Training: CompTIA Advanced Security Practitioner CASP+ (Exam: CAS-004)
Vanaf
Duur: 1 uur |
Taal: Engels (US) |
Online toegang: 180 dagen |
Gegevens
Het huidige IT-klimaat vraagt om mensen met aantoonbare vaardigheden. De informatie en activiteiten in deze training kunnen jou helpen de vaardigheden te ontwikkelen die je nodig hebt om met vertrouwen jouw taken als een geavanceerde beveiligingsprofessional uit te voeren.
Deze CASP+ training behandelt de technische kennis en vaardigheden die nodig zijn voor het ontwerpen, engineeren, integreren en implementeren van veilige oplossingen in complexe omgevingen om een onderneming te ondersteunen, rekening houdend met de impact van governance-, risico- en compliance-vereisten.
In deze training leer je:
- hoe je risicomanagementkaders kunt toepassen om risico's te beoordelen en te beperken.
- hoe je met kwalitatieve en kwantitatieve risicoanalyse kunt werken.
- verschillende soorten virtualisatie-oplossingen te identificeren, zoals netwerkvirtualisatie, besturingssysteemvirtualisatie, desktop- en app-virtualisatie.
- hoe je een cloud gebaseerde firewall kunt implementeren, firewallrouting kunt configureren en RDP kunt inschakelen via cloud firewalls.
- over cryptografie en PKI.
- onderscheid te maken tussen authenticatie en autorisatie en ook hoe je 2FA- en MFA-gebruikersauthenticatie kunt inschakelen.
- over IT Governance en Security Compliance.
- hoe je met behulp van de Shodan-website naar kwetsbare apparaten kunt zoeken.
- hoe Supervisory Control en Data Acquisition zich verhoudt tot industriële controlesystemen.
- hoe je beveiligingsrisico's kunt identificeren die samenhangen met opkomende technologieën, zoals machine learning, kunstmatige intelligentie, blockchain, kwantumcomputing en 3D-printen.
- de top 10 bedreigingen voor web-apps te identificeren en de OWASP ZAP-tool te gebruiken om kwetsbaarheden in web-apps te identificeren.
En nog veel meer.
Met deze training bereidt jij je optimaal voor op het CompTIA CASP+ (CAS-004) examen. Het CAS-004 examen is per oktober 2021 beschikbaar, deze vervangt het CAS-003 examen.
Resultaat
Na het afronden van deze training ben jij bekwaam op gevorderd niveau op het gebied van beveiliging, onderzoek en samenwerking, en integratie van bedrijfsbeveiliging. Tevens bereidt deze training jou optimaal voor op het CompTIA CASP+ (CAS-004) examen.
Voorkennis
Minimaal tien jaar algemene praktijkervaring met IT, met ten minste vijf jaar brede praktijkervaring op het gebied van IT beveiliging.
Doelgroep
Securityspecialist
Inhoud
CompTIA Advanced Security Practitioner CASP+ (Exam: CAS-004)
CompTIA CASP+ (CAS-004): Assessing & Managing Risk
Recognizing threats and managing risk are key to hardening an
- organization's security posture. In this course, you'll explore how
- to apply risk management frameworks to assess and mitigate risk, as
- well as how to identify threat actors and physical risks. Next,
- you'll learn how to mitigate risks related to human resources and
- social engineering techniques. You'll then move on to examine how
- to work with qualitative and quantitative risk analysis. Lastly,
- you'll learn about insider threats, supply chain dependencies, and
- sources of threat intelligence. This course is one of a collection
- of courses that prepares learners for the CompTIA Advanced Security
- Practitioner (CASP+) CAS-004 exam.
CompTIA CASP+ (CAS-004): Virtualization Security
Securing today's enterprise computing environments means
- understanding how virtualization is used. Organizations must
- consider how to secure virtualization solutions used both
- on-premises in and the cloud. In this course, you'll learn to
- identify various types of virtualization solutions such as network
- virtualization, operating system virtualization, desktop, and app
- virtualization. You will then learn to distinguish the difference
- between type 1 and type 2 hypervisors. Next, you'll focus on
- virtualization security and how to deploy virtual machines
- on-premises. Lastly, you'll learn to work with application
- containers. This course is one of a collection of courses that
- prepares learners for the CompTIA Advanced Security Practitioner
- (CASP+) CAS-004 exam.
CompTIA CASP+ (CAS-004): Secure Cloud Computing
Cloud computing is widely used by individuals and enterprises to
- outsource IT solutions. In this course, you'll begin with learning
- how to identify cloud deployment and service models. Next, you'll
- review cloud service level agreements, cloud security solutions,
- and how to work with cloud VNets. Moving on, you'll learn how to
- configure cloud autoscaling to increase application availability.
- You'll also explore now to deploy a cloud-based firewall, configure
- firewall routing, and enable RDP through cloud firewalls. Lastly,
- you'll learn how to create a cloud key vault and enable cloud
- storage security. This course is one of a collection of courses
- that prepares learners for the CompTIA Advanced Security
- Practitioner (CASP+) CAS-004 exam.
CompTIA CASP+ (CAS-004): Cryptography & PKI
Cryptography has long played a role in securing sensitive
- information. In this course, you'll begin with an overview of
- cryptography and how it can secure data at rest and data in motion.
- You’ll then learn how to enable EFS and BitLocker to protect data
- at rest. You’ll explore how to identify methods by which
- cryptography can protect data in transit and configure network
- security via IPsec. Finally, you'll examine how PKI uses
- certificates to secure IT systems through HTTPS, SSH remote
- management, and generating file system hashes. This course is one
- of a collection of courses that prepares learners for the CompTIA
- Advanced Security Practitioner (CASP+) CAS-004 exam.
CompTIA CASP+ (CAS-004): Storage & Network Security
On-premises and cloud-based storage security solutions are very
- similar in nature. In this course, you'll learn how to determine
- which RAID disk solution best applies in a given situation, as well
- as how to secure various network storage solutions and DNS. Next,
- you'll learn to recognize when to apply firewalls to secure
- networks and how to configure various firewall solutions. Moving
- on, you'll explore how to configure a VPN and secure wired and
- wireless networks. Lastly, you'll examine how to manage servers
- through a jump box and how attackers enable reverse shells. This
- course is one of a collection of courses that prepares learners for
- the CompTIA Advanced Security Practitioner (CASP+) CAS-004
- exam.
CompTIA CASP+ (CAS-004): Authentication & Authorization
Securing user and device logins, as well as access to IT
- resources, relates to authentication and authorization. In this
- course, you'll learn how to differentiate between authentication
- and authorization and also ow to enable 2FA and MFA user
- authentication. Next, you'll explore how to enable Wi-Fi RADIUS
- authentication, configure SELinux, and enable attribute-based
- control in Windows. Lastly, you'll examine how to use Group Policy
- to configure password policy settings, crack passwords using freely
- available tools like the Johnny tool, brute-force RDP using Hydra,
- and limit cloud admin access using role-based access control. This
- course is one of a collection of courses that prepares learners for
- the CompTIA Advanced Security Practitioner (CASP+) CAS-004
- exam.
CompTIA CASP+: IT Governance & Security Compliance
IT governance involves ensuring that business and regulatory
- compliance needs are met by IT solutions. In this course, you'll
- learn to identify common data privacy standards and regulations, as
- well as various types of business agreements. Next, you'll learn to
- classify personally identifiable information using various methods
- including Macie for data discovery and classification. You’ll
- explore how to use Azure Information Protection to enable DLP and
- tag cloud resources to facilitate resource management. You’ll then
- examine how to securely wipe a storage device and identify common
- organization security policies. Lastly, you'll learn how to
- identify data roles and configure cloud data retention. This course
- is one of a collection of courses that prepares learners for the
- CompTIA Advanced Security Practitioner (CASP+) CAS-004 exam.
CompTIA CASP+ (CAS-004): Monitoring & Incident Response
Enterprise IT monitoring is crucial in detecting potential
- security incidents. In this course, you'll explore various
- monitoring methods for hosts, devices, and networks. Next, you'll
- learn to configure log forwarding and work with logs through
- PowerShell. Moving on, you'll learn to recognize when to use
- honeyfiles, honeypots, and honeynets, as well as SIEM and SOAR
- solutions. You’ll then examine intrusion detection and prevention
- and how they are used to secure a network. Lastly, you'll explore
- the use of tools such as Snort, tcpdump, nmap, and Wireshark for
- analyzing networks and network traffic. This course is one of a
- collection of courses that prepares learners for the CompTIA
- Advanced Security Practitioner (CASP+) CAS-004 exam.
CompTIA CASP+ (CAS-004): Mobile & Embedded Devices
Mobile devices have become ubiquitous and as a result deserve
- the attention of cybersecurity specialists. In this course, you'll
- explore how mobile, embedded, drones, and IoT devices are used and
- their related security risks. Next, you'll learn how to search for
- vulnerable devices using the Shodan web site. Moving on, you'll
- explore how to secure remote network connectivity with a VPN and
- examine smartphone hardening techniques. Lastly, you'll learn how
- to register and manage an Android device using a Mobile Device
- Management solution. This course is one of a collection of courses
- that prepares learners for the CompTIA Advanced Security
- Practitioner (CASP+) CAS-004 exam.
CompTIA CASP+: Industrial Computing Environments
Industrial control systems present a unique security risk when
- it comes to public services such as power, water, and other
- industrial processes. In this course, you'll learn how to recognize
- common industrial network protocols and terminology. Next, you’ll
- learn how Supervisory Control and Data Acquisition relates to
- industrial control systems. You'll explore NIST ICS security
- control documentation. Lastly, you'll learn how to configure an S7
- PLC emulator and use Metasploit to stop the device. This course is
- one of a collection of courses that prepares learners for the
- CompTIA Advanced Security Practitioner (CASP+) CAS-004 exam.
CompTIA CASP+ (CAS-004): Emerging Technologies & SecDevOps
Emerging technologies present unique security risks in that the
- technology is not yet mature. Software developers must adhere to
- secure development practices to minimize threat impacts. In this
- course, you'll learn how to identify security risks associated with
- emerging technologies such as machine learning, artificial
- intelligence, blockchain, quantum computing, and 3-D printing.
- You’ll also learn to identify the top 10 web app threats and use
- the OWASP ZAP tool to identify web app vulnerabilities. Next,
- you'll explore how to securely develop and deploy software
- solutions. Lastly, you learn to distinguish between various testing
- techniques. This course is one of a collection of courses that
- prepares learners for the CompTIA Advanced Security Practitioner
- (CASP+) CAS-004 exam.
CompTIA CASP+ (CAS-004): Vulnerabilities & Hardening
Cybersecurity specialists must be able to identify
- vulnerabilities and apply security controls to mitigate threats. In
- this course, you'll learn how to identify the steps attackers take
- to gain access to resources and examine physical security issues.
- Next, you'll learn how network segmentation can increase security,
- how attackers use zombies and botnets, and how common attacks take
- place. Moving on, you'll explore common hardening techniques, how
- to scan for vulnerabilities, and how to setup up a WSUS server.
- Lastly, you'll learn how to use the Metasploit framework and crack
- WPA2 Wi-Fi passphrases. This course is one of a collection of
- courses that prepares learners for the CompTIA Advanced Security
- Practitioner (CASP+) CAS-004 exam.
CompTIA CASP+ (CAS-004): Digital Forensics
Gathering digital evidence for use in a court of law is done
- using very specific techniques. In this course, you'll learn to
- recognize the process by which hardware and software digital
- forensic tools are used to acquire and analyze evidence. Next,
- you'll learn to work with file system hashing and forensic disk
- image acquisition including creating and hashing a Linux disk
- image. You’ll also explore how to use FTK imager to acquire a
- forensic disk image. Lastly, you'll explore how to retrieve Android
- device information using the Android Debug Bridge and hide messages
- using steganography. This course is one of a collection of courses
- that prepares learners for the CompTIA Advanced Security
- Practitioner (CASP+) CAS-004 exam.
CompTIA CASP+ (CAS-004): Business Continuity
Business continuity measures ensure that business operations
- continue during disruptions. In this course, you'll learn how to
- identify common disaster recovery terms and techniques and plan how
- to respond to business disruptions. Next, you'll learn to identify
- how to use physical and logical redundancy, clustering and load
- balancing to increase system and application availability. Lastly,
- you'll explore cloud-based load balancing and backups including
- learning how to configure and deploy a Microsoft Azure Load
- Balancer as well as back up data using Microsoft Azure. This course
- is one of a collection of courses that prepares learners for the
- CompTIA Advanced Security Practitioner (CASP+) CAS-004 exam.
Opties bij cursus
Wij bieden, naast de training, in sommige gevallen ook diverse extra leermiddelen aan. Wanneer u zich gaat voorbereiden op een officieel examen dan raden wij aan om ook de extra leermiddelen te gebruiken die beschikbaar zijn bij deze training. Het kan voorkomen dat bij sommige cursussen alleen een examentraining en/of LiveLab beschikbaar is.
Examentraining (proefexamens)
In aanvulling op deze training kunt u een speciale examentraining aanschaffen. De examentraining bevat verschillende proefexamens die het echte examen dicht benaderen. Zowel qua vorm als qua inhoud. Dit is de ultieme manier om te testen of u klaar bent voor het examen.
LiveLab
Als extra mogelijkheid bij deze training kunt u een LiveLab toevoegen. U voert de opdrachten uit op de echte hardware en/of software die van toepassing zijn op uw Lab. De LiveLabs worden volledig door ons gehost in de cloud. U heeft zelf dus alleen een browser nodig om gebruik te maken van de LiveLabs. In de LiveLab omgeving vindt u de opdrachten waarmee u direct kunt starten. De labomgevingen bestaan uit complete netwerken met bijvoorbeeld clients, servers, routers etc. Dit is de ultieme manier om uitgebreide praktijkervaring op te doen.
Inloggen
Waarom Icttrainingen.nl?
Via ons opleidingsconcept bespaar je tot 80% op trainingen
Start met leren wanneer je wilt. Je bepaalt zelf het gewenste tempo
Spar met medecursisten en profileer je als autoriteit in je vakgebied.
Ontvang na succesvolle afronding van je cursus het certificaat van deelname van Icttrainingen.nl
Krijg inzicht in uitgebreide voortgangsinformatie van jezelf of je medewerkers
Kennis opdoen met interactieve e-learning en uitgebreide praktijkopdrachten door gecertificeerde docenten
Bestelproces
Zodra wij uw order en betaling hebben verwerkt, zetten wij uw trainingen klaar en kunt u aan de slag. Heeft u toch nog vragen over ons orderproces kunt u onderstaande button raadplegen.
Een zakelijk account aanmaken
Wanneer je bestelt namens je bedrijf doe je er goed aan om aan zakelijk account bij ons aan te maken. Tijdens het registratieproces kan je hiervoor kiezen. Je hebt vervolgens de mogelijkheden om de bedrijfsgegevens in te voeren, PO-nummer & referentie en een afwijkend factuuradres toe te voegen.
Betaalmogelijkheden
Je hebt bij ons diverse betaalmogelijkheden. Bij alle betaalopties ontvang je sowieso een factuur na de bestelling. Gaat je werkgever betalen, dan kies je voor betaling per factuur.
Cursisten aanmaken
Als je een zakelijk account hebt aangemaakt dan heb je de optie om cursisten/medewerkers aan te maken onder je account. Als je dus meerdere trainingen koopt, kan je cursisten aanmaken en de cursussen vervolgens uitdelen aan je collega’s. De cursisten krijgen een e-mail met inloggegevens en dat zij kunnen starten met de cursus.
Voortgangsinformatie
Met een zakelijk account ben je automatisch beheerder van je organisatie en kan je naast cursisten ook managers aanmaken. Beheerders en managers kunnen tevens voortgang inzien van alle cursisten binnen de organisatie.
Wat is inbegrepen?
Certificaat van deelname | ja |
Voortgangsbewaking | ja |
Award Winning E-learning | ja |
Geschikt voor mobiel | ja |
Kennis delen | Onbeperkte toegang tot onze community met IT professionals |
Studieadvies | Onze consultants zijn beschikbaar om je te voorzien van studieadvies |
Studiemateriaal | Gecertificeerde docenten met uitgebreide kennis over de onderwerpen |
Service | Service via chat, telefoon, e-mail (razendsnel) |
Platform
Na bestelling van je training krijg je toegang tot ons innovatieve leerplatform. Hier vind je al je gekochte (of gevolgde) trainingen, kan je eventueel cursisten aanmaken en krijg je toegang tot uitgebreide voortgangsinformatie.
FAQ
- Op welke manieren kan ik betalen?
- Hoe werkt het bestelproces?
- Kan ik persoonlijke begeleiding krijgen bij mijn training?
Niet gevonden wat je zocht? Bekijk alle vragen of neem contact op.