back

CompTIA CySA+ (CS0-002)

CompTIA Cybersecurity Analyst25 H 4 M

Just you? Training a whole team? There's an ITProTV plan that fits.

Start Training Today
This course has a virtual lab
This course has a practice test
Episodes
Episodes
  • Threat and Vulnerability Management
    • Overview
    • Intelligence Sources
    • Indicator Management
    • Confidence Levels
    • Threat Classification
    • Threat Actors
    • Intelligence Cycle
    • Commodity Malware
    • Information Sharing and Analysis Centers
    • Attack Frameworks
    • Threat Research
    • Threat Modeling Methodologies
    • Threat Intelligence Sharing, Supported Functions
    • Vulnerability Identification and Validation
    • Vulnerability Remediation and Mitigation
    • Vulnerability Scanning Parameters and Criteria
    • Inhibitors to Remediation
    • Web App Scanners
    • Infrastructure Vulnerability Scanners
    • Software Assessment Tools and Techniques
    • Vulnerability Enumeration
    • Wireless Assessment Tools
    • Cloud Infrastructure Assessment Tools
    • Mobile Technology Threats
    • Premises and Vehicle Systems Threats
    • Controller System Threats
    • IoT and Embedded System Threats
    • CVSS Metrics
    • Cloud Deployment Model Threats
    • Cloud Service Model Threats
    • Other Cloud Service Threats
    • Mitigate Specific Attack Types
    • Mitigate Vulnerability Types
  • Software and Systems Security
    • Asset Tagging and Change Management
    • Network Architecture and Segmentation
    • Identity and Access Management
    • Virtual Desktop Infrastructure, Containerization
    • Honeypots and Active Defense
    • Cloud Access Security Broker
    • Certificate Management
    • Hardware Assurance
    • Software Assurance and Secure Coding
  • Security Operations and Monitoring
    • Trend Analysis
    • URL Analysis
    • DNS Analysis
    • Packet and Protocol Analysis
    • Flow Analysis
    • Endpoint Behavior Analysis
    • Malware Analysis
    • Log Review
    • Impact Analysis
    • SIEM Review
    • Email Analysis
    • File System Permissions
    • Blacklisting and Whitelisting
    • Firewall Configurations
    • Data Loss Prevention
    • Network Access Control
    • Blackholes and Sinkholes
    • Malware Signatures
    • Threat Hunting
    • Scripting
    • AI and Machine Learning
    • Continuous Integration and Deployment
  • Incident Response
    • Incident Response Communication
    • Incident Response Phases
    • Indicators of Compromise
    • Digital Forensics
  • Compliance and Assessment
    • Privacy vs. Security
    • Non-Technical Controls - The Basics
    • Non-Technical Controls - The Rest
    • Technical Controls - The Basics
    • Technical Controls - The Rest
    • What is Risk
    • How do we Calculate Risk
    • How do we Analyze Risk
    • How do we Prioritize, Communicate Risk
    • How do we Document and Train for Risk
    • Apply Risk Management to our Supply Chains
    • Controls
    • Policies and Procedures
    • Frameworks, Audits and Policy
    • IAM Policies and Procedures

Overview

5 M

itprotv course thumbnailitprotv course thumbnailitprotv course thumbnail
  • Episode Description
  • Transcript

Welcome to the CompTIA CySA+ series. This series is intended to explore the topics necessary to prepare for the CySA+ exam. Here we cover many computer security related concepts and tools, exploring their best practices and practical application. This includes threats, threat management, reconnaissance, and countermeasures, common vulnerabilities, penetration testing, incident response, security architectures, and common tool sets.

You're watching ITproTV. [MUSIC] >> Hello, ladies and gentleman. Thank you for tuning in. That's right, we're kicking off the CySA+ show, I'm gonna be your host for this journey. My name is Wes Brian and I've been teaching CompTIA certifications for quite a few years now, almost a decade and hold various CompTIA certifications. Now, to my right here is Mr. Dan Lowery. Dan, tell us a little bit about yourself. >> No problem. I'm Daniel Lowrie, I'll be your subject matter expert for the CySA+ series that we're kicking off today, and I hold various compTIA certifications, specifically in security, I hold the CySA+ and PenTest+ certifications, as well as other vendor certifications in security. I've been in it for a little over 20 years and recently have really focused my effort on security. So that's what is going to help you, I'm going to give that information to you for this series. >> All right, Dan. So I'm sitting there let me say I'm just stepping into the role of the viewer here. I'm sitting in front of that computer screen and I have just started watching the very first episode. What is something that I can expect to get out of it, right? What really is in it for me? >> Yeah, well, that's a great question, right, first off. And the thing is that this is going to give you an all around very good general understanding of what a cybersecurity analyst does throughout the day. What are their job requirements or roles technologies they need to be familiar with and be able to implement and understand, we're gonna get into a lot of really cool technologies that analysts use throughout the day. And at the end of the day, you're gonna have the knowledge that you need to pass a certification exam. >> All right, now I know that on the rung of CompTIA certifications, because I teach A+ which is considered one more of the entry levels, is there any requisite knowledge? Is there anything, like what should I come to the table, because I can imagine on a higher level certification, we have some assumed knowledge. >> Yeah, good question and that is absolutely correct. You're gonna need to know some things about computers. You can't just walk in off the street and say I'm gonna get CySA+. CySA is an intermediate level exam, so they have a lot of basic computing, system administration, network understanding and even security concepts, before you walk in the door and try to do some CySA, right? So make sure that you have that knowledge, if you don't, no problem. We have all that in our library for you so you can check that stuff out. And then once you get up to speed you can come right back here and check out CySA+ and then go for that certification. >> Very good. Now I also know that when we are teaching, or instructing, if you will, when it comes to CompTIA courses, how it's structured, a lot of times it's based on the exam objectives. Is that a little bit of how this is gonna be structured? >> Yeah, that's exactly how it's gonna be structured. They have broken down the exam into five different exam objectives. If we like we can jump into my computer, we can start learning a little more about the certification, and then we'll move into the process of that. So here we are, I'm on CompTIA's website. There is the URL for that comptia.org/certifications/cybersecurity-- analyst, phew, that's a mouthful. But as we move down, we start to see what the certification is about, about the exam, just a bit. And then we have the skills that we're going to learn. These are the domains for the CySA+ exam. So threat and vulnerability management, security operations and monitoring, software and system security, incident response, that's a big one. Compliance and assessment another really difficult one, but important for this exam. So there's your domains. This is obviously going to be broke down in more than five episodes, we're going to take each bit of that, tease out all the sub objectives that come with it. I do have a copy of the exam objectives that are right here, which you can also download from their website. You just have to fill out a form and you'll get this lovely PDF which will show you that. And I think it's a little oversized here for you, but it's the same basic information. There's the domains as well, also giving you the percentage of the exam that those domains will take up. So you can weight your importance on those things, and of course, all this subtopics. So I won't read this out for you, I'll let you go ahead and download that for yourself. And then we'll move down into some more exam details, specifically, length of test, 165 minutes, it's a multiple choice, performance-based, maximum of 85 questions, you need a passing score of 750 to get that cert. Other good things about this is like, where can you get the test at? Well, Pearson VUE are providers, so you can click those links and go there. And then there's the price, $359 will get you a chance to sit at the seat and walk away with a certification. So hopefully that helps you out there. >> All right Dan, I'll tell you, I know why I'm excited to be a part of this certification journey and that's because, well, who doesn't like security, right? That's important and I know that it's something that I enjoy. What are you looking forward to? >> I'm looking forward to this because this is the latest and greatest for defensive type of security. And they've done a really good job with this exam and the information that lies within, so it's gonna be a lot of fun to go through those technologies and concepts and pass that knowledge on along to you. >> All right ladies and gentlemen, we know that we're looking forward to having you join us. So if this sounds like a certification exam that you want to tackle, stick around because, well, we're just kicking this journey off, and there's a lot more to come. >> Thank you for watching IT pro TV. [MUSIC]