CompTIA CySA+ (CS0-002) Cert Prep: 1 Threat Management
2h 25mAdvanced2020-04-03
Authors

Mike Chapple
Teaching Professor at the University of Notre Dame
Course details
As cybersecurity threats become more sophisticated and pervasive, the need for IT professionals with security analytics expertise has grown exponentially. Earning the CompTIA Cybersecurity Analyst (CySA+) certification shows potential employers that you understand how to tackle cybersecurity threats using a behavioral analytics-based approach. This course—the first installment in the CySA+ (CS0-002) Cert Prep series—can provide you with a foundational understanding of threat management practices, and prepare you for the Threat and Vulnerability Management domain of exam CS0-002. Instructor Mike Chapple includes coverage of cybersecurity threats, reconnaissance techniques, and attack frameworks. He also goes over a variety of malware threats and key cloud security topics.
Learning objectives
The goals of information security
Assessing and classifying threats
Managing threat indicators
Conducting threat research
Threat modeling
Using attack frameworks to structure your work
Advanced malware concepts, including rootkits
Social engineering attacks
Wireless reconnaissance techniques
Security implications of the DevOps approach
Cloud security risks
Learning objectives
The goals of information security
Assessing and classifying threats
Managing threat indicators
Conducting threat research
Threat modeling
Using attack frameworks to structure your work
Advanced malware concepts, including rootkits
Social engineering attacks
Wireless reconnaissance techniques
Security implications of the DevOps approach
Cloud security risks
Skills covered
Incident ResponseCybersecurityCert Prep
Concepts
0. Introduction
- 01 - How to manage security threats
- 02 - What you need to know
1. Overview of the Role of a Cybersecurity Analyst
- 03 - The goals of information security
- 04 - Role of the cybersecurity analyst
2. Understanding the Cybersecurity Threat
- 05 - Threat actors
- 06 - Zero-days and the APT
- 07 - Threat classification
3. Threat Intelligence
- 08 - Threat intelligence
- 09 - Intelligence cycle
- 10 - Managing threat indicators
- 11 - Intelligence sharing
4. Threat Modeling
- 12 - Threat research
- 13 - Identifying threats
- 14 - Understanding attacks
- 15 - Threat modeling
- 16 - Threat hunting
5. Attack Frameworks
- 17 - MITRE ATT&CK
- 18 - Diamond Model of Intrusion Analysis
- 19 - Cyber kill chain analysis
6. Malware Threats
- 20 - Comparing viruses, worms, and Trojans
- 21 - Comparing adware, spyware, and ransomware
- 22 - Understanding backdoors and logic bombs
- 23 - Looking at advanced malware
- 24 - Understanding botnets
7. Environmental Reconnaissance
- 25 - Social engineering
- 26 - DNS harvesting
- 27 - Network mapping
- 28 - Enumeration tools
- 29 - Protocol analyzers
- 30 - Wireless reconnaissance
- 31 - The importance of perspective
8. Cloud Security
- 32 - What is the cloud
- 33 - Cloud activities and the cloud reference architecture
- 34 - Cloud deployment models
- 35 - Public cloud tiers
- 36 - DevOps
- 37 - Cloud security risks
Conclusion
- 38 - What's next
Related courses
- RAG, AI Apps, and AI Agents for Cybersecurity and Networking
- Introduction to Applied Cryptography and Cryptanalysis by Infosec
- ISC2 Systems Security Certified Practitioner (SSCP) Cert Prep
- CCNA Cybersecurity (200-201) v1.2 Cert Prep
- Automated Threat Detection: Building SOC Solutions with Splunk, TheHive, and Snort
- Azure Event Hubs for Developers
- Applied ChatGPT for Cybersecurity by Infosec
- Corporate Security Policies by Infosec