Course Overview
CompTIA SecurityX is the industry standard for advanced-level competency in risk management, enterprise security operations and architecture, research and collaboration, and integration of enterprise security.
CompTIA SecurityX is compliant with ISO 17024 standards and approved by the U.S. Department of Defense (DoD) to meet directive 8140/8570.01-M requirements. The updated CompTIA SecurityX certification is especially helpful for positions such as the following:
- Security architect
- Security engineer
- Technical lead analyst
- Application security engine
Target Audience
This CompTIA certification course is designed for IT professionals in the cybersecurity industry whose primary job responsibility is to secure complex enterprise environments. The target student should have real-world experience with the technical administration of these enterprise environments.
Skills Covered
- Security Architecture
Expanded coverage to analyze security requirements in hybrid networks to work toward an enterprise-wide, zero trust security architecture with advanced secure cloud and virtualization solutions.
- Security Operations
Expanded emphasis on newer techniques addressing advanced threat management, vulnerability management, risk mitigation, incident response tactics, and digital forensics analysis.
- Governance, Risk and Compliance
Expanded to support advanced techniques to prove an organization’s overall cybersecurity resiliency metric and compliance to regulations, such as CMMC, PCI-DSS, SOX, HIPAA, GDPR, FISMA, NIST, and CCPA.
- Security Engineering and Cryptography
Expanded to focus on advanced cybersecurity configurations for endpoint security controls, enterprise mobility, cloud/hybrid environments, and enterprise-wide PKI and cryptographic solutions.
Prerequisites
To be fit for this advanced course, you should have at least a foundational knowledge of information security. This includes, but is not limited to:
- Knowledge of identity and access management (IAM) concepts and common implementations, such as authentication factors and directory services.
- Knowledge of cryptographic concepts and common implementations, such as Secure Sockets Layer/Transport Layer Security (SSL/TLS) and public key infrastructure (PKI).
- Knowledge of computer networking concepts and implementations, such as the TCP/IP model and configuration of routers and switches.
- Knowledge of common security technologies used to safeguard the enterprise, such as anti-malware solutions, firewalls, and VPNs.
Prerequisites
Exam series code : CAS-005
Number of questions : maximum of 90, a mix of multiple-choice and performance-based questions
Duration : maximum of 165 minutes
Passing score : pass/fail only; no scaled score
Training Content
Module 1 : Perform Risk Management Activities
Module 2 : Summarizing Governance & Compliance Strategies
Module 3 : Implementing Business Continuity & Disaster Recovery
Module 4 : Identifying Infrastructure Services
Module 5 : Performing Software Integration
Module 6 : Explain Virtualization, Cloud and Emerging Technology
Module 7 : Exploring Secure Configurations and System Hardening
Module 8 : Understanding Security Considerations of Cloud and Specialized Platforms
Module 9 : Implementing Cryptography
Module 10 : Implementing Public Key Infrastructure (PKI)
Module 11 : Architecting Secure Endpoints
Module 12 : Summarizing IloT & IoT Concepts
