CompTIA Advanced Security Practitioner (CASP+)
Opis
CompTIA Advanced Security Praction (CASP+) je edukacija iz područja kibernetičke sigurnosti namijenjena arhitektima sigurnosti i senior inženjerima sigurnosti zaduženima za vođenje i poboljšanje kibernetičke sigurnosti poduzeća.
CASP+ uključuje praktičnu primjenu znanja temeljenu na performansama te je namijenjen IT profesionalcima - ne menadžerima - na naprednoj razini vještina i znanja iz područja kibernetičke sigurnosti. Menadžeri kibernetičke sigurnosti pomažu identificirati koje bi se politike i okviri kibernetičke sigurnosti mogle provesti, a CASP+ certificirani profesionalci znaju kako implementirati rješenja unutar tih politika i okvira kako bi zaštitili poslovnu organizaciju od mogućih napada.
Što ćete naučiti
- Security Architecture
- Analiziranje sigurnosnih zahtjeva u hibridnim mrežama za rad prema zero trust sigurnosnoj arhitekturi s naprednim sigurnim cloudom, i virtualizacijskim rješenjima.
- Security Operations
- Naglasak na novijim tehnikama usmjerenim naprednom upravljanju prijetnjama, upravljanju ranjivostima, ublažavanju rizika, taktikama odgovora na incidente i analizu digitalne forenzike.
- Governance, Risk, and Compliance
- Podrška naprednim tehnikama za dokazivanje ukupne metrike otpornosti kibernetičke sigurnosti organizacije i organizacijske usklađenosti s propisima, kao što su CMMC, PCI-DSS, SOX, HIPAA, GDPR, FISMA, NIST i CCPA. Fokus na napredne konfiguracije kibernetičke sigurnosti za sigurnosne kontrole krajnjih točaka, mobilnost poduzeća, cloud ili hibridna okruženja te PKI i kriptografska rješenja.
Kome je namijenjeno
PRIMARNO
- Security architect
- Senior security engineer
- Security operations center (SOC) manager
- Security analyst
- IT cybersecurity specialist/INFOSEC specialist
- Cyber risk analyst
Preduvjeti
Nastavni plan
Lesson 1: Performing Risk Management Activities
- Explain Risk Assessment Methods
- Summarize the Risk Life cycle
- Assess & Mitigate Vendor Risk
Lesson 2: Summarizing Governance & Compliance Strategies
- Identifying Critical Data Assets
- Compare and Contrast Regulation, Accreditation, and Standards
- Explain Legal Considerations & Contract Types
Lesson 3: Implementing Business Continuity & Disaster Recovery
- Explain the Role of Business Impact Analysis
- Assess Disaster Recovery Plans
- Explain Testing and Readiness Activities
Lesson 4: Identifying Infrastructure Services
- Explain Critical Network Services
- Explain Defensible Network Design
- Implement Durable Infrastructures
Lesson 5: Performing Software Integration
- Explain Secure Integration Activities
- Assess Software Development Activities
- Analyze Access Control Models & Best Practices
- Analyze Development Models & Best Practices
Lesson 6: Explain Virtualization, Cloud, and Emerging Technology
- Explain Virtualization and Cloud Technology
- Explain Emerging Technologies
Lesson 7: Exploring Secure Configurations and System Hardening
- Analyze Enterprise Mobility Protections
- Implement Endpoint Protection
Lesson 8: Understanding Security Considerations of Cloud and Specialized Platforms
- Understand Impacts of Cloud Technology Adoption
- Explain Security Concerns for Sector-Specific Technologies
Lesson 9: Implementing Cryptography
- Implementing Hashing and Symmetric Algorithms
- Implementing Appropriate Asymmetric Algorithms and Protocols
Lesson 10: Implementing Public Key Infrastructure (PKI)
- Analyze Objectives of Cryptography and Public Key Infrastructure (PKI)
- Implementing Appropriate PKI Solutions
Lesson 11: Understanding Threat and Vulnerability Management Activities
- Explore Threat and Vulnerability Management Concepts
- Explain Vulnerability and Penetration Test Methods
- Explain Technologies Designed to Reduce Risk
Lesson 12: Developing Incident Response Capabilities
- Analyzing and Mitigating Vulnerabilities
- Identifying and Responding to Indicators of Compromise
- Exploring Digital Forensic Concepts
Za što vas priprema?
- Certifikacijski ispit: CompTIA CASP+ CAS-004
- Certifikat: CompTIA CASP+