CompTIA Advanced Security Practitioner (CASP+)

Course Objectives
In this course, you will analyze and apply advanced security concepts, principles, and implementations that contribute to enterprise-level security.

You will:
-Support IT governance in the enterprise with an emphasis on managing risk.
-Leverage collaboration tools and technology to support enterprise security.
-Use research and analysis to secure the enterprise.
-Integrate advanced authentication and authorization techniques.
-Implement cryptographic techniques.
-Implement security controls for hosts.
-Implement security controls for mobile devices.
-Implement network security.
-Implement security in the systems and software development lifecycle.
-Integrate hosts, storage, networks, applications, virtual environments, and cloud technologies in a secure enterprise architecture.
-Conduct security assessments.
-Respond to and recover from security incidents.

Target Student
This course is designed for IT professionals in the cybersecurity industry whose primary job responsibility is to secure complex enterprise environments. The target student should have real-world experience with the technical administration of these enterprise environments.

This course is also designed for students who are seeking the CompTIA® Advanced Security Practitioner (CASP+®) certification and who want to prepare for Exam CAS-004. Students seeking CASP+ certification should have at least 10 years of experience in IT management, with at least 5 years of hands-on technical security experience.

Prerequisites
To be fit for this advanced course, you should have at least a foundational knowledge of information security. This includes, but is not limited to:
-Knowledge of identity and access management (IAM) concepts and common implementations, such as authentication factors and directory services.
-Knowledge of cryptographic concepts and common implementations, such as Secure Sockets Layer/Transport Layer Security (SSL/TLS) and public key infrastructure (PKI).
-Knowledge of computer networking concepts and implementations, such as the TCP/IP model and configuration of routers and switches.
-Knowledge of common security technologies used to safeguard the enterprise, such as anti-malware solutions, firewalls, and VPNs.
-You can obtain this level of knowledge by taking the CompTIA® Security+® (Exam SY0-601) course or by demonstrating this level of knowledge by passing the exam.

Course Outline

Lesson 1: Perform Risk Management Activities

Lesson 2: Summarizing Governance & Compliance Strategies

Lesson 3: Implementing Business Continuity & Disaster Recovery

Lesson 4: Identifying Infrastructure Services

Lesson 5: Performing Software Integration

Lesson 6: Explain Virtualization, Cloud and Emerging Technology

Lesson 7: Exploring Secure Configurations and System Hardening

Lesson 8: Understanding Security Considerations of Cloud and Specialized Platforms

Lesson 9: Implementing Cryptography

Lesson 10: Implementing Public Key Infrastructure (PKI)

Lesson 11: Understanding Threat and Vulnerability Management Activities

Lesson 12: Developing Incident Response Capabilities