Dec 22, 2024  
Course/Program Inventory 
    
Catalog Navigation
  Catalog Home
  All Courses
  Community College Course Inventory
  Community College Common Course Libraries
  TCAT Course Inventory
  TCAT Program Inventory
  Articulation Agreements
  Tennessee Transfer Pathways
  TCAT to CC Articulation Brochure
HELP
Course/Program Inventory

ITM 3160 - Security+ Cert Prep


Clock Hours: 156

Delivery Mode
on-ground

Prerequisites: ITM-3150 Net Security & Compliance

Industry Certifications Computer Technology Industry Association (CompTIA) Security + or Computer Technology Industry Association (CompTIA) CySA+

Course Description:
This course covers CompTIA’s Security+ and CySA+ (Cyber Security Analyst) certification and objectives. Students electing to take the exams will meet IAT Standards Level II of DoD 8570.1. Topics include Network Security, Information Assurance, Compliance and Operational Security, Threats and Vulnerabilities, Application, Data and Host Security, Access Control and Identity Management, Cryptography and other advanced security items such as SEIM, SCADA/PLCs, logs, auditing, network attacks, pen testing, software testing and items that meet and exceed CompTIA’s requirements. The capstone project for this course includes live penetration tests including a 50+ page paper along with mitigation of vulnerabilities that are found.

Student Learning Outcomes:
  1. Given a scenario, analyze indicators of compromise and determine the type of malware.
  2. Compare and contrast types of attacks.
  3. Explain threat actor types and attributes.
  4. Explain penetration testing concepts.
  5. Explain vulnerability scanning concepts.
  6. Explain the impact associated with types of vulnerabilities.
  7. Install and configure network components, both hardware and software-based, to support organizational security.
  8. Install and configure network components, both hardware and software-based, to support organizational security.
  9. Given a scenario, troubleshoot common security issues.
  10. Given a scenario, analyze and interpret output from security technologies
  11. Given a scenario, deploy mobile devices securely.
  12. Given a scenario, implement secure protocols.
  13. Explain use cases and purpose for frameworks, best practices and secure configuration guides.
  14. Given a scenario, implement secure network architecture concepts.

 

  1. Given a scenario, implement secure systems design.
  2. Explain the importance of secure staging deployment concepts.
  3. Explain the security implications of embedded systems.
  4. Summarize secure application development and deployment concepts
  5. Summarize cloud and virtualization concepts.
  6. Explain how resiliency and automation strategies reduce risk
  7. Explain the importance of physical security controls.
  8. Compare and contrast identity and access management concepts
  9. Given a scenario, install and configure identity and access services.
  10. Given a scenario, implement identity and access management controls.
  11. Given a scenario, differentiate common account management practices.
  12. Explain the importance of policies, plans and procedures related to organizational security.
  13. Summarize business impact analysis concepts.
  14. Explain risk management processes and concepts.
  15. Given a scenario, follow incident response procedures.
  16. Summarize basic concepts of forensics.
  17. Explain disaster recovery and continuity of operation concepts.
  18. Compare and contrast various types of controls.
  19. Given a scenario, carry out data security and privacy practices.
  20. Compare and contrast basic concepts of cryptography.
  21. Explain cryptography algorithms and their basic characteristics.
  22. Given a scenario, install and configure wireless security settings.
  23. Given a scenario, implement public key infrastructure
  24. Discuss, Review, Summarize, demonstrate and write the results of a live pen/vulnerability test.

Cyber Security Analyst

    1. Given a scenario, apply environmental reconnaissance techniques using appropriate tools and processes.
    2. Given a scenario, analyze the results of a network reconnaissance.
    3. Given a network-based threat, implement or recommend the appropriate response and countermeasure.
    4. Explain the purpose of practices used to secure a corporate environment
    5. Given a scenario, implement an information security vulnerability management process.
    6. Given a scenario, analyze the output resulting from a vulnerability scan.
    7. Compare and contrast common vulnerabilities found in the following targets within an organization.
    8. Given a scenario, distinguish threat data or behavior to determine the impact of an incident.
    9. Given a scenario, prepare a toolkit and use appropriate forensics tools during an investigation.
    10. Explain the importance of communication during the incident response process.
    11. Given a scenario, analyze common symptoms to select the best course of action to support incident response
    12. Summarize the incident recovery and post-incident response process.
    13. Explain the relationship between frameworks, common policies, controls, and procedures.
    14. Given a scenario, use data to recommend remediation of security issues related to identity and access management.
    15. Given a scenario, review security architecture and make recommendations to implement compensating controls.
    16. Given a scenario, use application security best practices while participating in the Software Development Life Cycle (SDLC).
    17. Compare and contrast the general purpose and reasons for using various cybersecurity tools and technologies.