Cybersecurity Analyst Plus - CYSA+
Class Overview
CompTIA’s Cybersecurity Analyst Plus , or CySA+, is a global IT workforce certification that applies behavioral analytics to networks and devices to prevent, detect, and combat cybersecurity threats through continuous security monitoring.
CySA+ is the only intermediate high-stakes cybersecurity analyst certification with performance-based questions that covers core security analyst skills while emphasizing software and application security, automation, threat hunting, and IT regulatory compliance.
CySA+ validates that candidates have skills to detect and analyze malicious activity; understand threat intelligence and management; respond to attacks and vulnerabilities; perform incident responses; and other related security skills.
CYSA+ is approved by DoD 8140 for the following work roles:
111 - All-source analyst
141 - Warning analyst
211 - Forensics Analyst
212 - Cyber defense forensics analyst
221 - Cyber crime investigator
461 - Systems security analyst
511 - Cyber defense analyst
531 - Cyber defense incident responder
541 - Vulnerability assessment analyst
612 - Security control assessor
Class Details
Objectives
After taking this training, the student should be able to:
- Detect and analyze indicators of malicious activity.
- Understand threat hunting and threat intelligence concepts.
- Use appropriate tools and methods to manage, prioritize, and respond to attacks and vulnerabilities.
- Perform incident response processes.
- Understand reporting and communication concepts related to vulnerability management and incident
response activities.
Prerequisite Knowledge Advisory
Although there are no formal prerequisites, before taking this class you should have:
- CompTIA Network+, Security+, or equivalent.
- At least 4 years’ hands-on experience as an incident response analyst or security operations center (SOC) analyst, or equivalent experience.
Additionally:
- Knowledge of basic network terminology and functions (such as OSI Model, Topology, Ethernet, Wi-Fi, switches, routers).
- Understanding of TCP/IP addressing, core protocols, and troubleshooting tools.
- Ability to identify network attack strategies and defenses.
- Knowledge of the technologies and uses of cryptographic standards and products.
- Ability to identify network- and host-based security technologies and practices.
- Ability to describe the standards and products used to enforce security on web and communications technologies.
Required Exam for CySA+ Certification
Exam: CS0-003
Proctor: PearsonVUE
Recertification: 3 years
CySA+ Training Class Outline
Lesson 1: Understanding Vulnerability Response, Handling, and Management
Lesson 2: Exploring Threat Intelligence and Threat Hunting Concepts
Lesson 3: Explaining Important System and Network Architecture Concepts
Lesson 4: Understanding Process Improvement in Security Operations
Lesson 5: Implementing Vulnerability Scanning Methods
Lesson 6: Performing Vulnerability Analysis
Lesson 7: Communicating Vulnerability Information
Lesson 8: Explaining Incident Response Activities
Lesson 9: Demonstrating Incident Response Communication
Lesson 10: Applying Tools to Identify Malicious Activity
Lesson 11: Analyzing Potentially Malicious Activity
Lesson 12: Understanding Application Vulnerability Assessment
Lesson 13: Exploring Scripting Tools and Analysis Concepts
Lesson 14: Understanding Application Security and Attack Mitigation Best Practices
Have questions?
Ready to get started?
Important Notice: NC-Expert does not accept enrollment applications from independent individuals. We require that employers pay for their employees. We continue to service corporate clients, using B2B transactions, with no change in service. We apologize for any inconvenience.
Our vision is to provide innovative, relevant, and accessible technical consulting and training for executives and engineers which will enable them to directly impact the growth of their companies.