Book Image

CompTIA Security+ Certification Guide

By : Ian Neil
Book Image

CompTIA Security+ Certification Guide

By: Ian Neil

Overview of this book

CompTIA Security+ is a worldwide certification that establishes the fundamental knowledge required to perform core security functions and pursue an IT security career. CompTIA Security+ Certification Guide is a best-in-class exam study guide that covers all of CompTIA Security+ 501 exam objectives. It is authored by Ian Neil, who is a world-class trainer of CompTIA Security+ 501. Packed with self-assessment scenarios and realistic exam questions, this guide will help you master the core concepts to succeed in the exam the first time you take it. Using relevant examples, you will learn all the important security fundamentals from Certificates and Encryption to Identity and Access Management concepts. You will then dive into the important domains of the exam; namely, threats, attacks and vulnerabilities, technologies and tools, architecture and design, risk management, and cryptography and Public Key Infrastructure (PKI). This book comes with over 600 practice questions with detailed explanation that is at the exam level and also includes two mock exams to help you with your study plan. This guide will ensure that encryption and certificates are made easy for you.

Related Content you might be interested in

Current Title:

Small book image
CompTIA Security+ Certification Guide
Ian Neil
Sep, 2018 | 532 pages
Small book image
Security+® Practice Tests
Mike Chapple
Oct, 2019 | 390 pages
Small book image
CompTIA Security+ SY0-701 Certification Guide
John Neil
Jan, 2024 | 622 pages
Small book image
CompTIA CASP+ CAS-004 Certification Guide
Mark Birch
Mar, 2022 | 654 pages
Table of Contents (18 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
Understanding Security Fundamentals
Understanding Security Fundamentals
CIA Triad Concept
Identifying Security Controls
Hashing and Data Integrity
Defense in Depth Model
Review Questions
Answers and Explanations
2
Conducting Risk Analysis
Conducting Risk Analysis
Risk Management
Importance of Policy, Plans, and Procedures
Role-Based Awareness Training
Business Impact Analysis Concepts
Privacy Threshold Assessment/Privacy Impact Assessment
Supply Chain Risk Assessment
Business Impact Analysis Concepts
Risk Procedures and Concepts
Risk Register
Qualitative/Quantitative Risk Analysis
Review Questions
Answers and Explanations
3
Implementing Security Policies and Procedures
Implementing Security Policies and Procedures
Industry-Standard Frameworks and Reference Architecture
Policies and User Guides
Implementing Data Security and Privacy Practices
Practical – Creating a Baseline
Review Questions
4
Delving into Identity and Access Management
Delving into Identity and Access Management
Understanding Identity and Access Management Concepts
Installing and Configuring Identity and Access Services
Learning About Identity and Access Management Controls
Common Account Management Practices
Practical Exercise – Password Policy
Review Questions
Answers and Explanations
5
Understanding Network Components
Understanding Network Components
OSI Reference Model (OSI)
Installing and Configuring Network Components
Security Information and Event Management
Secure Network Architecture Concepts
Implementing Secure Protocols Segregation/Segmentation/Isolation
Implementing Wireless Security
Wireless Bandwidth/Band Selection
Wireless Channels
Wireless Antenna Types - Signal Strength
Wireless Coverage
Wireless Encryption
Review Questions
Answers and Explanations
6
Understanding Cloud Models and Virtualization
Understanding Cloud Models and Virtualization
Cloud Computing
Implementing Different Cloud Deployment Models
Cloud Service Models
Disk Resiliency and Redundancy
Storage Area Network
Understanding Cloud Storage Concepts
Exploring Virtual Networks
Heating, Ventilation, and Air-Conditioning (HVAC)
Network Environments
Practical Exercise – Is the Cloud Cost-Effective?
Review Questions
Answers and Explanations
7
Managing Hosts and Application Deployment
Managing Hosts and Application Deployment
Deploying Mobile Devices Securely
Mobile Device Management Concepts
Device Management
Device Protection
Device Data
Mobile Device Enforcement and Monitoring
Industrial Control System
Mobile Devices – Security Implications of Embedded Systems
Special-Purpose Devices
Secure Application Development and Deployment Concepts
Development Life Cycle Models – Waterfall v Agile
DevOps
Server-Side v Client-Side Execution and Validation
Review Questions
Answers and Explanations
8
Protecting Against Attacks and Vulnerabilities
Protecting Against Attacks and Vulnerabilities
Virus and Malware Attacks
Social Engineering Attacks
Common Attacks
Programming Attacks
Hijacking Related Attacks
Driver Manipulation
Cryptographic Attacks
Password Attacks
Wireless Attacks
Penetration Testing
Vulnerability Scanning Concepts
Credentialed v Non-Credentialed scans
Penetration Testing v Vulnerability Scanning
Practical Exercise - Running a Credentialed Vulnerability Scanner
Review Questions
Answers and Explanations
9
Implementing the Public Key Infrastructure
Implementing the Public Key Infrastructure
PKI Concepts
Asymmetric and Symmetric Encryption
Symmetric Algorithms
Asymmetric Algorithms
Symmetric v Asymmetric Analogy
Key Stretching Algorithms
Cipher Modes
Hashing and Data Integrity
Comparing and Contrasting the Basic Concepts of Cryptography
Basic Cryptographic Terminology
Common Use Cases for Cryptography
Practical Exercises
Review Questions
Answers and Explanations
10
Responding to Security Incidents
Responding to Security Incidents
Incident Response Procedures
Understanding the Basic Concepts of Forensics
Software Tools for Assessing the Security Posture of an Organization
Review Questions
Answers and Explanations
11
Managing Business Continuity
Managing Business Continuity
Implementing Secure Systems Design
Hardware/Firmware Security
The Importance of the Secure Staging Deployment Concepts
Troubleshooting Common Security Issues
Disaster Recovery and the Continuity of Operations Concepts
Review Questions
Answers and Explanations
12
Mock Exam 1
Mock Exam 1
13
Mock Exam 2
Mock Exam 2
14
Preparing for the CompTIA Security+ 501 Exam
Preparing for the CompTIA Security+ 501 Exam
Tips on Taking the Exam
Exam Preparation
Practical 1—Drag and Drop—Attacks
Practical 2—Drag and Drop—Certificates
Practical 3—Drag and Drop—Ports/Protocols
Practical 4—Drag and Drop—Authentication Factors
Practical 5—Drag and Drop—General
Drag and Drop—Answers
Linux Information
15
Acronyms
Acronyms
16
Assessment
Assessment
Mock Exam 1
Mock Exam 2
17
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Security Information and Event Management

A Security Information and Event-Management (SIEM) system automates the collection of log files from multiple hosts, servers, and network devices, such as firewalls, in real time to identify potential risks to the network.

The types of functionality from a SIEM system are as follows:

  • Aggregation: The SIEM system can move log files and data from multiple sources to a common repository.
  • Event Correlation: A SIEM system uses a correlation engine to correlate events from multiple systems. For example, if someone tried to log in to three separate devices, the SIEM server will notify the security administrator of a potential attack. When the same event is duplicated and is logged by different devices, the SIEM system will use event de-duplication to ensure that the event is logged only once.
  • WORM Drive Backup: The logs from a SIEM system can...
Previous Section
End of Section 4
Next Section