Course: CompTIA Cybersecurity Analyst+: Software Development Security (exam CS0-002)

Enhancing an organization's security posture requires security technicians to be aware of the latest security threats from a variety of sources. This course can be used in preparation for the CompTIA Cybersecurity Analyst (CySA+) Certification Exam CS0-002.

• Identifying and prioritizing risks allows organizations to focus

• resources where they are most needed. Business continuity requires
• upfront planning to secure IT systems and data. Reviewing incident
• responses helps build better response plans to better handle future
• incidents. In this course, you'll learn about risk management,
• registrar, and treatments, as well as disaster recovery, high
• availability, and cybersecurity insurance. You'll also learn about
• post incident activities, cloud storage replication, backing up to
• the cloud, system and data recovery, and database replicas as you
• prepare the CompTIA Cybersecurity Analyst (CySA+) Certification
• Exam CS0-002.

• Understanding how malicious users execute attacks allows

• technicians to better protect assets against these threats. In this
• course, you'll learn about reconnaissance and Wi-Fi
• vulnerabilities, attacks, and tools. You'll examine various attack
• types, including injection overflow, cross-site scripting, XML,
• DoS, ARP poisoning, and password. Finally, you'll learn about web
• browser compromise, the OWASP Top 10, using OWASP ZAP to test web
• application security, and using John the Ripper to crack user
• passwords. This course can be used in preparation for the CompTIA
• Cybersecurity Analyst (CySA+) certification exam CS0-002.

• Social engineering is used by malicious users to trick

• unsuspecting victims into divulging sensitive information as well
• as to propagate malware. In this course, you'll learn about various
• types of malware and botnets and see social engineering in action.
• You'll also examine ransomware, reverse shells, Internet scams, and
• endpoint security. This course can be used in preparation for the
• CompTIA Cybersecurity Analyst (CySA+) Certification Exam
• CS0-002.

• Cryptography is designed to protect data at rest and in transit.

• In this course, you'll learn about PKI hierarchy, how cryptography
• protects sensitive data, and how to protect data at rest using UFS
• and BitLocker and on Linux and cloud storage. In addition, you'll
• examine hashing, including how to generate file hashes for Windows
• and Linux. Finally, you'll earn about using SSL and TLS to secure
• network traffic, cloud CA deployment, and certificate issuance.
• This course can be used in preparation for the CompTIA
• Cybersecurity Analyst (CySA+) Certification Exam CS0-002.

• Securing hardware includes applying firmware updates and

• configuring devices on isolated networks. In this course, you'll
• learn about mobile device security, IoT security, and vulnerable
• device lists. You'll explore physical security and the security
• risks presented by drones and vehicles. You'll move on to examine
• how SCADA is used for industrial device networks, how to recognize
• BIOS and UEFI security settings, how self encrypting drives can
• protect data at rest, and how hardware security modules are used
• for encryption offloading and cryptographic secret storage. This
• course can be used in preparation for the CompTIA Cybersecurity
• Analyst (CySA+) certification exam CS0-002.

• Many organizations are using or are migrating on-premises IT

• systems and data into cloud environments. In this course, you'll
• learn about cloud computing, include public, private, community,
• and hybrid cloud. You'll also examine service models such as
• Infrastructure as a Service, Platform as a Service, Software as a
• Service, and Infrastructure as Code. This course can be used in
• preparation for the CompTIA Cybersecurity Analyst (CySA+)
• Certification Exam CS0-002.

• In this course, you'll learn about centralized monitoring for

• on-premises and cloud solutions and how this results in the timely
• response to business disruptions and highlights indicators of
• compromise. You'll examine continuous monitoring, log types, cloud
• logging and auditing, centralized Linux logging, Windows event log
• filtering, and cloud alarms. You'll also learn about the OSI model,
• network traffic analysis, filtering captured network traffic,
• e-mail monitoring, honeypots, and SIEM. This course can be used in
• preparation for the CompTIA Cybersecurity Analyst (CySA+)
• certification exam CS0-002.

• Identity and access management encompasses the management of

• on-premises and cloud-based users, groups, and roles. In this
• course, you'll learn how to assign only the required permissions to
• IAM security principles. You'll explore topics such as role
• creation, deploying Simple Active Directory in AWS, joining a cloud
• VM to a cloud-based directory service, and multifactor
• authentication. You'll also learn about identity federation and
• Windows and Linux file system permissions. This course can be used
• in preparation for the CompTIA Cybersecurity Analyst (CySA+)
• certification exam CS0-002.

• Managing network security involves planning the use of network

• devices, including cloud-based virtual network configurations. In
• this course, you'll learn about asset discovery and management,
• cloud resource tagging, network segmentation, and VPNs. You'll also
• examine cloud site-to-site VPN deployment, cloud networking, and
• cloud VPC deployment. Next, you'll learn about change management
• procedures, virtual desktop infrastructure, cloud VDI configuration
• and client connections, and firewalls. Lastly, explore network
• access control, RADIUS, and TACACS+. This course can be used in
• preparation for the CompTIA Cybersecurity Analyst (CySA+)
• certification exam CS0-002.

• Software developers must consider security at all phases of
• software development. In this course, you'll learn about software
• vulnerability testing and secure coding practices. You'll explore
• the software development life cycle, microservices and decoupling,
• application containerization, and common cloud developer services.
• In addition, you'll examine software and unit testing and reverse
• engineering for Android apps. This course can be used in
• preparation for the CompTIA Cybersecurity Analyst (CySA+)
• certification exam CS0-002.

• Data privacy regulations are at the forefront of protecting PII

• and PHI on-premises and in the cloud. In this course, you'll
• examine the meaning of common data privacy standards, including
• PII, PHI, HIPAA, GDPR, and PCI DSS. Then you'll move on to learn
• about server and cloud-based data classification and data loss
• prevention. This course can be used in preparation for the CompTIA
• Cybersecurity Analyst (CySA+) certification exam CS0-002.

• Digital forensics focuses on the proper gathering and handling

• of digital evidence. In this course, you'll learn about forensic
• hardware, software, and the chain of custody. In addition, you
• explore how to enable legal hold for an AWS S3 bucket, restore
• deleted files in Linux and Windows, and mount a Linux file system
• for examination. This course can be used in preparation for the
• CompTIA Cybersecurity Analyst (CySA+) certification exam
• CS0-002.

• Discover how vulnerability scanning can detect weaknesses while

• pen testing exploits weaknesses. Explore these activities along
• with how intrusion detection and prevention help secure networks,
• hosts, apps and data for organizations. This course can be used in
• preparation for the CompTIA Cybersecurity Analyst (CySA+)
• Certification Exam CS0-002.

• Discover how organizational security policies specify details

• for hardening organizational assets including patching, data
• masking and digital rights management. This course also covers
• baselines, secure disposal and IPsec. This course can be used in
• preparation for the CompTIA Cybersecurity Analyst (CySA+)
• Certification Exam CS0-002.