CompTIA® CySA+ (CS0-002) Complete Course

Description

You will learn the technical details of the cybersecurity field, including cyber threats, secure network architecture, risk management, the ability to perform log analysis, configuration assessments, and more.

The CompTIA CySA+ (Cybersecurity Analyst+) (CS0-002) certification is a vendor-neutral certification that validates your knowledge and ability to conduct intermediate-level cybersecurity skills.

This certification fills the gap between the entry-level CompTIA Security+ exam (for those with about 1 year in the field) and the advanced-level CompTIA Advanced Security Practitioner (for those with at least 5 years in the field).

This CompTIA CySA+ (CS0-002) course is designed for IT Security analysts, vulnerability analysts, threat intelligence analysts, or anyone who is trying to get a better understanding of the concepts involved in conducting cybersecurity analysis, to include threat management, vulnerability management, cyber incident response, security architecture, and the toolsets associated with these cybersecurity efforts.

By the end of the course, you will be comfortable with the technical tasks required of a cyber security analyst and be ready to take on the role of a cybersecurity analyst in your organization!

This course is designed to help prepare you for the CompTIA CySA+ (CS0-002) certification exam and covers all five domains:

Threat and Vulnerability Management (22%)
Software and Systems Security (18%)
Security Operations and Monitoring (25%)
Incident Response (25%)
Compliance and Assessment (13%)

Who this course is for?

Students preparing for the CompTIA CySA+ (CS0-002) certification exam
Threat analysts
Vulnerability analysts
Risk management professionals
Entry-level incident response professionals

Course Learning Objectives

Take and pass the CompTIA CySA+ (CS0-002) certification exam
Understand how to conduct a cyber incident response
Know what different types of cybersecurity tools are on the market and which to use in different scenarios
Understand threat and vulnerability management concepts
Understand how to setup a strong security architecture for your networks
Know what different types of cybersecurity tools are on the market and which to use in different scenarios

Course prerequisites

Basic understanding of network and network security
Understand the concepts covered by the Network+ and Security+ exams

Course Curriculum

1. Introduction

Total items: 5 - Total Time: 00:15:14

No.

Title

Type

Status

Welcome to the Course

PLAY

Download the Study Guide

PDF

100% Pass Guarantee

VIDEO

Intro to LAB

VIDEO

Discovering the Lab Environment

LAB

2. Identify Security Control Types

Total items: 6 - Total Time: 00:32:30

No.

Title

Type

Status

Identify Security Control Types (Introduction)

VIDEO

Cybersecurity Roles and Responsibilities

VIDEO

Security Operations Center (SOC)

VIDEO

Security Control Categories

VIDEO

Selecting Security Controls

VIDEO

Quiz: Identify Security Control Types

QUIZ

3. Threat Intelligence

Total items: 7 - Total Time: 00:34:38

No.

Title

Type

Status

Threat Intelligence Sharing (Introduction)

VIDEO

Security and Threat Intelligence

VIDEO

Intelligence Cycle

VIDEO

Intelligence Sources

VIDEO

Information Sharing and Analysis Centers (ISACS)

VIDEO

Threat Intelligence Sharing

VIDEO

Quiz: Threat Intelligence

QUIZ

4. Classifying Threats

Total items: 8 - Total Time: 00:56:23

No.

Title

Type

Status

Classifying Threats (Introduction)

VIDEO

Threat Classification

VIDEO

Threat Actors

VIDEO

Malware

VIDEO

Threat Research

VIDEO

Attack Frameworks

VIDEO

Indicator Management

VIDEO

Quiz: Classifying Threat

QUIZ

5. Threat Hunting

Total items: 8 - Total Time: 00:37:08

No.

Title

Type

Status

Threat Hunting (Introduction)

VIDEO

Threat Modeling

VIDEO

Threat Hunting

VIDEO

Open-source Intelligence

VIDEO

Google Hacking

VIDEO

Profiling Techniques

VIDEO

Harvesting Techniques

VIDEO

Quiz: Threat Hunting

QUIZ

6. Network Forensics

Total items: 10 - Total Time: 01:03:10

No.

Title

Type

Status

Network Forensics (Introduction)

VIDEO

Network Forensic Tools

VIDEO

tcpdump

VIDEO

Wireshark

VIDEO

Flow Analysis

VIDEO

IP and DNS Analysis

VIDEO

URL Analysis

VIDEO

Conduct Packet Analysis

VIDEO

Labs: Analyzing Output from Network Security Monitoring Tools

LAB

10.

Quiz: Network Forensics

QUIZ

7. Appliance Monitoring

Total items: 12 - Total Time: 01:24:39

No.

Title

Type

Status

Appliance Monitoring (Introduction)

VIDEO

Firewall Logs

VIDEO

Firewall Configurations

VIDEO

Proxy Logs

VIDEO

Web Application Firewall Logs

VIDEO

IDS and IPS Configuration

VIDEO

IDS and IPS Logs

VIDEO

Port Security Configuration

VIDEO

NAC Configuration

VIDEO

10.

Analysis of Security Appliances

VIDEO

11.

Labs: Analyzing Output from Security Applicance Logs

LAB

12.

Quiz: Application Monitoring

QUIZ

8. Endpoint Monitoring

Total items: 11 - Total Time: 01:22:27

No.

Title

Type

Status

Endpoint Monitoring (Introduction)

VIDEO

Endpoint Analysis

VIDEO

Sandboxing

VIDEO

Reverse Engineering

VIDEO

Malware Exploitation

VIDEO

Behavior Analysis

VIDEO

Malware Analysis (demo)

VIDEO

EDR Configuration

VIDEO

Blacklisting and Whitelisting

VIDEO

10.

Labs: Analyzing Output from Endpoint Security Monitoring Tools

LAB

11.

Quiz: Endpoint Monitoring

QUIZ

9. Email Monitoring

Total items: 10 - Total Time: 00:46:01

No.

Title

Type

Status

Email Monitoring (Introduction)

VIDEO

Email IOCs

VIDEO

Email Header Analysis

VIDEO

Email Content Analysis

VIDEO

Email Server Security

VIDEO

SMTP Log Analysis

VIDEO

Email Message Security

VIDEO

Analyzing Email Headers

VIDEO

Labs: Analyzing Email Headers

LAB

10.

Quiz: Email Monitoring

QUIZ

10. Configuring Your SIEM

Total items: 9 - Total Time: 00:53:01

No.

Title

Type

Status

Configuring Your SIEM (Introduction)

VIDEO

SIEM

VIDEO

Security Data Collection

VIDEO

Data Normalization

VIDEO

Event Log

VIDEO

Syslog

VIDEO

Configuring a SIEM Agent

VIDEO

Labs: Configuring SIEM Agents and Collectors

LAB

Quiz: Configuring Your SIEM

QUIZ

11. Analyzing Your SIEM

Total items: 10 - Total Time: 01:09:54

No.

Title

Type

Status

Analyzing Your SIEM (Introduction)

VIDEO

SIEM Dashboards

VIDEO

Analysis and Detection

VIDEO

Trend Analysis

VIDEO

Rule and Query Writing

VIDEO

Searching and Piping Commands

VIDEO

Scripting Tools

VIDEO

Analyzing, Filtering, and Searching Logs

VIDEO

Labs: Analyzing, Filtering, and Searching Event Log and syslog Output

LAB

10.

Quiz: Analyzing Your SIEM

QUIZ

12. Digital Forensics

Total items: 15 - Total Time: 01:19:48

No.

Title

Type

Status

Digital Forensics (Introduction)

VIDEO

Digital Forensic Analysts

VIDEO

Forensics Procedures

VIDEO

Work Product Retention

VIDEO

Data Acquisition

VIDEO

Forensics Tools

VIDEO

Memory Acquisition

VIDEO

Disk Image Acquisition

VIDEO

Hashing

VIDEO

10.

Timeline Generation

VIDEO

11.

Carving

VIDEO

12.

Chain of Custody

VIDEO

13.

Collecting and Validating Evidence

VIDEO

14.

Labs: Collecting and Validating Digital Evidence

LAB

15.

Quiz: Digital Forensics

QUIZ

13. Analyzing Network IOCs

Total items: 15 - Total Time: 01:53:13

No.

Title

Type

Status

Analyzing Network IOCs (Introduction)

VIDEO

Analyzing Network IOCs

VIDEO

Traffic Spikes

VIDEO

Beaconing

VIDEO

Irregular P2P Communications

VIDEO

Rogue Devices

VIDEO

Scans and Sweeps

VIDEO

Nonstandard Port Usage

VIDEO

TCP Ports

VIDEO

10.

UDP Ports

VIDEO

11.

Data Exfiltration

VIDEO

12.

Covert Channels

VIDEO

13.

Analysis of Network IOCs

VIDEO

14.

Labs: Analyzing Network-related IoCs

LAB

15.

Quiz: Analyzing Network IOCs

QUIZ

14. Analyzing Host-related IOCs

Total items: 12 - Total Time: 01:04:40

No.

Title

Type

Status

Analyzing Host-related IOCs (Introduction)

VIDEO

Host-related IOCs

VIDEO

Malicious Processes

VIDEO

Memory Forensics

VIDEO

Consumption

VIDEO

Disk and File System

VIDEO

Unauthorized Privilege

VIDEO

Unauthorized Software

VIDEO

Unauthorized Change/Hardware

VIDEO

10.

Persistence

VIDEO

11.

Labs: Analyzing Host and Application IoCs

LAB

12.

Quiz: Analyzing Host-related IOCs

QUIZ

15. Analyzing Application-related IOCs

Total items: 9 - Total Time: 00:48:05

No.

Title

Type

Status

Analyzing Application-related IOCs

VIDEO

Application-related IOCs

VIDEO

Anomalous Activity

VIDEO

Service Interruptions

VIDEO

Application Logs

VIDEO

New Accounts

VIDEO

Virtualization Forensics

VIDEO

Mobile Forensics

VIDEO

Quiz: Analyzing Application-related IOCs

QUIZ

16. Analyzing Lateral Movement and Pivoting IOCs

Total items: 7 - Total Time: 00:34:38

No.

Title

Type

Status

Analyzing Lateral Movement and Pivoting IOCs

VIDEO

Lateral Movement and Pivoting

VIDEO

Pass the Hash

VIDEO

Golden Ticket

VIDEO

Lateral Movement

VIDEO

Pivoting

VIDEO

Quiz: Analyzing Lateral Movement and Pivoting IOCs

QUIZ

17. Incident Response Preparation

Total items: 9 - Total Time: 01:01:01

No.

Title

Type

Status

Incident Response Preparation (Introduction)

VIDEO

Incident Response Phases

VIDEO

Documenting Procedures

VIDEO

Data Criticality

VIDEO

Communication Plan

VIDEO

Reporting Requirements

VIDEO

Response Coordination

VIDEO

Training and Testing

VIDEO

Quiz: Incident Response Preparation

QUIZ

18. Detection and Containment

Total items: 8 - Total Time: 00:39:34

No.

Title

Type

Status

Detection and Containment (Introduction)

VIDEO

OODA Loop

VIDEO

Defensive Capabilities

VIDEO

Detection and Analysis

VIDEO

Impact Analysis

VIDEO

Incident Classification

VIDEO

Containment

VIDEO

Quiz: Detection and Containment

QUIZ

19. Eradication, Recovery, and Post-incident Actions

Total items: 9 - Total Time: 00:34:44

No.

Title

Type

Status

Eradication, Recovery, and Post-incident Actions (Introduction)

VIDEO

Eradication

VIDEO

Eradication Actions

VIDEO

Recovery

VIDEO

Recovery Actions

VIDEO

Post-Incident Activities

VIDEO

Lessons Learned

VIDEO

Labs: Observing IoCs during a Security Incident

LAB

Quiz: Eradication, Recovery, and Post-incident Actions

QUIZ

20. Risk Mitigation

Total items: 9 - Total Time: 01:12:45

No.

Title

Type

Status

Risk Mitigation (Introduction)

VIDEO

Risk Identification Process

VIDEO

Conducting an Assessment

VIDEO

Risk Calculation

VIDEO

Business Impact Analysis

VIDEO

Risk Prioritization

VIDEO

Communicating Risk

VIDEO

Training and Exercises

VIDEO

Quiz: Risk Mitigation

QUIZ

21. Frameworks, Policies, and Procedures

Total items: 7 - Total Time: 00:25:01

No.

Title

Type

Status

Frameworks, Policies, and Procedures (Introduction)

VIDEO

Enterprise Security Architecture

VIDEO

Prescriptive Frameworks

VIDEO

Risk-based Frameworks

VIDEO

Audits and Assessments

VIDEO

Continuous Monitoring

VIDEO

Quiz: Frameworks, Policies, and Procedures

QUIZ

22. Enumeration Tools

Total items: 15 - Total Time: 01:01:32

No.

Title

Type

Status

Enumeration Tools (Introduction)

VIDEO

Enumeration Tools

VIDEO

Nmap Discovery Scans

VIDEO

Nmap Port Scans

VIDEO

Nmap Port States

VIDEO

Nmap Fingerprinting Scans

VIDEO

Using Nmap

VIDEO

Hping

VIDEO

Labs: Analyzing Output from Topology and Host Enumeration Tools

LAB

10.

Responder

VIDEO

11.

Wireless Assessment Tools

VIDEO

12.

Hashcat

VIDEO

13.

Testing Credential Security

VIDEO

14.

Labs: Testing Credential Security

LAB

15.

Quiz: Enumeration Tools

QUIZ

23. Vulnerability Scanning

Total items: 13 - Total Time: 01:04:57

No.

Title

Type

Status

Vulnerability Scanning (Introduction)

VIDEO

Identifying Vulnerabilities

VIDEO

Scanning Workflow

VIDEO

Scope Considerations

VIDEO

Scanner Types

VIDEO

Scanning Parameters

VIDEO

Scheduling and Constraints

VIDEO

Vulnerability Feeds

VIDEO

Scan Sensitivity

VIDEO

10.

Scanning Risks

VIDEO

11.

Conducting Scans

VIDEO

12.

Labs: Configuring Vulnerability Scanning and Analyzing Outputs

LAB

13.

Quiz: Vulnerability Scanning

QUIZ

24. Analyzing Output from Vulnerability Scanners

Total items: 10 - Total Time: 00:54:13

No.

Title

Type

Status

Analyzing Output from Vulnerability Scanners (Introduction)

VIDEO

Scan Reports

VIDEO

Common Identifiers

VIDEO

CVSS

VIDEO

Vulnerability Reports

VIDEO

Nessus

VIDEO

OpenVAS and Qualys

VIDEO

Assessing Scan Outputs

VIDEO

Labs: Assessing Vulnerability Scan Outputs

LAB

10.

Quiz: Analyzing Output from Vulnerability Scanners

QUIZ

25. Mitigating Vulnerabilities

Total items: 6 - Total Time: 00:32:01

No.

Title

Type

Status

Mitigating Vulnerabilities (Introduction)

VIDEO

Remediation and Mitigation

VIDEO

Configuration Baselines

VIDEO

Hardening and Patching

VIDEO

Remediation Issues

VIDEO

Quiz: Mitigating Vulnerabilities

QUIZ

26. Identity and Access Management Solutions

Total items: 12 - Total Time: 00:50:06

No.

Title

Type

Status

Identity and Access Management Solutions (Introduction)

VIDEO

Identity and Access Management

VIDEO

Password Policies

VIDEO

SSO and MFA

VIDEO

Certificate Management

VIDEO

Federation

VIDEO

Privilege Management

VIDEO

IAM Auditing

VIDEO

Conduct and Use Policies

VIDEO

10.

Account and Permissions Audits

VIDEO

11.

Labs: Performing Account and Permissions Audits

LAB

12.

Quiz: Identity and Access Management Solutions

QUIZ

27. Network Architecture and Segmentation

Total items: 11 - Total Time: 01:00:46

No.

Title

Type

Status

Network Architecture and Segmentation (Introduction)

VIDEO

Asset and Change Management

VIDEO

Network Architecture

VIDEO

Segmentation

VIDEO

Jumpbox

VIDEO

Virtualization

VIDEO

Virtualized Infrastructure

VIDEO

Honeypots

VIDEO

Configuring Network Segmentation

VIDEO

10.

Labs: Configuring Network Segmentation and Security

LAB

11.

Quiz: Network Architecture and Segmentation

QUIZ

28. Hardware Assurance Best Practices

Total items: 6 - Total Time: 00:20:19

No.

Title

Type

Status

Hardware Assurance Best Practices (Introduction)

VIDEO

Supply Chain Assessment

VIDEO

Root of Trust

VIDEO

Trusted Firmware

VIDEO

Secure Processing

VIDEO

Quiz: Hardware Assurance Best Practices

QUIZ

29. Specialized Technology

Total items: 9 - Total Time: 00:48:31

No.

Title

Type

Status

Specialized Technology (Introduction)

VIDEO

Mobile Vulnerabilities

VIDEO

IoT Vulnerabilities

VIDEO

Embedded System Vulnerabilities

VIDEO

ICS & SCADA Vulnerabilities

VIDEO

Mitigating Vulnerabilities

VIDEO

Premise System Vulnerabilities

VIDEO

Vehicular Vulnerabilities

VIDEO

Quiz: Specialized Technology

QUIZ

30. Non-technical Data and Privacy Controls

Total items: 9 - Total Time: 00:45:28

No.

Title

Type

Status

Non-technical Data and Privacy Controls (Introduction)

VIDEO

Data Classification

VIDEO

Data Types

VIDEO

Legal Requirements

VIDEO

Data Policies

VIDEO

Data Retention

VIDEO

Data Ownership

VIDEO

Data Sharing

VIDEO

Quiz: Non-technical Data and Privacy Controls

QUIZ

31. Technical Data and Privacy Controls

Total items: 11 - Total Time: 00:40:54

No.

Title

Type

Status

Technical Data and Privacy Controls (Introduction)

VIDEO

Access Controls

VIDEO

File System Permissions

VIDEO

Encryption

VIDEO

Data Loss Prevention

VIDEO

DLP Discovery and Classification

VIDEO

Deidentification Controls

VIDEO

DRM and Watermarking

VIDEO

Analyzing Share Permissions

VIDEO

10.

Labs: Configuring and Analyzing Share Permissions

LAB

11.

Quiz: Technical Data and Privacy Controls

QUIZ

32. Mitigate Software Vulnerabilities and Attacks

Total items: 9 - Total Time: 00:55:16

No.

Title

Type

Status

Mitigate Software Vulnerabilities and Attacks (Introduction)

VIDEO

SDLC Integration

VIDEO

Execution and Escalation

VIDEO

Overflow Attacks

VIDEO

Race Conditions

VIDEO

Improper Error Handling

VIDEO

Design Vulnerabilities

VIDEO

Platform Best Practices

VIDEO

Quiz: Mitigate Software Vulnerabilities and Attacks

QUIZ

33. Mitigate Web Application Vulnerabilities and Attacks

Total items: 13 - Total Time: 01:08:24

No.

Title

Type

Status

Mitigate Web Application Vulnerabilities and Attacks (Introduction)

VIDEO

Directory Traversal

VIDEO

Cross-site Scripting

VIDEO

SQL Injection

VIDEO

XML Vulnerabilities

VIDEO

Secure Coding

VIDEO

Authentication Attacks

VIDEO

Session Hijacking

VIDEO

Sensitive Data Exposure

VIDEO

10.

Clickjacking

VIDEO

11.

Web Application Vulnerabilities

VIDEO

12.

Labs: Assessing the Impact of Web Application Vulnerabilities

LAB

13.

Quiz: Mitigate Web Application Vulnerabilities and Attacks

QUIZ

34. Analyzing Application Assessments

Total items: 10 - Total Time: 00:56:14

No.

Title

Type

Status

Analyzing Application Assessments (Introduction)

VIDEO

Software Assessments

VIDEO

Reverse Engineering

VIDEO

Dynamic Analysis

VIDEO

Web Application Scanners

VIDEO

Burp Suite

VIDEO

OWASP ZAP

VIDEO

Analyzing Web Applications

VIDEO

Labs: Analyzing Output from Web Application Assessment Tools

LAB

10.

Quiz: Analyzing Application Assessments

QUIZ

35. Cloud and Automation

Total items: 7 - Total Time: 00:39:33

No.

Title

Type

Status

Cloud and Automation (Introduction)

VIDEO

Cloud Models

VIDEO

Service Models

VIDEO

Cloud-based Infrastructure

VIDEO

CASB

VIDEO

Labs: Analyzing Output from Cloud Infrastructure Assessment Tools

LAB

Quiz: Cloud and Automation

QUIZ

36. Service-Oriented Architecture

Total items: 10 - Total Time: 00:54:24

No.

Title

Type

Status

Service-Oriented Architecture (Introduction)

VIDEO

SOA and Microservices

VIDEO

SOAP

VIDEO

SAML

VIDEO

REST

VIDEO

API

VIDEO

Scripting

VIDEO

Workflow Orchestration

VIDEO

FAAS and Serverless

VIDEO

10.

Quiz: Service-Oriented Architecture

QUIZ

37. Cloud Infrastructure Assessments

Total items: 5 - Total Time: 00:18:14

No.

Title

Type

Status

Cloud Infrastructure Assessments (Introduction)

VIDEO

Cloud Threats

VIDEO

Cloud Tools

VIDEO

Cloud Forensics

VIDEO

Quiz: Cloud Infrastructure Assessments

QUIZ

38. Automation Concepts and Technologies

Total items: 8 - Total Time: 00:33:53

No.

Title

Type

Status

Automation Concepts and Technologies (Introduction)

VIDEO

CI/CD

VIDEO

DevSecOps

VIDEO

IAC

VIDEO

Machine Learning

VIDEO

Data Enrichment

VIDEO

SOAR

VIDEO

Quiz: Automation Concepts and Technologies

QUIZ

39. Conclusion

Total items: 3 - Total Time: 00:09:27

No.

Title

Type

Status

Conclusion (What to Do Next…)

VIDEO

BONUS: What's Come Next?

VIDEO

Practice Exam

EXAM

Meet Your Instructor

Jason Dion

Lead Instructor

Jason Dion, CISSP No. 349867, is a former college professor and the lead instructor at Dion Training Solutions.

He has multiple information technology professional certifications, including Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Certified Network Defense Architect (CNDA), Digital Forensic Examiner (DFE), Digital Media Collector (DMC), CySA+, Security+, Network+, A+, PRINCE2 Practitioner, and ITIL.

With networking experience dating back to 1992, Jason has been a network engineer, Deputy Director of a Network Operations Center, and an Information Systems Officer for large organizations around the globe.

He holds a Master’s of Science degree in Information Technology with a specialization in Information Assurance and a Bachelor’s of Science in Human Resources Management. He lives in Puerto Rico with his wife and two children.

Course Rating

( 5 average based on 6 reviews)

5 star

4 star

3 star

2 star

1 star

6 Reviews

Alhaji O Gbla

Position: confidential

A great course. I feel better prepared for the exam. The practice test was challenging which is a good prep for the actual test, the practice test forced me to go back and review sections and additional research on understanding the scenario-based questions.

Breanna Hall

Position: confidential

Everything is very easy to understand the study notes take some of the stress off of trying to keep up with the material.

Course Preview

Price$349
InstructorJason Dion
Duration32+ hours
Lessons363
Quizzes12
Enrolled405 students
Access12 Months
Full Practice Exams
Included
Official Textbook
Included
100% Pass Guarantee
Included

100% Pass Guarantee

All the risk is on us, as it should be. You literally have nothing to lose.

We are so confident that you are going to learn everything you need to know to pass your CompTIA®, ITIL®, PRINCE2®, PRINCE2 Agile®, or Linux certification if you pass our courses at diontraining.com. So, if you do not pass your certification within 60 days of registering for and passing your course, simply send us your test score and your course completion letter, and we will pay for your exam retake.

Authorized Training Organization

CompTIA Authorized Training Organization

All of our courses undergo a stringent review by the accreditation body prior to being published. When you take a course through us, you can be assured you are getting the highest quality training and an affordable price.