CompTIA Security+ (SY0-701)

Master the latest cybersecurity concepts to mitigate emerging real-world cyber threats.

(SY0-701.AB1) / ISBN : 978-1-64459-581-7
Lessons
Lab
TestPrep
AI Tutor (Add-on)
Instructor-Led (Add-on)
Get A Free Trial

About This Course

The CompTIA Security+ (SY0-701) course is totally aligned with the certification exam objectives. Discover a fun way to learn and practice the baseline cybersecurity concepts to safeguard networks, systems, and data with our interactive lessons, gamified test-preps, hands-on Labs, flashcards, glossary, quizzes, practice tests, and more. This comprehensive training course prepares you for the Security+ SY0-701 exam by covering a wide range of topics, including the latest threats, automation technologies, zero trust principles, IoT security best practices, and effective risk management strategies. 

Skills You’ll Get

  • Understanding of network security principles, protocols & best practices
  • Grasp system security concepts: hardening, configuration management, and vulnerability assessment
  • Well-versed with cryptographic concepts and encryption techniques
  • Expertise in incident response planning
  • Ability to analyze and troubleshoot security risks
  • Knowledge of security regulations and compliance frameworks
  • Knowledge of IoT security challenges and mitigation strategies
  • Implement best practices for hardware, software, cloud and architectures
  • Ability to analyze complex security scenarios and make informed decisions

Get the support you need. Enroll in our Instructor-Led Course.

1

Introduction

  • Goals and Methods
  • Who Should Read This Course?
  • CompTIA Security+ Exam Topics
2

Comparing and Contrasting the Various Types of Controls

  • Control Categories
  • Control Types
  • Review Key Topics
  • Review Questions
3

Summarizing Fundamental Security Concepts

  • Confidentiality, Integrity, and Availability (CIA)
  • Non-repudiation
  • Authentication, Authorization, and Accounting (AAA)
  • Gap Analysis
  • Zero Trust
  • Physical Security
  • Deception and Disruption Technology
  • Review Key Topics
  • Review Questions
4

Understanding Change Management’s Security Impact

  • Business Processes Impacting Security Operations
  • Technical Implications
  • Documentation
  • Version Control
  • Review Key Topics
  • Review Questions
5

Understanding the Importance of Using Appropriate Cryptographic Solutions

  • Public Key Infrastructure (PKI)
  • Encryption
  • Transport/Communication
  • Symmetric Versus Asymmetric Encryption
  • Key Exchange
  • Algorithms
  • Key Length
  • Tools
  • Trusted Platform Module
  • Hardware Security Module
  • Key Management System
  • Secure Enclave
  • Obfuscation
  • Steganography
  • Hashing
  • Salting
  • Digital Signatures
  • Key Stretching
  • Blockchain
  • Open Public Ledger
  • Certificates
  • Review Key Topics
  • Review Questions
6

Comparing and Contrasting Common Threat Actors and Motivations

  • Threat Actors
  • Attributes of Actors
  • Motivations
  • War
  • Review Key Topics
  • Review Questions
7

Understanding Common Threat Vectors and Attack Surfaces

  • Message-Based
  • Image-Based
  • File-Based
  • Voice Call
  • Removable Device
  • Vulnerable Software
  • Unsupported Systems and Applications
  • Unsecure Networks
  • Open Service Ports
  • Default Credentials
  • Supply Chain
  • Human Vectors/Social Engineering
  • Review Key Topics
  • Review Questions
8

Understanding Various Types of Vulnerabilities

  • Application
  • Operating System (OS)–Based
  • Web-Based
  • Hardware
  • Virtualization
  • Cloud Specific
  • Supply Chain
  • Cryptographic
  • Misconfiguration
  • Mobile Device
  • Zero-Day Vulnerabilities
  • Review Key Topics
  • Review Questions
9

Understanding Indicators of Malicious Activity

  • Malware Attacks
  • Physical Attacks
  • Network Attacks
  • Application Attacks
  • Cryptographic Attacks
  • Password Attacks
  • Indicators
  • Review Key Topics
  • Review Questions
10

Understanding the Purpose of Mitigation Techniques Used to Secure the Enterprise

  • Segmentation
  • Access Control
  • Isolation
  • Patching
  • Encryption
  • Monitoring
  • Least Privilege
  • Configuration Enforcement
  • Decommissioning
  • Hardening Techniques
  • Review Key Topics
  • Review Questions
11

Comparing and Contrasting Security Implications of Different Architecture Models

  • Architecture and Infrastructure Concepts
  • Considerations
  • Review Key Topics
  • Review Questions
12

Applying Security Principles to Secure Enterprise Infrastructure

  • Infrastructure Considerations
  • Secure Communication/Access
  • Selection of Effective Controls
  • Review Key Topics
  • Review Questions
13

Comparing and Contrasting Concepts and Strategies to Protect Data

  • Data Types
  • Data Classifications
  • General Data Considerations
  • Methods to Secure Data
  • Review Key Topics
  • Review Questions
14

Understanding the Importance of Resilience and Recovery in Security Architecture

  • High Availability
  • Site Considerations
  • Platform Diversity
  • Multi-Cloud System
  • Continuity of Operations
  • Capacity Planning
  • Testing
  • Backups
  • Power
  • Review Key Topics
  • Review Questions
15

Applying Common Security Techniques to Computing Resources

  • Secure Baselines
  • Hardening Targets
  • Wireless Devices
  • Mobile Solutions
  • Connection Methods
  • Wireless Security Settings
  • Application Security
  • Sandboxing
  • Monitoring
  • Review Key Topics
  • Review Questions
16

Understanding the Security Implications of Hardware, Software, and Data Asset Management

  • Acquisition/Procurement Process
  • Assignment/Accounting
  • Monitoring/Asset Tracking
  • Disposal/Decommissioning
  • Review Key Topics
  • Review Questions
17

Understanding Various Activities Associated with Vulnerability Management

  • Identification Methods
  • Analysis
  • Vulnerability Response and Remediation
  • Validation of Remediation
  • Reporting
  • Review Key Topics
  • Review Questions
18

Understanding Security Alerting and Monitoring Concepts and Tools

  • Monitoring and Computing Resources
  • Activities
  • Tools
  • Review Key Topics
  • Review Questions
19

Modifying Enterprise Capabilities to Enhance Security

  • Firewall
  • IDS/IPS
  • Web Filter
  • Operating System Security
  • Implementation of Secure Protocols
  • DNS Filtering
  • Email Security
  • File Integrity Monitoring
  • DLP
  • Network Access Control (NAC)
  • Endpoint Detection and Response (EDR)/Extended Detection and Response (XDR)
  • User Behavior Analytics
  • Review Key Topics
  • Review Questions
20

Implementing and Maintaining Identity and Access Management

  • Provisioning/De-provisioning User Accounts
  • Permission Assignments and Implications
  • Identity Proofing
  • Federation
  • Single Sign-On (SSO)
  • Interoperability
  • Attestation
  • Access Controls
  • Multifactor Authentication (MFA)
  • Password Concepts
  • Privileged Access Management Tools
  • Review Key Topics
  • Review Questions
21

Understanding the Importance of Automation and Orchestration Related to Secure Operations

  • Use Cases of Automation and Scripting
  • Benefits
  • Other Considerations
  • Review Key Topics
  • Review Questions
22

Understanding Appropriate Incident Response Activities

  • Process
  • Training
  • Testing
  • Root Cause Analysis
  • Threat Hunting
  • Digital Forensics
  • Review Key Topics
  • Review Questions
23

Using Data Sources to Support an Investigation

  • Log Data
  • Data Sources
  • Review Key Topics
  • Review Questions
24

Summarizing Elements of Effective Security Governance

  • Guidelines
  • Policies
  • Standards
  • Procedures
  • External Considerations
  • Monitoring and Revision
  • Types of Governance Structures
  • Roles and Responsibilities for Systems and Data
  • Review Key Topics
  • Review Questions
25

Understanding Elements of the Risk Management Process

  • Risk Identification
  • Risk Assessment
  • Risk Analysis
  • Risk Register
  • Risk Tolerance
  • Risk Appetite
  • Risk Management Strategies
  • Risk Reporting
  • Business Impact Analysis
  • Review Key Topics
  • Review Questions
26

Understanding the Processes Associated with Third-Party Risk Assessment and Management

  • Vendor Assessment
  • Vendor Selection
  • Agreement Types
  • Vendor Monitoring
  • Questionnaires
  • Rules of Engagement
  • Review Key Topics
  • Review Questions
27

Summarizing Elements of Effective Security Compliance

  • Compliance Reporting
  • Consequences of Non-compliance
  • Compliance Monitoring
  • Attestation and Acknowledgment
  • Privacy
  • Review Key Topics
  • Review Questions
28

Understanding Types and Purposes of Audits and Assessments

  • Attestation
  • Internal
  • External
  • Penetration Testing
  • Review Key Topics
  • Review Questions
29

Implementing Security Awareness Practices

  • Phishing
  • Anomalous Behavior Recognition
  • User Guidance and Training
  • Reporting and Monitoring
  • Development
  • Execution
  • Review Key Topics
  • Review Questions
30

Final Preparation

  • Hands-on Activities
  • Suggested Plan for Final Review and Study
  • Summary

1

Summarizing Fundamental Security Concepts

  • Identifying Access Badge Areas
  • Implementing Physical Security
2

Understanding the Importance of Using Appropriate Cryptographic Solutions

  • Examining PKI Certificates
  • Creating Asymmetric Key Pairs
  • Using Symmetric Encryption
  • Using BitLocker in Windows 10
  • Performing Steganography Using OpenStego
  • Encrypting Files with EFS
  • Creating Certificates with OpenSSL
3

Understanding Common Threat Vectors and Attack Surfaces

  • Scanning the Network
  • Using Social Engineering Techniques to Plan an Attack
4

Understanding Various Types of Vulnerabilities

  • Exploiting a TOCTOU Vulnerability
  • Exploiting an Overflow Vulnerability
  • Examining Application Vulnerabilities
  • Performing SQL Injection in DVWA
  • Performing an XSS Attack in DVWA
  • Detecting Virtualization
5

Understanding Indicators of Malicious Activity

  • Opening OWASP ZAP and Starting Brute Force Attack
  • Examining Spyware
  • Spoofing a MAC Address with SMAC
  • Using Amazon Transcribe and Polly
  • Observing an MD5-Generated Hash Value
  • Conducting a Cross-Site Request Forgery Attack
  • Cracking Passwords Using the Cain & Abel Tool
  • Cracking a Linux Password Using John the Ripper
6

Understanding the Purpose of Mitigation Techniques Used to Secure the Enterprise

  • Using the chmod Command
7

Applying Security Principles to Secure Enterprise Infrastructure

  • Implementing a Proxy Server
  • Binding a Site Using IIS
  • Configuring a VPN
  • Examining Kerberos Settings
8

Comparing and Contrasting Concepts and Strategies to Protect Data

  • Creating File Hashes
9

Understanding the Importance of Resilience and Recovery in Security Architecture

  • Gathering Site Information
  • Scheduling a Server Backup
10

Applying Common Security Techniques to Computing Resources

  • Creating and Enforcing a Security Template
  • Enforcing Password Policies
  • Installing a RADIUS Server
11

Understanding Security Alerting and Monitoring Concepts and Tools

  • Conducting Vulnerability Scanning Using Nessus
  • Consulting a Vulnerability Database
12

Modifying Enterprise Capabilities to Enhance Security

  • Configuring a Network Firewall
13

Implementing and Maintaining Identity and Access Management

  • Examining Active Directory Objects
14

Understanding Appropriate Incident Response Activities

  • Examining MITRE ATT&CK
  • Completing the Chain of Custody
15

Using Data Sources to Support an Investigation

  • Viewing Linux Event Logs
  • Viewing Windows Event Logs
  • Capturing Credentials On-Path
16

Summarizing Elements of Effective Security Governance

  • Cracking Passwords Using Rainbow Tables
17

Understanding Types and Purposes of Audits and Assessments

  • Using the theHarvester Tool
18

Implementing Security Awareness Practices

  • Using Anti-Phishing Tools

Any questions?
Check out the FAQs

Still have unanswered questions and need to get in touch?

Contact Us Now

Preparing for the CompTIA Security+ SY0-701 requires a structured approach and dedicated study plan, with emphasis on the following:

  • Study the course material diligently
  • Understand the core cybersecurity principles
  • Create a dedicated study plan
  • Gain hands-on experience with practice exercises 
  • Take practice exams that are aligned with exam objectives

Both SY0-601 and SY0-701 are conducted by CompTIA to validate your understanding of cybersecurity fundamentals. The key differentiation is that SY0-601 offers a comprehensive approach to cybersecurity whereas SY0-701 covers updated content and new domains, more in sync with the latest cybersecurity challenges.

There are many exciting job opportunities available to those with a CompTIA Security+ certification like Network Security Operations, Network Security Analyst, Security Architect, Penetration Tester, Cloud Penetration Tester, and Web App Penetration Tester.

The exam cost is USD 392.

  The passing score for this exam is 750 (on a scale of 100-900).

Move One Step Closer To Success

Hands-on CompTIA Security+ course to help you pass the exam in a single attempt.

$279.99

Buy Now

Related Courses

All Course
scroll to top