The CompTIA CySA+ course covers the duties of cybersecurity analysts who are responsible for monitoring and detecting security incidents in information systems and networks, and for executing a proper response to such incidents. Depending on the size of the organization, this individual may act alone or may be a member of a cybersecurity incident response team (CSIRT).
The course introduces tools and tactics to manage cybersecurity risks, identify various types of common threats, evaluate the organization's security, collect and analyze cybersecurity intelligence, and handle incidents as they occur. Ultimately, the course promotes a comprehensive approach to security aimed toward those on the front lines of defense. This course assists in the preparation for the CompTIA CySA+ CS0-003 certification exam.
Learning Objectives
- Improve processes in security operations and differentiate between threat intelligence and threat hunting concepts; identify and analyze malicious activity using the appropriate tools and techniques.
- Apply updated concepts of attack methodology frameworks, perform incident response activities and understand the incident management lifecycle.
- Implement and analyze vulnerability assessments, prioritize vulnerabilities and make recommendations on mitigating attacks and vulnerability response.
- Apply communication best practices in vulnerability management and incident response as it relates to stakeholders, action plans, escalation and metrics.
Prerequisite Skills
- Network+, Security+ or equivalent knowledge.
- Minimum of 4 years of hands-on experience as an incident response analyst or security operations center (SOC) analyst, or equivalent experience.