back

CompTIA CySA+ (CS0-001)

CompTIA Cybersecurity Analyst

25 hours 37 minutes

ITProTV partner logo
This course has a virtual lab
This course has a practice test
Episodes
Episodes
  • Threat Management
    • Overview
    • Reconnaissance: Tools
    • Reconnaissance: Tools Part 2
    • Reconnaissance: Tools Part 3
    • Reconnaissance: Tools Part 4
    • Reconnaissance: Techniques
    • Reconnaissance: Techniques Part 2
    • Reconnaissance: Techniques Part 3
    • Reconnaissance: Techniques Part 4
    • Data Correlation and Analytics
    • Reconnaissance: Interpreting Results
    • Countermeasures: Network Segmentation
    • Countermeasures: Honeypots and Sinkholes
    • Countermeasures: System Hardening and NAC
    • Security Practices: Penetration Testing
    • Security Practices: Reverse Engineering
    • Security Practices: Training and Risk Evaluation
  • Vulnerability Management
    • Vulnerability Management Process
    • Vulnerability Management: Scan Configuration
    • Vulnerability Management CVSS
    • Vulnerability Management: CVSS Part 2
    • Vulnerability Management: Remediation
    • Scan Results Verification
    • Common Vulnerabilities
    • Common Vulnerabilities Part 2
    • Common Vulnerabilities Part 3
    • Common Vulnerabilities Part 4
    • Common Vulnerabilities Part 5
  • Cyber Incident Response
    • Threat Classification
    • Severity and Prioritization
    • Forensics Toolkit
    • Incident Response Plan
    • Forensic Suites and Utilities
    • Forensic Suites and Utilities Part 2
    • Forensic Suites and Utilities Part 3
    • Forensic Suites and Utilities Part 4
    • CSIRT Roles and Communication
    • Indicator of Compromise: Network Symptoms
    • Indicators of Compromise: Host and App Symptoms
    • Recovery and Post-Incident Response
    • Recovery and Post-Incident Response Part 2
  • Security Architecture and Toolsets
    • Cybersecurity Frameworks
    • Cybersecurity Frameworks Part 2
    • Policies, Controls and Procedures
    • Policies, Controls and Procedures Part 2
    • Identity and Access Managemnt
    • Identity and Access Management Part 2
    • Compensating Controls and Architecture
    • Compensating Controls and Architecture Part 2
    • Compensating Controls and Architecture Part 3
    • Security Tools and Technologies
    • Security Tools and Technologies Part 2
    • Security Tools and Technologies Part 3
    • Software Development Security
    • Software Development Security Part 2

Overview 6 minutes

Welcome to the CompTIA CySA+ series. This series is intended to explore the topics necessary to prepare for the CySA+ exam. Here we cover many computer security related concepts and tools, exploring their best practices and practical application. This includes threats, threat management, reconnaissance, and countermeasures, common vulnerabilities, penetration testing, incident response, security architectures, and common tool sets.

  • Transcript

[MUSIC] Hello, and thank you for watching ITProTV. With us is Daniel Lowrie, and we're talking about CySA+. Daniel, can you tell us what this course is all about? >> I sure can. Today, we're gonna talk about CySA+, which is the CompTIA's cybersecurity analyst plus certification, and it is a certification based around security, right, because it's part of cybersecurity analyst, right, and we're going to talk about a lot of interesting things when it comes to that. It gives you a couple of domains that are inside of that, that reasearch out to things like incident response, and threat management, and being able to analyze and work with the different type of security issues that you might encounter as a cybersecurity analyst. I wanna cover that from soup to nuts, and that's what they attempt to do with the CySA+. >> So who is this show targeted towards? >> This show is targeted toward people that actually have some experience with systems administration, network administration. It is not for the brand spanking new green horn out there that just gotten past their A+ certification. You must have a bit of experience with some security working with different networking tools, operating system tools, have some familiarity there. So you do have to have some experience in the field, not required per say, if you were motivated, you could probably study all of these different things and pass the exam, but it sure does help, and it is geared toward people that have been out there working in the field as a system and/or network administrator, maybe even some security responsibilities as well to go along with that, and then to prove that set of knowledge you go and you take the CySA+. >> All right, so I was just going to say, is there a certification involved with this exam? >> There is. This is no tech skill. This is an actual cert, and you will get a lovely minted piece of paper that has your name on it, says that you have passed successfully, and you are certified in these technologies and techniques. If we want to, we can actually go to CompTIA's website, which I've already pulled up on my computer, so we can take a look at some of the details that they give for us about the exam itself. So, let's check that out. Let's go to my computer, here is the opening page, and all you had to do is go to certification.comptia.org/certifications/- cybersecurityanalystoverview, and there we are right there, well I guess you can read that, that's just cybersecurityanalyst. Once we get there we get plenty of information about this, giving the overview, which is right here, why is it different, it does have this little blurb about the CySA+, so if you were studying for CySA+, this is the same exam. They've had some legal issues that they've had to rename and rebrand. Not a big deal. It's just the same product, a different coat of paint, right? So a different name on it, not a big deal. Asked why is it's different, the difference is the only intermediate high stakes cybersecurity analyst certification with performance-based questions covering security analytics, intrusion detection, and response. High stakes exam are proctored by Pearson VUE, that's an interesting thing, a little factoid you need to know. So if you want to sign up for the exam you'll be taking it through Pearson VUE. That's where you'll have to go to actually get signed up, all right? The testing centers and the CySA+ is the is the most up to date security analyst certification that covers advanced persistent threats in a post-2014 server security environment. There's their rundown, giving us more information about the exam, some certification pathways, this is actually a really interesting infographic right here. So, it's telling you about core skills certification. Here we start off with IT fundamentals, moving on to A+, and then to Network+, and to Security+, to show you where this falls in line in the pathway to CASP, which is advanced, and then probably on to something like CISSP after that. But here you see in the intermediate scope you have PenTest+ and CySA+. So where PenTest+ is geared toward things like red teaming and attack, trying to PenTesters, that's where they will wanna go if you were on the blue team defender systems, that's what you would want that CySA+, so that's where we're looking to get into cybersecurity. As a defender, I need to be able to short my systems, so CySA+ is a great exam for that test the skills or learn new skills that you need to know be successful in that arena. Let's go ahead and zoom back out, and we'll keep scrolling down. What skills will you learn? Threat management. All right. Apply environment reconnaissance techniques using appropriate tools, analyzing results, and implementing recommended responses. We have vulnerability management. Implement vulnerability management processes and analyze the results of vulnerability scan, secure architecture and toolsets, these are the different things that we are going to do and employ to make sure that our systems are secure, even working through the software development lifecycle, well I'm going to secure coding best practices. Cyber incident responses is if the worst does happen how do we handle the situation? They want to make sure that you're prepared for that, so they add cyber incident response as one of the skills that you will learn. All right, then some of the organizations that contribute to the development of CySA, Northrop Grumman, Ricoh, which makes printers. Target, I'm sure that they were quick to jump on the bandwagon after their data breach, to say, you know what, cybersecurity is an important thing, we should probably do something with that, and of course, Dell, LPI. Jobs that use CompTIA, CySA+: IT Security Analyst. So, if you’re looking at job postings, these are the types of job listing you would look for if you are successful in obtaining the CySA+. So, IT security analyst, vulnerability analyst, threat intelligence analyst, cybersecurity analysts, secure operations center, or SOC analysts, and cybersecurity specialist and security engineer. Those will be all the types of jobs you wanna look for. That is the basic rundown though of what you can expect to learn and be tested on when it comes to CySA+. >> Thanks Daniel. Now, if CySA+ sounds like something you might be interested in, and it sure should be, make sure you watch every single episode of CySA+ in our course library. Thank you for watching ITProTV, we are binge worthy, thanks. [MUSIC]

Just you? Training a whole team? There's an ITProTV plan that fits.

With more than 4,000 hours of engaging video training for IT professionals, you'll find the courses you and your team need to stay current and get the latest certifications.