CompTIA Cybersecurity Analyst (CySA+) is a certification for cyber professionals tasked with incident detection, prevention, and response through continuous security monitoring. This course introduces tools and tactics to manage cybersecurity risks, identify various types of common threats, evaluate the organization's security, collect, and analyse cybersecurity intelligence, and handle incidents as they occur.
This course is suited to Security Analyst Security Operations Center (SOC) Analyst, Incident Response Analyst, Vulnerability Management Analyst, Security Engineer.
By actively participating in this course, delegates will be able to:
Detect and analyse indicators of malicious activity.
Understand threat hunting and threat intelligence concepts.
Use appropriate tools and methods to manage, prioritize and respond to attacks and vulnerabilities.
Perform incident response processes.
Understand reporting and communication concepts related to vulnerability management and incident response activities.
While there is no required prerequisite, the CompTIA CySA+ certification is intended to follow CompTIA Security+ or equivalent experience. It is recommended for CompTIA CySA+ certification candidates to have the following:
3-4 years of hands-on information security or related experience
Network+, Security+, or equivalent knowledge
CySA+ is a global, vendor-neutral certification covering intermediate-level knowledge and skills required by information security analyst job roles. It helps identify a cybersecurity professional’s ability to proactively defend an organization using secure monitoring, threat identification, incident response and teamwork. The CompTIA CySA+ CS0-003 course and certification exam ensures the candidate has the knowledge and skills required to:
Technical Skills covered in the certification and training:
Security Operations
Explain the importance of system and network architecture concepts in security operations.
Analyze indicators of potentially malicious activity.
Use appropriate tools or techniques to determine malicious activity.
Compare and contrast threat-intelligence and threat-hunting concepts.
Explain the importance of efficiency and process improvement in security operations.
Vulnerability Management
Implement vulnerability scanning methods and concepts.
Analyze output from vulnerability assessment tools.
Analyze data to prioritize vulnerabilities.
Recommend controls to mitigate attacks and software vulnerabilities.
Explain concepts related to vulnerability response, handling and management.
Incident Response Management
Explain concepts related to attack methodology frameworks.
Perform incident response activities.
Explain the preparation and post-incident activity phases of the incident management lifecycle.
Reporting and Communication
Explain the importance of vulnerability management reporting and communication.
Explain the importance of incident response reporting and communication.
This course leads to exam CS0-003 CompTIA CySA+. CompTIA CySA+ certification is a vendor-neutral credential.
This training course provided by Skilltec is accredited through Global Knowledge Training Ltd. Global Knowledge Training Ltd are the authorised learning partner; all trademarks and partner statuses are provided through them.