You're reading from CompTIA CASP+ CAS-004 Certification Guide Develop CASP+ skills and learn all the key topics needed to prepare for the certification exam

Product type Paperback

Published in Mar 2022

Publisher Packt

ISBN-13 9781801816779

Length 654 pages

Edition 1st Edition

Concepts

Cybersecurity

Author (1):

Mark Birch

View More author details

Table of Contents (23) Chapters

Preface

1. Section 1: Security Architecture

2. Chapter 1: Designing a Secure Network Architecture FREE CHAPTER

3. Chapter 2: Integrating Software Applications into the Enterprise

4. Chapter 3: Enterprise Data Security, Including Secure Cloud and Virtualization Solutions

5. Chapter 4: Deploying Enterprise Authentication and Authorization Controls

6. Section 2: Security Operations

7. Chapter 5: Threat and Vulnerability Management

8. Chapter 6: Vulnerability Assessment and Penetration Testing Methods and Tools

9. Chapter 7: Risk Mitigation Controls

10. Chapter 8: Implementing Incident Response and Forensics Procedures

11. Section 3: Security Engineering and Cryptography

12. Chapter 9: Enterprise Mobility and Endpoint Security Controls

13. Chapter 10: Security Considerations Impacting Specific Sectors and Operational Technologies

14. Chapter 11: Implementing Cryptographic Protocols and Algorithms

15. Chapter 12: Implementing Appropriate PKI Solutions, Cryptographic Protocols, and Algorithms for Business Needs

16. Section 4: Governance, Risk, and Compliance

17. Chapter 13: Applying Appropriate Risk Strategies

18. Chapter 14: Compliance Frameworks, Legal Considerations, and Their Organizational Impact

19. Chapter 15: Business Continuity and Disaster Recovery Concepts

20. Chapter 16: Mock Exam 1

21. Chapter 17: Mock Exam 2

22. Other Books You May Enjoy

What this book covers

Chapter 1, Designing a Secure Network Architecture, covers designing and understanding both traditional network architectures and complex hybrid networks.

Chapter 2, Integrating Software Applications into the Enterprise, covers the software life cycle, software assurance, and supporting enterprise software applications.

Chapter 3, Enterprise Data Security, Including Secure Cloud and Virtualization Solutions, looks at the challenges facing an enterprise when protecting data in hybrid environments.

Chapter 4, Deploying Enterprise Authentication and Authorization Controls, examines credential management, identity federation, and secure single sign-on. It also covers multi-factor authentication.

Chapter 5, Threat and Vulnerability Management, covers methods used to gather threat intelligence, understand the different threat actors (and adversaries), and prepare appropriate responses.

Chapter 6, Vulnerability Assessment and Penetration Testing Methods and Tools, looks at methods used to help assess an enterprise's security posture, including SCAP scans, penetration testing, and an introduction to a wide range of security tools.

Chapter 7, Risk Mitigation Controls, looks at typical vulnerabilities that may be present within an organization and controls to reduce risk.

Chapter 8, Implementing Incident Response and Forensics Procedures, covers incident response preparation, including the creation of documentation and a Computer Security Incident Response (CSIRT) team. It also covers forensic concepts and the use of forensic analysis tools.

Chapter 9, Enterprise Mobility and Endpoint Security Controls, examines enterprise mobility management, including mobile device management tools. It also covers endpoint security and host hardening techniques.

Chapter 10, Security Considerations Impacting Specific Sectors and Operational Technologies, looks at regulated business sectors, challenges facing enterprises that must support embedded systems, SCADA systems, and operational technology.

Chapter 11, Implementing Cryptographic Protocols and Algorithms, looks at protecting enterprise data using hashing algorithms and encrypting data using both symmetric and asymmetric algorithms. It also looks at implementing cryptography within security protocols.

Chapter 12, Implementing Appropriate PKI Solutions, Cryptographic Protocols, and Algorithms for Business Needs, covers Public Key Architecture (PKI), different certificate types, and troubleshooting issues with cryptographic implementations.

Chapter 13, Applying Appropriate Risk Strategies, examines risk assessment types, risk response strategies, including implementing policies, and security best practices.

Chapter 14, Compliance Frameworks and, Legal Considerations, and Their Organizational Impact, covers the challenges of operating within diverse industries, regulatory compliance, and legal regulations.

Chapter 15, Business Continuity and Disaster Recovery Concepts, teaches you how to conduct a business impact analysis and develop business and disaster recovery plans. It also covers high availability and deploying cloud solutions for enterprise resilience.

Chapter 16, Mock Exam 1 and Chapter 17, Mock Exam 2, test your knowledge with final assessment tests, comprising accurate CASP+ questions.