Preface

• Who this book is for
• What this book covers
• To get the most out of this book
• Additional online resources
• Download the color images
• Conventions used
• Get in touch
• Reviews

1. Objectives for the CompTIA Security+ 601 exam

• Exam Objectives (Domains)

2. Section 1: Security Aims and Objectives FREE CHAPTER

3. Chapter 1: Understanding Security Fundamentals

• Security Fundamentals
• Comparing Control Types
• Physical Security Controls
• Understanding Digital Forensics
• Review Questions

4. Chapter 2: Implementing Public Key Infrastructure

• PKI Concepts
• Asymmetric and Symmetric Encryption
• Key Stretching Algorithms
• Salting Passwords
• Cipher Modes
• Quantum Computing
• Blockchain and the Public Ledger
• Hashing and Data Integrity
• Comparing and Contrasting the Basic Concepts of Cryptography
• Basic Cryptographic Terminologies
• Common Use Cases for Cryptography
• Practical Exercises
• Review Questions

5. Chapter 3: Investigating Identity and Access Management

• Understanding Identity and Access Management Concepts
• Identity Types
• Account Types
• Authentication Types
• Implementing Authentication and Authorization Solutions
• Summarizing Authentication and Authorization Design Concepts
• Cloud versus On-Premises Authentication
• Common Account Management Policies
• Practical Exercise – Password Policy
• Review Questions

6. Chapter 4: Exploring Virtualization and Cloud Concepts

• Overview of Cloud Computing
• Implementing Different Cloud Deployment Models
• Understanding Cloud Service Models
• Understanding Cloud Computing Concepts
• Understanding Cloud Storage Concepts
• Selecting Cloud Security Controls
• Exploring the Virtual Network Environments
• Review Questions

7. Section 2: Monitoring the Security Infrastructure

8. Chapter 5: Monitoring, Scanning, and Penetration Testing

• Penetration Testing Concepts
• Passive and Active Reconnaissance
• Exercise Types
• Vulnerability Scanning Concepts
• Syslog/Security Information and Event Management
• Security Orchestration, Automation, and Response
• Review Questions

9. Chapter 6: Understanding Secure and Insecure Protocols

• Introduction to Protocols
• Insecure Protocols and Their Use Cases
• Secure Protocols and Their Use Cases
• Additional Use Cases and Their Protocols
• Review Questions

10. Chapter 7: Delving into Network and Security Concepts

• Installing and Configuring Network Components
• Remote Access Capabilities
• Secure Network Architecture Concepts
• Network Reconnaissance and Discovery
• Forensic Tools
• IP Addressing
• Review Questions

11. Chapter 8: Securing Wireless and Mobile Solutions

• Implementing Wireless Security
• Wireless Access Point Controllers
• Deploying Mobile Devices Securely
• Mobile Device Connection Methods
• Review Questions

12. Section 3: Protecting the Security Environment

13. Chapter 9: Identifying Threats, Attacks, and Vulnerabilities

• Virus and Malware Attacks
• Social Engineering Attacks
• Threat Actors
• Advanced Attacks
• Review Questions

14. Chapter 10: Governance, Risk, and Compliance

• Risk Management Processes and Concepts
• Threat Actors, Vectors, and Intelligence Concepts
• The Importance of Policies for Organizational Security
• Regulations, Standards, and Legislation
• Privacy and Sensitive Data Concepts
• Review Questions

15. Chapter 11: Managing Application Security

• Implementing Host or Application Security
• Understanding the Security Implications of Embedded and Specialist Systems
• Understanding Secure Application Development, Deployment, and Automation
• Review Questions

16. Chapter 12: Dealing with Incident Response Procedures

• Incident Response Procedures
• Utilizing Data Sources to Support Investigations
• Knowing How to Apply Mitigation Techniques or Controls to Secure an Environment
• Implementing Cybersecurity Resilience
• Review Questions

17. Section 4: Mock Tests

18. Chapter 13: Mock Exam 1

19. Mock Exam 1 Solutions

20. Chapter 14: Mock Exam 2

21. Mock Exam 2 Solutions

22. Chapter Review Solutions

• Chapter 2 – Implementing Public Key Infrastructure
• Chapter 3 – Investigating Identity and Access Management
• Chapter 4 – Exploring Virtualization and Cloud Concepts
• Chapter 5 – Monitoring, Scanning, and Penetration Testing
• Chapter 6 – Understanding Secure and Insecure Protocols
• Chapter 7 – Delving into Network and Security Concepts
• Chapter 8 – Securing Wireless and Mobile Solutions
• Chapter 9 – Identifying Threats, Attacks, and Vulnerabilities
• Chapter 10 – Governance, Risk, and Compliance
• Chapter 11 – Managing Application Security
• Chapter 12 – Dealing with Incident Response Procedures

23. Other Books You May Enjoy

• Leave a review - let other readers know what you think
• Coupon Code For 12% Off on CompTIA Security+ Exam Vouchers
• Coupon Code For 18% off on CompTIA Security+ Labs