterprise Applications in a Secure Architecture

 

Lesson 11: Conducting Security Assessments

 Topic A: Select Security Assessment Methods

 Topic B: Perform Security Assessments with Appropriate Tools

 

Lesson 12: Responding to and Recovering from Incidents

 Topic A: Prepare for Incident Response and Forensic Investigations

 Topic B: Conduct Incident Response and Forensic Analysis

 

   

Schedule your class   Schedule >