CompTIA Cybersecurity Analyst (CySA+)

CompTIA Cybersecurity Analyst (CySA+) is a certification for cyber professionals tasked with incident detection, prevention and response through continuous security monitoring. The skills that today’s security analysts need to protect organisations are different than the skills they had just a few years ago.

CompTIA Cybersecurity Analyst (CySA+) certification has evolved to help organisations address, monitor and respond to threats and manage risk. Specifically, candidates will gain skills in security operations, vulnerability management, incident response and management and reporting and communication.  

Professionals certified with CompTIA CySA+ are able to confidently lead incident detection, prevention and response in job roles like security analyst, security operations center (SOC) analyst, incident response analyst, vulnerability management analyst, security engineer and threat hunter. 

CompTIA CySA+ (CS0-003) has been updated to reflect the latest in security analyst techniques, such as automated incident response, threat intelligence, cloud-based tools and communication processes.  

Upon passing the optional exam, successful candidates will be able to: 

• Detect and analyse indicators of malicious activity 

• Understand threat hunting and threat intelligence concepts 

• Use appropriate tools and methods to manage, prioritise and respond to attacks and vulnerabilities 

• Perform incident response processes 

• Understand reporting and communication concepts related to vulnerability management and incident response activities 

What You’ll Learn

Security Operations 
Improve processes in security operations and differentiate between threat intelligence and threat hunting concepts; identify and analyse malicious activity using the appropriate tools and techniques 

Vulnerability Management 
Implement and analyse vulnerability assessments, prioritise vulnerabilities and make recommendations on mitigating attacks and vulnerability response 

Incident Response and Management 
Apply updated concepts of attack methodology frameworks, perform incident response activities and understand the incident management lifecycle 

Reporting and Communication 
Apply communication best practices in vulnerability management and incident response as it relates to stakeholders, action plans, escalation and metrics 

Who Is The Course For?

• Network Security Specialist 

• Network Security Operations 

• Network Security Analyst 

• Application Security Analyst 

• Threat Hunter 

• Threat Intelligence Analyst 

• Security Operations Center (SOC) Analyst 

• Security Architect 

• Cybersecurity Engineer 

We can also deliver and customise this training course for larger groups – saving your organisation time, money and resources. 

Course Subjects

• Lesson 1: Understanding Vulnerability Response, Handling, and Management 

• Lesson 2: Exploring Threat Intelligence and Threat Hunting Concepts 

• Lesson 3: Explaining Important System and Network Architecture Concepts 

• Lesson 4: Understanding Process Improvement in Security Operations 

• Lesson 5: Implementing Vulnerability Scanning Methods 

• Lesson 6: Performing Vulnerability Analysis 

• Lesson 7: Communicating Vulnerability Information 

• Lesson 8: Explaining Incident Response Activities 

• Lesson 9: Demonstrating Incident Response Communication 

• Lesson 10: Applying Tools to Identify Malicious Activity 

• Lesson 11: Analysing Potentially Malicious Activity 

• Lesson 12: Understanding Application Vulnerability Assessment 

• Lesson 13: Exploring Scripting Tools and Analysis Concepts 

• Lesson 14: Understanding Application Security and Attack Mitigation Best Practice 

Refer to the CySA+ Exam Outline for a deeper dive into the CySA+ exam objectives.

Prerequisites

Network+, Security+ or equivalent knowledge. Minimum of 4 years of hands-on experience as an incident response analyst or security operations center (SOC) analyst, or equivalent experience.