CompTIA Security+ Study Guide: Exam SY0-601 8th Edition by Mike Chapple, ISBN-13: 978-1119736257

Description

CompTIA Security+ Study Guide: Exam SY0-601 8th Edition by Mike Chapple, ISBN-13: 978-1119736257

[PDF eBook eTextbook] – Available Instantly

• Publisher: ‎ Sybex; 8th edition (January 27, 2021)
• Language: ‎ English
• ISBN-10: ‎ 1119736250
• ISBN-13: ‎ 978-1119736257

Learn the key objectives and most crucial concepts covered by the Security+ Exam SY0-601 with this comprehensive and practical study guide! An online test bank offers 650 practice questions and flashcards!

The Eighth Edition of the CompTIA Security+ Study Guide Exam SY0-601 efficiently and comprehensively prepares you for the SY0-601 Exam. Accomplished authors and security experts Mike Chapple and David Seidl walk you through the fundamentals of crucial security topics, including the five domains covered by the SY0-601 Exam:

• Attacks, Threats, and Vulnerabilities
• Architecture and Design
• Implementation
• Operations and Incident Response
• Governance, Risk, and Compliance

The CompTIA Security+ exam has long been considered the first career step for security professionals. With the most recent upgrade of the exam, the venerable CompTIA Security+ Study Guide: Exam SY0-601, Eighth Edition, has been fully updated to assure that you have the knowledge and skills to secure applications, networks, and devices; perform threat analysis and respond with appropriate mitigation techniques; participate in risk mitigation activities; and operate with an awareness of applicable policies, laws, and regulations. Fully covering all five exam domains, this book also can give you access to the exclusive Sybex online learning environment with two practice tests, electronic flashcards, and more.

The book is written in a practical and straightforward manner, ensuring you can easily learn and retain the material. Perfect for everyone planning to take the SY0-601 Exam―as well as those who hope to secure a high-level certification like the CASP+, CISSP, or CISA―the study guide also belongs on the bookshelves of everyone who has ever wondered if the field of IT security is right for them. It’s a must-have reference!

Table of Contents:

Cover

Title Page

Copyright

Dedication

Acknowledgments

About the Authors

About the Technical Editor

Introduction

The Security+ Exam

What Does This Book Cover?

Exam SY0-601 Exam Objectives

SY0-601 Certification Exam Objective Map

Assessment Test

Answers to Assessment Test

Chapter 1: Today’s Security Professional

Cybersecurity Objectives

Data Breach Risks

Implementing Security Controls

Data Protection

Summary

Exam Essentials

Review Questions

Chapter 2: Cybersecurity Threat Landscape

Exploring Cybersecurity Threats

Threat Data and Intelligence

Summary

Exam Essentials

Review Questions

Chapter 3: Malicious Code

Malware

Malicious Code

Adversarial Artificial Intelligence

Summary

Exam Essentials

Review Questions

Chapter 4: Social Engineering, Physical, and Password Attacks

Social Engineering

Password Attacks

Physical Attacks

Summary

Exam Essentials

Review Questions

Chapter 5: Security Assessment and Testing

Vulnerability Management

Security Vulnerabilities

Penetration Testing

Training and Exercises

Summary

Exam Essentials

Review Questions

Chapter 6: Secure Coding

Software Assurance Best Practices

Designing and Coding for Security

Software Security Testing

Injection Vulnerabilities

Exploiting Authentication Vulnerabilities

Exploiting Authorization Vulnerabilities

Exploiting Web Application Vulnerabilities

Application Security Controls

Secure Coding Practices

Summary

Exam Essentials

Review Questions

Chapter 7: Cryptography and the Public Key Infrastructure

An Overview of Cryptography

Goals of Cryptography

Cryptographic Concepts

Modern Cryptography

Symmetric Cryptography

Asymmetric Cryptography

Hash Functions

Digital Signatures

Public Key Infrastructure

Asymmetric Key Management

Cryptographic Attacks

Emerging Issues in Cryptography

Summary

Exam Essentials

Review Questions

Chapter 8: Identity and Access Management

Identity

Authentication and Authorization

Authentication Methods

Accounts

Access Control Schemes

Summary

Exam Essentials

Review Questions

Chapter 9: Resilience and Physical Security

Building Cybersecurity Resilience

Response and Recovery Controls

Physical Security Controls

Summary

Exam Essentials

Review Questions

Chapter 10: Cloud and Virtualization Security

Exploring the Cloud

Virtualization

Cloud Infrastructure Components

Cloud Security Issues

Cloud Security Controls

Summary

Exam Essentials

Review Questions

Chapter 11: Endpoint Security

Protecting Endpoints

Service Hardening

Operating System Hardening

Securing Embedded and Specialized Systems

Summary

Exam Essentials

Review Questions

Chapter 12: Network Security

Designing Secure Networks

Secure Protocols

Attacking and Assessing Networks

Network Reconnaissance and Discovery Tools and Techniques

Summary

Exam Essentials

Review Questions

Chapter 13: Wireless and Mobile Security

Building Secure Wireless Networks

Managing Secure Mobile Devices

Summary

Exam Essentials

Review Questions

Chapter 14: Incident Response

Incident Response

Incident Response Data and Tools

Mitigation and Recovery

Summary

Exam Essentials

Review Questions

Chapter 15: Digital Forensics

Digital Forensic Concepts

Conducting Digital Forensics

Reporting

Digital Forensics and Intelligence

Summary

Exam Essentials

Review Questions

Chapter 16: Security Policies, Standards, and Compliance

Understanding Policy Documents

Personnel Management

Third-Party Risk Management

Complying with Laws and Regulations

Adopting Standard Frameworks

Security Control Verification and Quality Control

Summary

Exam Essentials

Review Questions

Chapter 17: Risk Management and Privacy

Analyzing Risk

Managing Risk

Risk Analysis

Disaster Recovery Planning

Privacy

Summary

Exam Essentials

Review Questions

Answers to Review Questions

Chapter 1: Today’s Security Professional

Chapter 2: Cybersecurity Threat Landscape

Chapter 3: Malicious Code

Chapter 4: Social Engineering, Physical, and Password Attacks

Chapter 5: Security Assessment and Testing

Chapter 6: Secure Coding

Chapter 7: Cryptography and the Public Key Infrastructure

Chapter 8: Identity and Access Management

Chapter 9: Resilience and Physical Security

Chapter 10: Cloud and Virtualization Security

Chapter 11: Endpoint Security

Chapter 12: Network Security

Chapter 13: Wireless and Mobile Security

Chapter 14: Incident Response

Chapter 15: Digital Forensics

Chapter 16: Security Policies, Standards, and Compliance

Chapter 17: Risk Management and Privacy

Index

End User License Agreement

Mike Chapple, PhD, Security+, CySA+, CISSP, is Teaching Professor of IT, Analytics, and Operations at the University of Notre Dame. He’s a cybersecurity professional and educator with over 20 years of experience. Mike provides cybersecurity certification resources at his website, CertMike.com.

David Seidl, Security+, CySA+, CISSP, PenTest+, is Vice President for Information Technology and CIO at Miami University. David co-led Notre Dame’s move to the cloud and has written multiple cybersecurity certification books.

What makes us different?

• Instant Download

• Always Competitive Pricing

• 100% Privacy

• FREE Sample Available

• 24-7 LIVE Customer Support