Book Image

CompTIA Security+: SY0-601 Certification Guide - Second Edition

By : Ian Neil
Book Image

CompTIA Security+: SY0-601 Certification Guide - Second Edition

By: Ian Neil

Overview of this book

The CompTIA Security+ certification validates the fundamental knowledge required to perform core security functions and pursue a career in IT security. Authored by Ian Neil, a world-class CompTIA certification trainer, this book is a best-in-class study guide that fully covers the CompTIA Security+ 601 exam objectives. Complete with chapter review questions, realistic mock exams, and worked solutions, this guide will help you master the core concepts to pass the exam the first time you take it. With the help of relevant examples, you'll learn fundamental security concepts from certificates and encryption to identity and access management (IAM). As you progress, you'll delve into the important domains of the exam, including cloud security, threats, attacks and vulnerabilities, technologies and tools, architecture and design, risk management, cryptography, and public key infrastructure (PKI). You can access extra practice materials, including flashcards, performance-based questions, practical labs, mock exams, key terms glossary, and exam tips on the author's website at securityplus.training. By the end of this Security+ book, you'll have gained the knowledge and understanding to take the CompTIA exam with confidence.

Related Content you might be interested in

Current Title:

Small book image
CompTIA Security+: SY0-601 Certification Guide - Second Edition
Ian Neil
Dec, 2020 | 550 pages
Small book image
CompTIA Security+ Practice Tests SY0-501
John Neil
Jan, 2020 | 252 pages
Small book image
CompTIA Security+ SY0-701 Certification Guide
John Neil
Jan, 2024 | 622 pages
Small book image
Security+® Practice Tests
Mike Chapple
Oct, 2019 | 390 pages
Table of Contents (24 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Additional online resources
Download the color images
Conventions used
Get in touch
Reviews
1
Objectives for the CompTIA Security+ 601 exam
Objectives for the CompTIA Security+ 601 exam
Exam Objectives (Domains)
Free Chapter
2
Section 1: Security Aims and Objectives
Section 1: Security Aims and Objectives
3
Chapter 1: Understanding Security Fundamentals
Chapter 1: Understanding Security Fundamentals
Security Fundamentals
Comparing Control Types
Physical Security Controls
Understanding Digital Forensics
Review Questions
4
Chapter 2: Implementing Public Key Infrastructure
Chapter 2: Implementing Public Key Infrastructure
PKI Concepts
Asymmetric and Symmetric Encryption
Key Stretching Algorithms
Salting Passwords
Cipher Modes
Quantum Computing
Blockchain and the Public Ledger
Hashing and Data Integrity
Comparing and Contrasting the Basic Concepts of Cryptography
Basic Cryptographic Terminologies
Common Use Cases for Cryptography
Practical Exercises
Review Questions
5
Chapter 3: Investigating Identity and Access Management
Chapter 3: Investigating Identity and Access Management
Understanding Identity and Access Management Concepts
Identity Types
Account Types
Authentication Types
Implementing Authentication and Authorization Solutions
Summarizing Authentication and Authorization Design Concepts
Cloud versus On-Premises Authentication
Common Account Management Policies
Practical Exercise – Password Policy
Review Questions
6
Chapter 4: Exploring Virtualization and Cloud Concepts
Chapter 4: Exploring Virtualization and Cloud Concepts
Overview of Cloud Computing
Implementing Different Cloud Deployment Models
Understanding Cloud Service Models
Understanding Cloud Computing Concepts
Understanding Cloud Storage Concepts
Selecting Cloud Security Controls
Exploring the Virtual Network Environments
Review Questions
7
Section 2: Monitoring the Security Infrastructure
Section 2: Monitoring the Security Infrastructure
8
Chapter 5: Monitoring, Scanning, and Penetration Testing
Chapter 5: Monitoring, Scanning, and Penetration Testing
Penetration Testing Concepts
Passive and Active Reconnaissance
Exercise Types
Vulnerability Scanning Concepts
Syslog/Security Information and Event Management
Security Orchestration, Automation, and Response
Review Questions
9
Chapter 6: Understanding Secure and Insecure Protocols
Chapter 6: Understanding Secure and Insecure Protocols
Introduction to Protocols
Insecure Protocols and Their Use Cases
Secure Protocols and Their Use Cases
Additional Use Cases and Their Protocols
Review Questions
10
Chapter 7: Delving into Network and Security Concepts
Chapter 7: Delving into Network and Security Concepts
Installing and Configuring Network Components
Remote Access Capabilities
Secure Network Architecture Concepts
Network Reconnaissance and Discovery
Forensic Tools
IP Addressing
Review Questions
11
Chapter 8: Securing Wireless and Mobile Solutions
Chapter 8: Securing Wireless and Mobile Solutions
Implementing Wireless Security
Wireless Access Point Controllers
Deploying Mobile Devices Securely
Mobile Device Connection Methods
Review Questions
12
Section 3: Protecting the Security Environment
Section 3: Protecting the Security Environment
13
Chapter 9: Identifying Threats, Attacks, and Vulnerabilities
Chapter 9: Identifying Threats, Attacks, and Vulnerabilities
Virus and Malware Attacks
Social Engineering Attacks
Threat Actors
Advanced Attacks
Review Questions
14
Chapter 10: Governance, Risk, and Compliance
Chapter 10: Governance, Risk, and Compliance
Risk Management Processes and Concepts
Threat Actors, Vectors, and Intelligence Concepts
The Importance of Policies for Organizational Security
Regulations, Standards, and Legislation
Privacy and Sensitive Data Concepts
Review Questions
15
Chapter 11: Managing Application Security
Chapter 11: Managing Application Security
Implementing Host or Application Security
Understanding the Security Implications of Embedded and Specialist Systems
Understanding Secure Application Development, Deployment, and Automation
Review Questions
16
Chapter 12: Dealing with Incident Response Procedures
Chapter 12: Dealing with Incident Response Procedures
Incident Response Procedures
Utilizing Data Sources to Support Investigations
Knowing How to Apply Mitigation Techniques or Controls to Secure an Environment
Implementing Cybersecurity Resilience
Review Questions
17
Section 4: Mock Tests
Section 4: Mock Tests
18
Chapter 13: Mock Exam 1
Chapter 13: Mock Exam 1
19
Mock Exam 1 Solutions
Mock Exam 1 Solutions
20
Chapter 14: Mock Exam 2
Chapter 14: Mock Exam 2
21
Mock Exam 2 Solutions
Mock Exam 2 Solutions
22
Chapter Review Solutions
Chapter 1 – Understanding Security Fundamentals
Chapter 2 – Implementing Public Key Infrastructure
Chapter 3 – Investigating Identity and Access Management
Chapter 4 – Exploring Virtualization and Cloud Concepts
Chapter 5 – Monitoring, Scanning, and Penetration Testing
Chapter 6 – Understanding Secure and Insecure Protocols
Chapter 7 – Delving into Network and Security Concepts
Chapter 8 – Securing Wireless and Mobile Solutions
Chapter 9 – Identifying Threats, Attacks, and Vulnerabilities
Chapter 10 – Governance, Risk, and Compliance
Chapter 11 – Managing Application Security
Chapter 12 – Dealing with Incident Response Procedures
23
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think
Coupon Code For 12% Off on CompTIA Security+ Exam Vouchers
Coupon Code For 18% off on CompTIA Security+ Labs

Review Questions

Now, it's time to check your knowledge. Answer the questions, and then check your answers, which can be found in the Solutions section at the end of the book:

  1. Which pen tester would be given source code?
  2. Why would a shared account pose a problem to monitoring?
  3. Which pen tester would be given no access before the test but, at the last minute, is given a diagram of the desktops?
  4. What needs to be established prior to a pen test commencing?
  5. While carrying out an unannounced pen test, how does the tester know if the internal security team is on to him?
  6. What is the scope of rules of engagement?
  7. If the pen test has been announced to the IT team, what information should they give regarding the test before the test start?
  8. What is the main difference between a credentialed and a non-credentialed vulnerability scan?
  9. At what phase of a pen test does the tester return the systems to the original state or inform the IT team of vulnerabilities...
Previous Section
End of Chapter 8
Next Chapter