Book Image

CompTIA Security+: SY0-601 Certification Guide - Second Edition

By : Ian Neil
Book Image

CompTIA Security+: SY0-601 Certification Guide - Second Edition

By: Ian Neil

Overview of this book

The CompTIA Security+ certification validates the fundamental knowledge required to perform core security functions and pursue a career in IT security. Authored by Ian Neil, a world-class CompTIA certification trainer, this book is a best-in-class study guide that fully covers the CompTIA Security+ 601 exam objectives. Complete with chapter review questions, realistic mock exams, and worked solutions, this guide will help you master the core concepts to pass the exam the first time you take it. With the help of relevant examples, you'll learn fundamental security concepts from certificates and encryption to identity and access management (IAM). As you progress, you'll delve into the important domains of the exam, including cloud security, threats, attacks and vulnerabilities, technologies and tools, architecture and design, risk management, cryptography, and public key infrastructure (PKI). You can access extra practice materials, including flashcards, performance-based questions, practical labs, mock exams, key terms glossary, and exam tips on the author's website at securityplus.training. By the end of this Security+ book, you'll have gained the knowledge and understanding to take the CompTIA exam with confidence.

Related Content you might be interested in

Current Title:

Small book image
CompTIA Security+: SY0-601 Certification Guide - Second Edition
Ian Neil
Dec, 2020 | 550 pages
Small book image
CompTIA Security+ Practice Tests SY0-501
John Neil
Jan, 2020 | 252 pages
Small book image
CompTIA Security+ SY0-701 Certification Guide
John Neil
Jan, 2024 | 622 pages
Small book image
Security+® Practice Tests
Mike Chapple
Oct, 2019 | 390 pages
Table of Contents (24 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Additional online resources
Download the color images
Conventions used
Get in touch
Reviews
1
Objectives for the CompTIA Security+ 601 exam
Objectives for the CompTIA Security+ 601 exam
Exam Objectives (Domains)
Free Chapter
2
Section 1: Security Aims and Objectives
Section 1: Security Aims and Objectives
3
Chapter 1: Understanding Security Fundamentals
Chapter 1: Understanding Security Fundamentals
Security Fundamentals
Comparing Control Types
Physical Security Controls
Understanding Digital Forensics
Review Questions
4
Chapter 2: Implementing Public Key Infrastructure
Chapter 2: Implementing Public Key Infrastructure
PKI Concepts
Asymmetric and Symmetric Encryption
Key Stretching Algorithms
Salting Passwords
Cipher Modes
Quantum Computing
Blockchain and the Public Ledger
Hashing and Data Integrity
Comparing and Contrasting the Basic Concepts of Cryptography
Basic Cryptographic Terminologies
Common Use Cases for Cryptography
Practical Exercises
Review Questions
5
Chapter 3: Investigating Identity and Access Management
Chapter 3: Investigating Identity and Access Management
Understanding Identity and Access Management Concepts
Identity Types
Account Types
Authentication Types
Implementing Authentication and Authorization Solutions
Summarizing Authentication and Authorization Design Concepts
Cloud versus On-Premises Authentication
Common Account Management Policies
Practical Exercise – Password Policy
Review Questions
6
Chapter 4: Exploring Virtualization and Cloud Concepts
Chapter 4: Exploring Virtualization and Cloud Concepts
Overview of Cloud Computing
Implementing Different Cloud Deployment Models
Understanding Cloud Service Models
Understanding Cloud Computing Concepts
Understanding Cloud Storage Concepts
Selecting Cloud Security Controls
Exploring the Virtual Network Environments
Review Questions
7
Section 2: Monitoring the Security Infrastructure
Section 2: Monitoring the Security Infrastructure
8
Chapter 5: Monitoring, Scanning, and Penetration Testing
Chapter 5: Monitoring, Scanning, and Penetration Testing
Penetration Testing Concepts
Passive and Active Reconnaissance
Exercise Types
Vulnerability Scanning Concepts
Syslog/Security Information and Event Management
Security Orchestration, Automation, and Response
Review Questions
9
Chapter 6: Understanding Secure and Insecure Protocols
Chapter 6: Understanding Secure and Insecure Protocols
Introduction to Protocols
Insecure Protocols and Their Use Cases
Secure Protocols and Their Use Cases
Additional Use Cases and Their Protocols
Review Questions
10
Chapter 7: Delving into Network and Security Concepts
Chapter 7: Delving into Network and Security Concepts
Installing and Configuring Network Components
Remote Access Capabilities
Secure Network Architecture Concepts
Network Reconnaissance and Discovery
Forensic Tools
IP Addressing
Review Questions
11
Chapter 8: Securing Wireless and Mobile Solutions
Chapter 8: Securing Wireless and Mobile Solutions
Implementing Wireless Security
Wireless Access Point Controllers
Deploying Mobile Devices Securely
Mobile Device Connection Methods
Review Questions
12
Section 3: Protecting the Security Environment
Section 3: Protecting the Security Environment
13
Chapter 9: Identifying Threats, Attacks, and Vulnerabilities
Chapter 9: Identifying Threats, Attacks, and Vulnerabilities
Virus and Malware Attacks
Social Engineering Attacks
Threat Actors
Advanced Attacks
Review Questions
14
Chapter 10: Governance, Risk, and Compliance
Chapter 10: Governance, Risk, and Compliance
Risk Management Processes and Concepts
Threat Actors, Vectors, and Intelligence Concepts
The Importance of Policies for Organizational Security
Regulations, Standards, and Legislation
Privacy and Sensitive Data Concepts
Review Questions
15
Chapter 11: Managing Application Security
Chapter 11: Managing Application Security
Implementing Host or Application Security
Understanding the Security Implications of Embedded and Specialist Systems
Understanding Secure Application Development, Deployment, and Automation
Review Questions
16
Chapter 12: Dealing with Incident Response Procedures
Chapter 12: Dealing with Incident Response Procedures
Incident Response Procedures
Utilizing Data Sources to Support Investigations
Knowing How to Apply Mitigation Techniques or Controls to Secure an Environment
Implementing Cybersecurity Resilience
Review Questions
17
Section 4: Mock Tests
Section 4: Mock Tests
18
Chapter 13: Mock Exam 1
Chapter 13: Mock Exam 1
19
Mock Exam 1 Solutions
Mock Exam 1 Solutions
20
Chapter 14: Mock Exam 2
Chapter 14: Mock Exam 2
21
Mock Exam 2 Solutions
Mock Exam 2 Solutions
22
Chapter Review Solutions
Chapter 1 – Understanding Security Fundamentals
Chapter 2 – Implementing Public Key Infrastructure
Chapter 3 – Investigating Identity and Access Management
Chapter 4 – Exploring Virtualization and Cloud Concepts
Chapter 5 – Monitoring, Scanning, and Penetration Testing
Chapter 6 – Understanding Secure and Insecure Protocols
Chapter 7 – Delving into Network and Security Concepts
Chapter 8 – Securing Wireless and Mobile Solutions
Chapter 9 – Identifying Threats, Attacks, and Vulnerabilities
Chapter 10 – Governance, Risk, and Compliance
Chapter 11 – Managing Application Security
Chapter 12 – Dealing with Incident Response Procedures
23
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think
Coupon Code For 12% Off on CompTIA Security+ Exam Vouchers
Coupon Code For 18% off on CompTIA Security+ Labs

Exercise Types

Team exercises are similar to pen testing, but they use friendly IT professionals to participate in the different teams. The teams are red, blue, green, white, and purple. Let's look at each of these in turn:

Figure 5.1 – Exercise teams

Here is a brief overview of the different teams:

  • Red Team: The red team mimics an attacker, and they try to find vulnerabilities within your company. They quite often use social engineering and phishing as part of their attacks.
  • Blue Team: The blue team looks to discover security vulnerabilities within the company and take action to mitigate them so that the company is secure.
  • White Team: The white team organizes and adjudicates cybersecurity exercises based on the information given. They set the rules of engagement and details of the exercise. If they find that the red team has created a serious vulnerability, they will stop the exercise immediately. They score the blue team&apos...
Previous Section
End of Section 4
Next Section