Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying CompTIA Security+: SY0-601 Certification Guide
  • Table Of Contents Toc
CompTIA Security+: SY0-601 Certification Guide

CompTIA Security+: SY0-601 Certification Guide - Second Edition

By : Ian Neil
4.7 (40)
Buy this Book
close
close
CompTIA Security+: SY0-601 Certification Guide

CompTIA Security+: SY0-601 Certification Guide

4.7 (40)
By: Ian Neil
Buy this Book

Overview of this book

The CompTIA Security+ certification validates the fundamental knowledge required to perform core security functions and pursue a career in IT security. Authored by Ian Neil, a world-class CompTIA certification trainer, this book is a best-in-class study guide that fully covers the CompTIA Security+ 601 exam objectives. Complete with chapter review questions, realistic mock exams, and worked solutions, this guide will help you master the core concepts to pass the exam the first time you take it. With the help of relevant examples, you'll learn fundamental security concepts from certificates and encryption to identity and access management (IAM). As you progress, you'll delve into the important domains of the exam, including cloud security, threats, attacks and vulnerabilities, technologies and tools, architecture and design, risk management, cryptography, and public key infrastructure (PKI). You can access extra practice materials, including flashcards, performance-based questions, practical labs, mock exams, key terms glossary, and exam tips on the author's website at securityplus.training. By the end of this Security+ book, you'll have gained the knowledge and understanding to take the CompTIA exam with confidence.
Table of Contents (24 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Additional online resources
Icon
Download the color images
Icon
Conventions used
Icon
Get in touch
Icon
Reviews
1
Objectives for the CompTIA Security+ 601 exam
Icon
Objectives for the CompTIA Security+ 601 exam
Icon
Exam Objectives (Domains)
Lock Free Chapter
2
Section 1: Security Aims and Objectives
Icon
Section 1: Security Aims and Objectives
3
Chapter 1: Understanding Security Fundamentals
Icon
Chapter 1: Understanding Security Fundamentals
Icon
Security Fundamentals
Icon
Comparing Control Types
Icon
Physical Security Controls
Icon
Understanding Digital Forensics
Icon
Review Questions
4
Chapter 2: Implementing Public Key Infrastructure
Icon
Chapter 2: Implementing Public Key Infrastructure
Icon
PKI Concepts
Icon
Asymmetric and Symmetric Encryption
Icon
Key Stretching Algorithms
Icon
Salting Passwords
Icon
Cipher Modes
Icon
Quantum Computing
Icon
Blockchain and the Public Ledger
Icon
Hashing and Data Integrity
Icon
Comparing and Contrasting the Basic Concepts of Cryptography
Icon
Basic Cryptographic Terminologies
Icon
Common Use Cases for Cryptography
Icon
Practical Exercises
Icon
Review Questions
5
Chapter 3: Investigating Identity and Access Management
Icon
Chapter 3: Investigating Identity and Access Management
Icon
Understanding Identity and Access Management Concepts
Icon
Identity Types
Icon
Account Types
Icon
Authentication Types
Icon
Implementing Authentication and Authorization Solutions
Icon
Summarizing Authentication and Authorization Design Concepts
Icon
Cloud versus On-Premises Authentication
Icon
Common Account Management Policies
Icon
Practical Exercise – Password Policy
Icon
Review Questions
6
Chapter 4: Exploring Virtualization and Cloud Concepts
Icon
Chapter 4: Exploring Virtualization and Cloud Concepts
Icon
Overview of Cloud Computing
Icon
Implementing Different Cloud Deployment Models
Icon
Understanding Cloud Service Models
Icon
Understanding Cloud Computing Concepts
Icon
Understanding Cloud Storage Concepts
Icon
Selecting Cloud Security Controls
Icon
Exploring the Virtual Network Environments
Icon
Review Questions
7
Section 2: Monitoring the Security Infrastructure
Icon
Section 2: Monitoring the Security Infrastructure
8
Chapter 5: Monitoring, Scanning, and Penetration Testing
chevron up
Icon
Chapter 5: Monitoring, Scanning, and Penetration Testing
Icon
Penetration Testing Concepts
Icon
Passive and Active Reconnaissance
Icon
Exercise Types
Icon
Vulnerability Scanning Concepts
Icon
Syslog/Security Information and Event Management
Icon
Security Orchestration, Automation, and Response
Icon
Review Questions
9
Chapter 6: Understanding Secure and Insecure Protocols
Icon
Chapter 6: Understanding Secure and Insecure Protocols
Icon
Introduction to Protocols
Icon
Insecure Protocols and Their Use Cases
Icon
Secure Protocols and Their Use Cases
Icon
Additional Use Cases and Their Protocols
Icon
Review Questions
10
Chapter 7: Delving into Network and Security Concepts
Icon
Chapter 7: Delving into Network and Security Concepts
Icon
Installing and Configuring Network Components
Icon
Remote Access Capabilities
Icon
Secure Network Architecture Concepts
Icon
Network Reconnaissance and Discovery
Icon
Forensic Tools
Icon
IP Addressing
Icon
Review Questions
11
Chapter 8: Securing Wireless and Mobile Solutions
Icon
Chapter 8: Securing Wireless and Mobile Solutions
Icon
Implementing Wireless Security
Icon
Wireless Access Point Controllers
Icon
Deploying Mobile Devices Securely
Icon
Mobile Device Connection Methods
Icon
Review Questions
12
Section 3: Protecting the Security Environment
Icon
Section 3: Protecting the Security Environment
13
Chapter 9: Identifying Threats, Attacks, and Vulnerabilities
Icon
Chapter 9: Identifying Threats, Attacks, and Vulnerabilities
Icon
Virus and Malware Attacks
Icon
Social Engineering Attacks
Icon
Threat Actors
Icon
Advanced Attacks
Icon
Review Questions
14
Chapter 10: Governance, Risk, and Compliance
Icon
Chapter 10: Governance, Risk, and Compliance
Icon
Risk Management Processes and Concepts
Icon
Threat Actors, Vectors, and Intelligence Concepts
Icon
The Importance of Policies for Organizational Security
Icon
Regulations, Standards, and Legislation
Icon
Privacy and Sensitive Data Concepts
Icon
Review Questions
15
Chapter 11: Managing Application Security
Icon
Chapter 11: Managing Application Security
Icon
Implementing Host or Application Security
Icon
Understanding the Security Implications of Embedded and Specialist Systems
Icon
Understanding Secure Application Development, Deployment, and Automation
Icon
Review Questions
16
Chapter 12: Dealing with Incident Response Procedures
Icon
Chapter 12: Dealing with Incident Response Procedures
Icon
Incident Response Procedures
Icon
Utilizing Data Sources to Support Investigations
Icon
Knowing How to Apply Mitigation Techniques or Controls to Secure an Environment
Icon
Implementing Cybersecurity Resilience
Icon
Review Questions
17
Section 4: Mock Tests
Icon
Section 4: Mock Tests
18
Chapter 13: Mock Exam 1
Icon
Chapter 13: Mock Exam 1
19
Mock Exam 1 Solutions
Icon
Mock Exam 1 Solutions
20
Chapter 14: Mock Exam 2
Icon
Chapter 14: Mock Exam 2
21
Mock Exam 2 Solutions
Icon
Mock Exam 2 Solutions
22
Chapter Review Solutions
Icon
Chapter 1 – Understanding Security Fundamentals
Icon
Chapter 2 – Implementing Public Key Infrastructure
Icon
Chapter 3 – Investigating Identity and Access Management
Icon
Chapter 4 – Exploring Virtualization and Cloud Concepts
Icon
Chapter 5 – Monitoring, Scanning, and Penetration Testing
Icon
Chapter 6 – Understanding Secure and Insecure Protocols
Icon
Chapter 7 – Delving into Network and Security Concepts
Icon
Chapter 8 – Securing Wireless and Mobile Solutions
Icon
Chapter 9 – Identifying Threats, Attacks, and Vulnerabilities
Icon
Chapter 10 – Governance, Risk, and Compliance
Icon
Chapter 11 – Managing Application Security
Icon
Chapter 12 – Dealing with Incident Response Procedures
23
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Leave a review - let other readers know what you think
Icon
Coupon Code For 12% Off on CompTIA Security+ Exam Vouchers
Icon
Coupon Code For 18% off on CompTIA Security+ Labs

Syslog/Security Information and Event Management

The systems on a network produce a massive amount of information in log files and most of them will be related to errors or possible attacks. They will require a real-time solution to correlate these events so that the security team can be alerted immediately. Let's look at the role that the SIEM and syslog server play.

Security Information and Event Management (SIEM) is regarded as an IT best practice, used by regulated industries to fulfill security and audit compliance regulations, for example, HIPAA, GDPR, SOX, and PCI DSS. SIEM supports IT teams by consolidating event log values through the correlation, aggregation, normalizing standard, and non-standard log formats; it can also filter out false positives.

The only time that a SIEM system will not provide the correct information is when the wrong filters are used or the wrong host is monitored. In these cases, a false positive will be produced.

A System Logging (Syslog...

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
CompTIA Security+: SY0-601 Certification Guide
End of Section 8
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon