Alabama Computer Solutions Certification Training Boot Camp MCSE MCSD MCDBA Cisco CIW Linux Oracle Java Security Military Discounts Testimonials About Us Linux/Unix Certification MCSD Certification Home MCSE Certification MCDBA Certification Cisco Certification Security Certification Java Certification Oracle® Certification CIW Certification Jobs Boot Camp Financing Boot Camp Pricing Boot Camp Technical Schedule Contact Us


CompTIA Network+ / Security+

Course Length: 10 days
Certifications: CompTIA Network+
CompTIA Security+
Number of Exams: 2

Class Schedule
06/13/22 - 06/24/22

Info/Enroll

07/18/22 - 07/29/22

Info/Enroll

08/08/22 - 08/19/22

Info/Enroll

08/29/22 - 09/09/22

Info/Enroll

09/26/22 - 10/07/22

Info/Enroll

10/17/22 - 10/28/22

Info/Enroll

11/07/22 - 11/18/22

Info/Enroll

12/05/22 - 12/16/22

Info/Enroll

The CompTIA Network+ (Exam N10-008) certification ensures that the successful candidate has the important knowledge and skills necessary to manage, maintain, troubleshoot, install, operate and configure basic network infrastructure, describe networking technologies, basic design principles, and adhere to wiring standards and use testing tools.

CompTIA Security+ (Exam SY0-601) is the primary course you will need to take if your job responsibilities include securing network services, network devices, and network traffic. It is also the main course you will take to prepare for the CompTIA Security+ examination. In this course, you'll build on your knowledge and professional experience with computer hardware, operating systems, and networks as you acquire the specific skills required to implement basic security services on any type of computer network.


Network+ certification

CompTIA Network+ (Exam N10-008) helps develop a career in IT infrastructure covering troubleshooting, configuring, and managing networks.

CompTIA Network+ validates the technical skills needed to securely establish, maintain and troubleshoot the essential networks that businesses rely on.

Unlike other vendor-specific networking certifications, CompTIA Network+ prepares candidates to support networks on any platform. CompTIA Network+ is the only certification that covers the specific skills that network professionals need. Other certifications are so broad, they don't cover the hands-on skills and precise knowledge needed in today's networking environments.

CompTIA Network+ features flexible training options including self-paced learning, live online training, custom training and labs to advance the career development of IT professionals in network administration.

What Skills Will You Learn?

Networking Fundamentals

Explain basic networking concepts including network services, physical connections, topologies and architecture, and cloud connectivity.

Network Implementations

Explain routing technologies and networking devices; deploy ethernet solutions and configure wireless technologies.

Network Operations

Monitor and optimize networks to ensure business continuity.

Network Security

Explain security concepts and network attacks in order to harden networks against threats.

Network Troubleshooting

Troubleshoot common cable, connectivity, and software issues related to networking.

Jobs that use Network+

  • Junior Network Administrator
  • Datacenter Support Technician
  • Network Engineer
  • System Administrator
  • NOC Technician
  • Telecommunications Technician
  • Cable Technician

Course Outline

1.0 Networking Fundamentals
Compare and contrast the Open Systems Interconnection (OSI) model layers and encapsulation concepts.
  • OSI model
  • Data encapsulation and decapsulation within the OSI model context
Explain the characteristics of network topologies and network types.
  • Mesh
  • Star/hub-and-spoke
  • Bus
  • Ring
  • Hybrid
  • Network types and characteristics
  • Service-related entry point
  • Virtual network concepts
  • Provider links
Summarize the types of cables and connectors and explain which is the appropriate type for a solution.
  • Copper
  • Fiber
  • Connector types
  • Cable management
  • Ethernet standards
Given a scenario, configure a subnet and use appropriate IP addressing schemes.
  • Public vs. private
  • IPv4 vs. IPv6
  • IPv4 subnetting
  • IPv6 concepts
  • Virtual IP (VIP)
  • Subinterfaces
Explain common ports and protocols, their application, and encrypted alternatives.
  • File Transfer Protocol (FTP)
  • Secure Shell (SSH)
  • Secure File Transfer Protocol (SFTP)
  • Telnet
  • Simple Mail Transfer Protocol (SMTP)
  • Domain Name System (DNS)
  • Dynamic Host Configuration Protocol (DHCP)
  • Trivial File Transfer Protocol (TFTP)
  • Hypertext Transfer Protocol (HTTP)
  • Post Office Protocol v3 (POP3)
  • Network Time Protocol (NTP)
  • Internet Message Access Protocol (IMAP)
  • Simple Network Management Protocol (SNMP)
  • Lightweight Directory Access Protocol (LDAP)
  • Hypertext Transfer Protocol Secure (HTTPS) [Secure Sockets Layer (SSL)]
  • HTTPS [Transport Layer Security (TLS)]
  • Server Message Block (SMB)
  • Syslog
  • SMTP TLS
  • Lightweight Directory Access Protocol (over SSL) (LDAPS)
  • IMAP over SSL
  • POP3 over SSL
  • Structured Query Language (SQL) Server
  • SQLnet
  • MySQL
  • Remote Desktop Protocol (RDP)
  • Session Initiation Protocol (SIP)
  • IP protocol types
  • Connectionless vs. connection-oriented
Explain the use and purpose of network services.
  • DHCP
  • DNS
  • NTP
Explain basic corporate and datacenter network architecture.
  • Three-tiered
  • Software-defined networking
  • Spine and leaf
  • Traffic flows
  • Branch office vs. on-premises datacenter vs. colocation
  • Storage area networks
Summarize cloud concepts and connectivity options.
  • Deployment models
  • Service models
  • Infrastructure as code
  • Connectivity options
  • Multitenancy
  • Elasticity
  • Scalability
  • Security implications
2.0 Network Implementations
Compare and contrast various devices, their features, and their appropriate placement on the network.
  • Networking devices
  • Networked devices
Compare and contrast routing technologies and bandwidth management concepts.
  • Routing
  • Bandwidth management
Given a scenario, configure and deploy common Ethernet switching features.
  • Data virtual local area network (VLAN)
  • Voice VLAN
  • Port configurations
  • Media access control (MAC) address tables
  • Power over Ethernet (PoE)/ Power over Ethernet plus (PoE+)
  • Spanning Tree Protocol
  • Carrier-sense multiple access with collision detection (CSMA/CD)
  • Address Resolution Protocol (ARP)
  • Neighbor Discovery Protocol
Given a scenario, install and configure the appropriate wireless standards and technologies.
  • 802.11 standards
  • Frequencies and range
  • Channels
  • Channel bonding
  • Service set identifier (SSID)
  • Antenna types
  • Encryption standards
  • Cellular technologies
  • Multiple input, multiple output (MIMO) and multi-user MIMO (MU-MIMO)
3.0 Network Operations
Given a scenario, use the appropriate statistics and sensors to ensure network availability.
  • Performance metrics/sensors
  • SNMP
  • Network device logs
  • Interface statistics/status
  • Interface errors or alerts
  • Environmental factors and sensors
  • Baselines
  • NetFlow data
  • Uptime/downtime
Explain the purpose of organizational documents and policies.
  • Plans and procedures
  • Hardening and security policies
  • Common documentation
  • Common agreements
Explain high availability and disaster recovery concepts and summarize which is the best solution.
  • Load balancing
  • Multipathing
  • Network interface card (NIC) teaming
  • Redundant hardware/clusters
  • Facilities and infrastructure support
  • Redundancy and high availability (HA) concepts
  • Network device backup/restore
4.0 Network Security
Explain common security concepts.
  • Confidentiality, integrity, availability (CIA)
  • Threats
  • Vulnerabilities
  • Exploits
  • Least privilege
  • Role-based access
  • Zero Trust
  • Defense in depth
  • Authentication methods
  • Risk Management
  • Security information and event management (SIEM)
Compare and contrast common types of attacks.
  • Technology-based
  • Human and environmental
Given a scenario, apply network hardening techniques.
  • Best practices
  • Wireless security
  • IoT access considerations
Compare and contrast remote access methods and security implications.
  • Site-to-site VPN
  • Client-to-site VPN
  • Remote desktop connection
  • Remote desktop gateway
  • SSH
  • Virtual network computing (VNC)
  • Virtual desktop
  • Authentication and authorization considerations
  • In-band vs. out-of-band management
Explain the importance of physical security.
  • Detection methods
  • Prevention methods
  • Asset disposal
5.0 Network Troubleshooting
Explain the network troubleshooting methodology.
  • Identify the problem
  • Establish a theory of probable cause
  • Test the theory to determine the cause
  • Establish a plan of action to resolve the problem and identify potential effects
  • Implement the solution or escalate as necessary
  • Verify full system functionality and, if applicable, implement preventive measures
  • Document findings, actions, outcomes, and lessons learned
Given a scenario, troubleshoot common cable connectivity issues and select the appropriate tools.
  • Specifications and limitations
  • Cable considerations
  • Cable application
  • Common issues
  • Common tools
Given a scenario, use the appropriate network software tools and commands.
  • Software tools
  • Command line tool
  • Basic network platform commands
Given a scenario, troubleshoot common wireless connectivity issues.
  • Specifications and limitations
  • Considerations
  • Common issues
Given a scenario, troubleshoot general networking issues.
  • Considerations
  • Common issues

[ back to top ]

Security+ certification

CompTIA Security+ is a global certification that validates the baseline skills necessary to perform core security functions and pursue an IT security career.

Why is it different?

More choose Security+ - chosen by more corporations and defense organizations than any other certification on the market to validate baseline security skills and for fulfilling the DoD 8570 compliance.

Security+ proves hands-on skills - the only baseline cybersecurity certification emphasizing hands-on practical skills, ensuring the security professional is better prepared to problem solve a wider variety of today's complex issues.

More job roles turn to Security+ to supplement skills - baseline cybersecurity skills are applicable across more of today's job roles to secure systems, software and hardware.

Security+ is aligned to the latest trends and techniques - covering the most core technical skills in risk assessment and management, incident response, forensics, enterprise networks, hybrid/cloud operations, and security controls, ensuring high-performance on the job.

What Skills Will You Learn?

Attacks, Threats and Vulnerabilities

Focusing on more threats, attacks, and vulnerabilities on the Internet from newer custom devices that must be mitigated, such as IoT and embedded devices, newer DDoS attacks, and social engineering attacks based on current events.

Architecture and Design

Includes coverage of enterprise environments and reliance on the cloud, which is growing quickly as organizations transition to hybrid networks.

Implementation

Expanded to focus on administering identity, access management, PKI, basic cryptography, wireless, and end-to-end security.

Operations and Incident Response

Covering organizational security assessment and incident response procedures, such as basic threat detection, risk mitigation techniques, security controls, and basic digital forensics.

Governance, Risk and Compliance

Expanded to support organizational risk management and compliance to regulations, such as PCI-DSS, SOX, HIPAA, GDPR, FISMA, NIST, and CCPA.

Jobs that use CompTIA Security+

  • Security Administrator
  • Systems Administrator
  • Helpdesk Manager / Analyst
  • Network / Cloud Engineer
  • Security Engineer / Analyst
  • DevOps / Software Developer
  • IT Auditors
  • IT Project Manager

Exam: SY0-601

CompTIA Security+ is the first security certification a candidate should earn. It establishes the core knowledge required of any cybersecurity role and provides a springboard to intermediate-level cybersecurity jobs. Security+ incorporates best practices in hands-on troubleshooting, ensuring candidates have practical security problem-solving skills required to:

  • Assess the security posture of an enterprise environment and recommend and implement appropriate security solutions
  • Monitor and secure hybrid environments, including cloud, mobile, and IoT
  • Operate with an awareness of applicable laws and policies, including principles of governance, risk, and compliance
  • Identify, analyze, and respond to security events and incidents

Security+ is compliant with ISO 17024 standards and approved by the US DoD to meet directive 8140/8570.01-M requirements. Regulators and government rely on ANSI accreditation, because it provides confidence and trust in the outputs of an accredited program. Over 2.3 million CompTIA ISO/ANSI-accredited exams have been delivered since January 1, 2011.

Course Content

1.0 Threats, Attacks, and Vulnerabilities
Compare and contrast different types of social engineering techniques.
  • Phishing
  • Smishing
  • Vishing
  • Spam
  • Spam over instant messaging (SPIM)
  • Spear phishing
  • Dumpster diving
  • Shoulder surfing
  • Pharming
  • Tailgating
  • Eliciting information
  • Whaling
  • Prepending
  • Identity fraud
  • Invoice scams
  • Credential harvesting
  • Reconnaissance
  • Hoax
  • Impersonation
  • Watering hole attack
  • Typosquatting
  • Pretexting
  • Influence campaigns
  • Principles (reasons for effectiveness)
Given a scenario, analyze potential indicators to determine the type of attack.
  • Malware
  • Password attacks
  • Physical attacks
  • Adversarial artificial intelligence (AI)
  • Supply-chain attacks
  • Cloud-based vs. on-premises attacks
  • Cryptographic attacks
Given a scenario, analyze potential indicators associated with application attacks.
  • Privilege escalation
  • Cross-site scripting
  • Injections
  • Pointer/object dereference
  • Directory traversal
  • Buffer overflows
  • Race conditions
  • Error handling
  • Improper input handling
  • Replay attack
  • Integer overflow
  • Request forgeries
  • Application programming interface (API) attacks
  • Resource exhaustion
  • Memory leak
  • Secure Sockets Layer (SSL) stripping
  • Driver manipulation
  • Pass the hash
Given a scenario, analyze potential indicators associated with network attacks.
  • Wireless
  • On-path attack
  • Layer 2 attacks
  • Domain name system (DNS)
  • Distributed denial-of-service (DDoS)
  • Malicious code or script execution
Explain different threat actors, vectors, and intelligence sources.
  • Actors and threats
  • Attributes of actors
  • Vectors
  • Threat intelligence sources
  • Research sources
Explain the security concerns associated with various types of vulnerabilities.
  • Cloud-based vs. on-premises vulnerabilities
  • Zero-day
  • Weak configurations
  • Third-party risks
  • Improper or weak patch management
  • Legacy platforms
  • Impacts
Summarize the techniques used in security assessments.
  • Threat hunting
  • Vulnerability scans
  • Syslog/Security information and event management (SIEM
  • Security orchestration, automation, and response (SOAR)
Explain the techniques used in penetration testing.
  • Penetration testing
  • Passive and active reconnaissance
  • Exercise types
2.0 Architecture and Design
Explain the importance of security concepts in an enterprise environment.
  • Configuration management
  • Data sovereignty
  • Data protection
  • Geographical considerations
  • Response and recovery controls
  • Secure Sockets Layer (SSL)/Transport Layer Security (TLS) inspection
  • Hashing
  • API considerations
  • Site resiliency
  • Deception and disruption
Summarize virtualization and cloud computing concepts.
  • Cloud models
  • Cloud service providers
  • Managed service provider (MSP)/ managed security service provider (MSSP)
  • On-premises vs. off-premises
  • Fog computing
  • Edge computing
  • Thin client
  • Containers
  • Microservices/API
  • Infrastructure as code
  • Serverless architecture
  • Services integration
  • Resource policies
  • Transit gateway
  • Virtualization
Summarize secure application development, deployment, and automation concepts.
  • Environment
  • Provisioning and deprovisioning
  • Integrity measurement
  • Secure coding techniques
  • Open Web Application Security Project (OWASP)
  • Software diversity
  • Automation/scripting
  • Elasticity
  • Scalability
  • Version control
Summarize authentication and authorization design concepts.
  • Authentication methods
  • Biometrics
  • Multifactor authentication (MFA) factors and attributes
  • Authentication, authorization, and accounting (AAA)
  • Cloud vs. on-premises requirements
Given a scenario, implement cybersecurity resilience.
  • Redundancy
  • Replication
  • On-premises vs. cloud
  • Backup types
  • Non-persistence
  • High availability
  • Restoration order
  • Diversity
Explain the security implications of embedded and specialized systems.
  • Embedded systems
  • Supervisory control and data acquisition (SCADA)/industrial control system (ICS)
  • Internet of Things (IoT)
  • Specialized
  • Voice over IP (VoIP)
  • Heating, ventilation, air conditioning (HVAC)
  • Drones
  • Multifunction printer (MFP)
  • Real-time operating system (RTOS)
  • Surveillance systems
  • System on chip (SoC)
  • Communication considerations
  • Constraints
Explain the importance of physical security controls.
  • Bollards/barricades
  • Access control vestibules
  • Badges
  • Alarms
  • Signage
  • Cameras
  • Closed-circuit television (CCTV)
  • Industrial camouflage
  • Personnel
  • Locks
  • USB data blocker
  • Lighting
  • Fencing
  • Fire suppression
  • Sensors
  • Drones
  • Visitor logs
  • Faraday cages
  • Air gap
  • Screened subnet (previously known as demilitarized zone)
  • Protected cable distribution
  • Secure areas
  • Secure data destruction
Summarize the basics of cryptographic concepts.
  • Digital signatures
  • Key length
  • Key stretching
  • Salting
  • Hashing
  • Key exchange
  • Elliptic-curve cryptography
  • Perfect forward secrecy
  • Quantum
  • Post-quantum
  • Ephemeral
  • Modes of operation
  • Blockchain
  • Cipher suites
  • Symmetric vs. asymmetric
  • Lightweight cryptography
  • Steganography
  • Homomorphic encryption
  • Common use cases
  • Limitations
3.0 Implementation
Given a scenario, implement secure protocols.
  • Protocols
  • Use cases
Given a scenario, implement host or application security solutions.
  • Endpoint protection
  • Boot integrity
  • Database
  • Application security
  • Hardening
  • Self-encrypting drive (SED)/ full-disk encryption (FDE)
  • Hardware root of trust
  • Trusted Platform Module (TPM)
  • Sandboxing
Given a scenario, implement secure network designs.
  • Load balancing
  • Network segmentation
  • Virtual private network (VPN)
  • DNS
  • Network access control (NAC)
  • Out-of-band management
  • Port security
  • Network appliances
  • Access control list (ACL)
  • Route security
  • Quality of service (QoS)
  • Implications of IPv6
  • Port spanning/port mirroring
  • Monitoring services
  • File integrity monitors
Given a scenario, install and configure wireless security settings.
  • Cryptographic protocols
  • Authentication protocols
  • Methods
  • Installation considerations
Given a scenario, implement secure mobile solutions
  • Connection methods and receivers
  • Mobile device management (MDM)
  • Mobile devices
  • Enforcement and monitoring
  • Deployment models
Given a scenario, apply cybersecurity solutions to the cloud.
  • Cloud security controls
  • Solutions
  • Cloud native controls vs. third-party solutions
Given a scenario, implement identity and account management controls.
  • Identity
  • Account types
  • Account policies
Given a scenario, implement authentication and authorization solutions.
  • Authentication management
  • Authentication/authorization
  • Access control schemes
Given a scenario, implement public key infrastructure.
  • Public key infrastructure (PKI)
  • Types of certificates
  • Certificate formats
  • Concepts
4.0 Operations and Incident Response
Given a scenario, use the appropriate tool to assess organizational security.
  • Network reconnaissance and discovery
  • File manipulation
  • Shell and script environments
  • Packet capture and replay
  • Forensics
  • Exploitation frameworks
  • Password crackers
  • Data sanitization
Summarize the importance of policies, processes, and procedures for incident response.
  • Incident response plans
  • Incident response process
  • Exercises
  • Attack frameworks
  • Stakeholder management
  • Communication plan
  • Disaster recovery plan
  • Business continuity plan
  • Continuity of operations planning (COOP)
  • Incident response team
  • Retention policies
Given an incident, utilize appropriate data sources to support an investigation.
  • Vulnerability scan output
  • SIEM dashboards
  • Log files
  • syslog/rsyslog/syslog-ng
  • journalctl
  • NXLog
  • Bandwidth monitors
  • Metadata
  • Netflow/sFlow
  • Protocol analyzer output
Given an incident, apply mitigation techniques or controls to secure an environment
  • Reconfigure endpoint security solutions
  • Configuration changes
  • Isolation
  • Containment
  • Segmentation
  • SOAR
Explain the key aspects of digital forensics.
  • Documentation/evidence
  • Acquisition
  • On-premises vs. cloud
  • Integrity
  • Preservation
  • E-discovery
  • Data recovery
  • Non-repudiation
  • Strategic intelligence/ counterintelligence
5.0 Governance, Risk, and Compliance
Compare and contrast various types of controls.
  • Category
  • Control type
Explain the importance of applicable regulations, standards, or frameworks that impact organizational security posture.
  • Regulations, standards, and legislation
  • Key frameworks
  • Benchmarks /secure configuration guides
Explain the importance of policies to organizational security.
  • Personnel
  • Diversity of training techniques
  • Third-party risk management
  • Data
  • Credential policies
  • Organizational policies
Summarize risk management processes and concepts.
  • Risk types
  • Risk management strategies
  • Risk analysis
  • Disasters
  • Business impact analysis
Explain privacy and sensitive data concepts in relation to security
  • Organizational consequences of privacy and data breaches
  • Notifications of breaches
  • Data types
  • Privacy enhancing technologies
  • Roles and responsibilities
  • Information life cycle
  • Impact assessment
  • Terms of agreement
  • Privacy notice

[ back to top ]


Alabama Computer Solutions is your best choice for CompTIA Network, CompTIA Network training, CompTIA Network certification, CompTIA Network certification boot camp, CompTIA Network boot camp, CompTIA Network certification training, CompTIA Network boot camp training, CompTIA Network boot camp certification, CompTIA Network certification course, CompTIA Network course, training CompTIA Network, certification CompTIA Network, boot camp CompTIA Network, certification CompTIA Network boot camp, certification CompTIA Network training, boot camp CompTIA Network training, certification CompTIA Network course.



home | technical schedule | application schedule | class outlines | mcse, mcdba, mcsd training | microsoft .net | cisco certification | security training | alabama training solutions oracle® certification training | linux, unix | comptia certification | web development | pricing | locations | financing | instructors needed | e-mail us





Search classes by keyword:


Search classes by category:

mcse training
MCSE boot camp MCSE Training MCSE Certification MCSE Bootcamp MCSE Boot Camp MCSE Course MCSE Training MCSE Certification MCSE Bootcamp MCSE Boot Camp MCSE MCSA Training MCSA Certification MCSA Bootcamp MCSA Boot Camp MCSA Course MCSA Training MCSA Certification MCSA Bootcamp MCSA Boot Camp MCSA Course MCSA MCSE 2003 MCSE Training 2003 MCSE Certification 2003 MCSE Boot Camp 2003 MCSE Course 2003 MCSE 2003 Training MCSE 2003 Certification MCSE 2003 Boot Camp MCSE 2003 Course Training MCSE 2003 Certification MCSE 2003 Boot Camp MCSE 2003 Course MCSE 2003 MCSE Training Course MCSE Training Boot Camp MCSE training
MCSE certification MCSE Training Certification
Training MCSE Certification Training MCSE Boot Camp Training MCSE Course MCSE Certification Training MCSE Certification Boot Camp MCSE Certification Course MCSE Boot Camp Training MCSE Boot Camp Course MCSE Course Training MCSE Course Certification MCSD MCSD Training MCSD Certification MCSD Course Certification Training Training Certification Microsoft Certification Certification Microsoft Microsoft Training

Copyright © 2022 Alabama Computer Solutions. Alabama Computer Solutions Refund Policy. All Rights Reserved.