Fundamental Security
CompTIA Security+
CompTIA Security+ (SY0-701) is a globally recognized entry-to-intermediate level cybersecurity certification designed to validate the essential skills required to secure networks, systems, and applications in modern IT environments. This hands-on training program covers core cybe...
- Live Interactive Learning
- Hands-On Project-Based Training
- Real-World Cybersecurity Labs
- Industry-Aligned Security+ (SY0-701) Curriculum
Overview
CompTIA Security+ (SY0-701) is a globally recognized entry-to-intermediate level cybersecurity certification designed to validate the essential skills required to secure networks, systems, and applications in modern IT environments. This hands-on training program covers core cybersecurity concepts including risk management, threat detection, vulnerability management, identity and access management, network security, incident response, governance, compliance, and data protection. The course equips learners with practical skills to identify, analyze, respond to, and mitigate security threats, making it an ideal starting point for a career in cybersecurity.
Prerequisites
- At least 2 years of IT administration experience with a focus on security (preferred)
- Hands-on experience in technical information security (beneficial)
- Basic understanding of cybersecurity concepts and security operations
Key Features
Hands-On Project-Based Training
Real-World Cybersecurity Labs
Industry-Aligned Security+ (SY0-701) Curriculum
Practical Training on Threat Detection, Risk Management, Incident Response, and...
Hands-On Exercises for Security Operations and Penetration Testing Concepts
Curriculum
Fundamental Security
Topics:
- Confidentiality, Integrity, and Availability (CIA)
- Non-repudiation
- Authentication, Authorization, and Accounting (AAA)
- Gap analysis
- Zero Trust
- Physical security
- Deception and disruption technology
- Security control categories
- Security control types
Hands-On:
- Perform System Configuration Gap Analysis
- Configuring Examples of Security Control Types
Skills You will Learn:
Skills You will Learn:
- Data Protection Principles
- Implementing Zero Trust Model
- Protecting Physical Assets
Threat Types
Threat Types
Topics:
- Threat actors
- Attributes of actors
- Motivations
- Message-based
- Image-based
- File-based
- Voice call
- Removable device
- Vulnerable software
- Unsupported systems and applications
- Unsecure networks
- Open service ports
- Default credentials
- Supply chain
- Human vectors/social engineering
Hands-On:
- Finding Open Service Ports
- Using SET to Perform Social Engineering
Skills You Will Learn:
Skills You Will Learn:
- Understanding Threat Actors
- Identifying Actor Attributes
- Analyzing Threat Motivations
Cryptographic Solutions
Cryptographic Solutions
Topics:
- Public key infrastructure (PKI)
- Encryption
- Tools
- Obfuscation
- Hashing
- Salting
- Digital signatures
- Key stretching
- Blockchain
- Open public ledger
- Certificates
Hands-On:
- Using Storage Encryption
- Using Hashing and Salting
Skills You Will Learn:
Skills You Will Learn:
- Implementing PKI Systems
- Mastering Data Encryption
- Utilizing Security Tools
Identity and Access Management
Identity and Access Management
Topics:
- Provisioning/de-provisioning user accounts
- Permission assignments and implications
- Identity proofing
- Federation
- Single sign-on (SSO)
- Interoperability
- Attestation
- Access controls
- Multifactor authentication
- Password concepts
- Privileged access management tools
Hands-On:
- Managing Password Security
- Managing Permissions
Skills You will Learn:
Skills You will Learn:
- Managing User Accounts
- Assigning User Permissions
- Implementing Identity Proofing
Enterprise and Cloud Network Architecture
Enterprise and Cloud Network Architecture
Topics:
- Architecture and infrastructure concepts
- Considerations
- Infrastructure considerations
- Secure communication/access
- Selection of effective controls
Hands-On:
- Setting up Remote Access
- Using TLS Tunneling
- Using Containers
- Using Virtualization
Skills You will Learn:
Skills You will Learn:
- Understanding Infrastructure Architecture
- Evaluating Infrastructure Needs
- Choosing Effective Controls
Resiliency and Site Security
Resiliency and Site Security
Topics:
- High availability
- Site considerations
- Platform diversity
- Multi-cloud systems
- Continuity of operations
- Capacity planning
- Testing
- Backups
- Power
- Acquisition/procurement process
- Assignment/accounting
- Monitoring/asset tracking
- Disposal/decommissioning
Hands-On:
- Implement Backups
- Performing Drive Sanitization
Skills You will Learn:
Skills You will Learn:
- Evaluating Site Requirements
- Managing Diverse Platforms
- Ensuring Operational Continuity
Vulnerability Management
Vulnerability Management
Topics:
- Application
- Operating system (OS)-based
- Web-based
- Hardware Virtualization
- Cloud-specific
- Supply chain Cryptographic
- Misconfiguration
- Mobile device
- Zero-day
- Identification methods
- Analysis
- Vulnerability response and remediation
- Validation of remediation
- Reporting
Hands-On:
- Exploiting and Detecting SQLi
- Working with Threat Feeds
- Performing Vulnerability Scans
Skills You will Learn:
Skills You will Learn:
- Application Security Practices
- Web-Based Threat Mitigation
- Zero-Day Threat Mitigation
Network and Application Security
Network and Application Security
Topics:
- Secure baselines
- Hardening targets
- Wireless devices
- Mobile solutions
- Wireless security settings
- Application security
- Sandboxing
- Monitoring
- Firewall IDS/IPS
- Web filter
- Operating system security
- Implementation of secure protocols
- DNS filtering
- Email security
- File integrity monitoring
- DLP Network access control (NAC)
- Endpoint detection and response (EDR)/extended detection and response (XDR)
- User behavior analytics
Hands-On:
- Understanding Security Baselines
- Implementing a Firewall
- Performing DNS Filtering
- Configuring System Monitoring
Skills You will Learn:
Skills You will Learn:
- Managing Firewall Settings
- Implementing Mobile Security
- Conducting User Behavior Analytics
Endpoint Security
Endpoint Security
Topics:
- Segmentation
- Access control
- Application allow list
- Isolation
- Patching
- Encryption
- Monitoring
- Least privilege
- Configuration enforcement
- Decommissioning
- Hardening techniques
Hands-On:
- Using Group Policy
- Hardening
Skills You will Learn:
Skills You will Learn:
- Conducting System Patching
- Enforcing Least Privilege
- Managing System Decommissioning
Incident Response and Monitoring
Incident Response and Monitoring
Topics:
- Monitoring computing resources
- Activities
- Tools
- Process
- Training
- Testing
- Root cause analysis
- Threat hunting
- Digital forensics
- Log data
- Data sources
Hands-On:
- Incident Response - Detection
- Performing Digital Forensics
- Performing Root Cause Analysis
- Using Network Sniffers
Skills You will Learn:
Skills You will Learn:
- Activity Tracking and Analysis
- Utilizing Monitoring Tools
- Analyzing Log Data
Indicators of Malicious Activity
Indicators of Malicious Activity
Topics:
- Malware attacks
- Physical attacks
- Network attacks Application attacks
- Cryptographic attacks
- Password attacks
- Indicators
Hands-On:
- Detecting and Responding to Malware
- Understanding OnPath Attacks
Skills You will Learn:
Skills You will Learn:
- Mitigating Malware Attacks
- Preventing Physical Attacks
- Identifying Security Indicators
Security Governance
Security Governance
Topics:
- Business processes impacting security operation
- Technical implications Documentation
- Version control
- Use cases of automation and scripting
- Benefits
- Guidelines
- Policies
- Standards
- Procedures
- External considerations
- Monitoring and revision
- Types of governance structures
- Roles and responsibilities for systems and data
Hands-On:
- Using a Playbook
- Implementing Allow Lists and
- Deny Lists Cases of Automation and Scripting
Skills You will Learn:
Skills You will Learn:
- Implementing Version Control
- Adhering to Tech Policies
- Monitoring and Revising Systems
Risk Management Processes
Risk Management Processes
Topics:
- Risk identification
- Risk assessment Risk analysis
- Risk register
- Risk tolerance
- Risk appetite
- Risk management strategies
- Risk reporting
- Business impact analysis
- Vendor assessment
- Vendor selection
- Agreement types
- Vendor monitoring
- Questionnaires
- Rules of engagement
- Attestation
- Internal
- External
- Penetration testing
Hands-On:
- Performing Reconnaissance
- Performing Penetration Testing
Skills You Will Learn:
Skills You Will Learn:
- Performing Risk Analysis
- Conducting Business Impact Analysis
- Assessing Vendor Performance
Data Protection and Compliance
Data Protection and Compliance
Topics:
- Data types
- Data classifications
- General data considerations
- Methods to secure data
- Compliance reporting
- Consequences of non-compliance
- Compliance monitoring
- Privacy
- Phishing
- Anomalous behavior recognition
- User guidance and training
- Reporting and monitoring
- Development Execution
Hands-On:
- Training and Awareness through Simulation
- Discovering Anomalous Behavior
Skills You will Learn:
Skills You will Learn:
- Classifying Data Effectively
- Monitoring Compliance Levels
Detecting Phishing Attempts
Who Can Do
Ideal for
FAQ
What is the CompTIA Security+ Certification?
The CompTIA Security+ certification is a global certification exam that validates your core security skills and allows you to pursue a career in IT security. This practical certification emphasizes hands-on skills, ensuring that security professionals are better equipped to solve more problems. It is the first security certification that IT professionals should obtain. It provides a foundation for intermediate-level cybersecurity roles and enables them to move on to higher-level positions. CompTIA Security+ certifications ensure that cybersecurity professionals are not just able to identify security incidents but also respond to them.
What is the validity of the CompTIA Security+ Certification?
The CompTIA Security+ certification is valid for three years from the date you clear your exam.
How do I earn a CompTIA Security+ 701 certification in?
To earn the CompTIA Security+ 701 certification, you must pass the SY0-701 exam with a minimum score of 750. The exam consists of 90 questions and has a duration of 90 minutes.
