CompTIA Cybersecurity Analyst CySA+ Certification Training

Level: Intermediate
Course: 2047
NOTE: This course description is part of David Tech Bundle 5.
(Course Information, Tuition and Enrollment information for all individual courses available under ‘Course Catalog / David Tech CompTIA Courses‘)

This CompTIA Cybersecurity Analyst (CySA+) training course will prepare you to successfully achieve this in-demand certification with hands-on, scenario-based training so you’ll be ready to meet advanced persistent threats (APTs) head on.

In this certification training course, you will gain the foundational knowledge to fully prepare for the CySA+ exam (CS0-003). This is an intermediate certification that is part of the CompTIA certification pathway, fitting in between the Network+ & CASP certifications. Achieving this certification validates that you have the skills as a cybersecurity analyst, that you can take an analytical approach to cybersecurity, and have the knowledge of network security tools and techniques to combat threats.

Included in your course tuition is a voucher that enables you to take the CS0-003 exam at any Pearson VUE Test Center location.

Key Features of this CySA+ Training

CompTIA-approved CySA+ training programs

After-course instructor coaching benefit

Exam voucher included

You Will Learn How To:

Prepare for and pass the Cybersecurity Analyst (CySA+) exam

Identify tools and techniques used to perform environmental reconnaissance of a target network or security system

Use network host and web application vulnerability assessment tools and interpret the results to provide effective mitigation

Participate in a senior role within an incident response team and use forensic tools to identify the source of an attack Understand the use of frameworks, policies, and procedures, and report on security architecture with recommendations for effective compensating controls

Goals Live, Instructor-Led – Live, Online Training

instructor-led training course

One-on-one after course instructor coaching

Exam voucher included

Pay later by invoice -OR- at the time of checkout by credit card

Live, Online Training

Important CySA+ Course Information


IT Security Professionals must have 3-4 years of hands-on information security or related experience at the level of Network+ or Security+

Recommended Experience

Exam Information

Course tuition includes an exam voucher. The exam is offered through Pearson Vue.

Certification Information

To earn this certification, you must take and pass CompTIA exam CS0-001

You must earn 60 CompTIA CEUs over a three-year period to maintain CySA+ certification

CySA+ Course Outline

Module 1: Threat Management

Cybersecurity analysts

Cybersecurity roles and responsibilities

Frameworks and security controls

Risk evaluation

Penetration testing processes

Reconnaissance techniques

The kill chain

Open source intelligence

Social engineering

Topology discovery

Service discovery

OS fingerprinting

Module 2: Threat Management

Security appliances

Configuring firewalls

Intrusion detection and prevention

Configuring IDS

Malware threats

Configuring anti-virus software


Enhanced mitigation experience toolkit

Logging and analysis

Packet capture

Packet capture tools Monitoring tools

Log review and SIEM

SIEM data outputs

SIEM data analysis

Point-in-time data analysis

Module 3: Vulnerability Management

Managing vulnerabilities

Vulnerability management requirements

Asset inventory

Data classification

Vulnerability management processes

Vulnerability scanners

Microsoft baseline security analyzer

Vulnerability feeds and SCAP

Configuring vulnerability scans

Vulnerability scanning criteria

Exploit frameworks

Remediating vulnerabilities

Analyzing vulnerability scans

Remediation and change control

Remediating host vulnerabilities

Remediating network vulnerabilities

Remediating virtual infrastructure vulnerabilities

Secure software development

Software development life cycle

Software vulnerabilities

Software security testing

Interception proxies

Web application firewalls

Source authenticity

Reverse engineering

Module 4: Cyber Incident Response

Incident response

Incident response processes

Threat classification

Incident severity and prioritization

Types of data

Forensics tools

Digital forensics investigations

Documentation and forms

Digital forensics crime scenes

Digital forensics kits Image acquisition

Password cracking

Analysis utilities

Incident analysis and recovery

Analysis and recovery frameworks

Analyzing network symptoms

Analyzing host symptoms

Analyzing data exfiltration

Analyzing application symptoms

Using sysinternals

Containment techniques

Eradication techniques

Validation techniques

Corrective actions

Module 5: Security Architecture

Secure network design

Network segmentation

Blackholes, sinkholes, and honeypots

System hardening

Group policies and MAC

Endpoint security

Managing identities and access

Network access control

Identity management

Identity security issues

Identity repositories

Context-based authentication

Single sign on and federation

Exploiting identities

Exploiting web browsers and applications

Security frameworks and policies

Frameworks and compliance

Reviewing security architecture

Procedures and compensating controls

Verifications and quality control

Security policies and procedures

Personnel policies and training

CySA+ Training FAQs

What is CompTIA CySA+ certification?

Cybersecurity Analyst (CySA+) is an IT workforce certfication. It applies behavioral analytics to networks and devices to help prevent, detect and combat cyber threats.

How do I earn CompTIA CySA+ certification?

To earn this certification, you must take and pass CompTIA exam CS0-001.

How do I take the CySA+ exam (CS0-001)?

Course tuition includes an exam voucher. The exam is offered through Pearson Vue.

How do I maintain my CompTIA CySA+ certification?

You must earn 60 CompTIA CEUs over a three-year period to maintain CySA+ certification. Maintain your CompTIA certification with CEU-approved training.