For entry-level or transitioning talent, CompTIA’s Security+ is the perfect next step to expand their cybersecurity knowledge and credibility.
Unit 1: Risk, Privacy, and Data Protection – Introduce (or re-introduce) learner to common cybersecurity terminology. Discuss the most important industry words and phrases to create a foundation for further learning.
- Defining Cybersecurity
- CIA Framework
- Defining Risk
- Privileged Access
- Defining Sensitive Data
- Laws, Regulations, and Compliance Initiatives in Cybersecurity
Unit 2: IoT, Cloud, and Critical Networking Protocols – Examine insecure aspects of network and device communication. Highlight the fact that many services and devices are insecure, by default; not designed with security in mind.
- The Network
- IoT Devices
- Cloud Computing
Unit 3: External and Insider Threats and Their Attack Methods – Demonstrate how attackers exploit vulnerabilities. Discuss technical, network-based attacks (MITM, Dos) and non-technical (social engineering).
- Threat Actors
- Third Parties
- Social Engineering
- DoS Attacks
Unit 4: Software Tools, IAM, and Incident Response – Discuss common defenses against attackers and bad actors. Discuss technical defenses such as VPNs and network segmentation, but also less technical efforts such as communicating with users and coordinating other teams and business leaders.
- Network Segmentation
- Password Security
- Incident Response
- Patch Management
Unit 5: Cybersecurity Communication and Third-Party Management – Interviews with a Director of IT, discussing the major trends in IT and cybersecurity. He also discusses how IT Professionals can coordinate and communicate with the cybersecurity team and help when cybersecurity incidents do occur. Interviews help highlight the ‘soft skills’ needed by IT practitioners.
- Communicating About Cybersecurity
- Writing Cybersecurity Reports
- Connection Between IT and Cybersecurity Teams
- Communicating with Third Parties