1 Systems Security
a. Differentiate among various systems security threats.
b. Explain the security risks pertaining to system hardware and peripherals
c. Implement OS hardening practices and procedures to achieve workstation and server security.
d. Carry out the appropriate procedures to establish application security
e. Implement security applications.
f. Explain the purpose and application of virtualization technology
2 Network Infrastructure
a. Differentiate between the different ports & protocols, their respective threats and mitigation techniques.
b. Distinguish between network design elements and components
c. Determine the appropriate use of network security tools to facilitate network security.
d. Apply the appropriate network tools to facilitate network security
e. Explain the vulnerabilities and mitigations associated with network devices
f. Explain the vulnerabilities and mitigations associated with various transmission media
g. Explain the vulnerabilities and implement mitigations associated with wireless networking.
3 Access Control
a. Identify and apply industry best practices for access control method
b. Explain common access control models and the differences between each
c. Organize users and computers into appropriate security groups and roles while distinguishing between appropriate rights and privileges
d. Apply appropriate security controls to file and print resources
e. Compare and implement logical access control methods
Although not a prerequisite, it is recommended that CompTIA Security+ candidates have at least two years of on-the-job technical networking experience, with an emphasis on security. The CompTIA Network+ certification is also recommended.
After completing this course, students will be prepared for
CompTIA Security+ 2008 certification exam SY0-201