SY0-701 - CompTIA Security+: Enterprise Security Capabilities





This course is a vital exploration of many of the day-to-day operational controls that the security professional is often involved with. This is what is referred to as the "due care" aspect of the job or ongoing continual maintenance. In other words, these are core "blue team" responsibilities. Topics presented to the learner include firewalls, intrusion detection system (IDS)/intrusion prevention system (IPS), web filtering, operating system security, implementing secure protocols, DNS filtering, email security, DomainKeys Identified Mail (DKIM), Sender Policy Framework (SPF), gateways, File Integrity Monitoring (FIM), data loss prevention (DLP), network access control (NAC), endpoint detection and response (EDR), Extended Detection and Response (XDR), and user behavior analytics (UBA). This course is part of a series that prepares you for the CompTIA Security+ (SY0-701) exam.




0.9

SY0-701 - CompTIA Security+: Enterprise Security Capabilities

  • review various firewall implementations like rule-based, access lists, ports and protocols, and screened subnets
  • compare intrusion detection to intrusion prevention services
  • outline the use of web filters, including agent-based, centralized proxies, URL scanning, content categorization, block rules, and reputation filtering
  • provide an overview of operating system security like group policy and SELinux
  • outline how to implement secure protocols, including protocol selection, port selection, and transport method
  • provide an overview of DNS filtering, including DNSSEC and OpenDNS solutions
  • outline the use of email security mechanisms like Domain-based Message Authentication Reporting and Conformance (DMARC), DomainKeys Identified Mail (DKIM), Sender Policy Framework (SPF), and gateways
  • provide an overview of file integrity monitoring
  • outline data loss prevention initiatives and solutions
  • provide an overview of network access (or admission) control (NAC)
  • outline the use of endpoint detection and response (EDR) solutions, including extended detection and response (XDR) and user behavior analytics (UBA)


    • it_cssecp23_14_enus