CompTIA Advanced Security Practitioner (Exam CAS-002) Part 2

CompTIA Advanced Security Practitioner (CASP) (Part 2 of 2)

Created byStone River eLearning

Last updated 9/2018

English

What you'll learn

After successfully completing this course, the students shall be able to:
Manage security in an enterprise network
Integrate IT with business in an enterprise
Conduct research and analysis of the threats to enterprise security
Implement cryptographic techniques to secure data
Implement security controls and policies for applications, compute and storage
Conduct vulnerability assessments
Respond effectively to incidents and emergencies
Implement advances authentication and authorization techniques

Course content

3 sections • 81 lectures • 1h 47m total length

Responding to and Recovering from Incidents0:23
Topic A: Design Systems to Facilitate Incident Response0:32
Internal and External Violations2:46
Explore internal versus external violations, including insider abuse of permissions, contractors bypassing nondisclosure agreements, tailgating, and social engineering that yields stolen passwords and network intrusions.
Security Violations and System Design5:01
System, Audit, and Security Logs1:57
Monitor audit logs, including the Microsoft Event Viewer security log, to track applications, processes, networking, and firewall activity, and assess access successes and failures for misconfigurations and information leakage.
Guidelines for Designing Systems to Facilitate Incident Response3:24
Topic B: Conduct Incident and Emergency Responses0:36
E-Discovery1:23
E-Discovery Policy1:35
Data Breach1:37
Data Breach Response1:10
Chain of Custody2:19
Maintain a strict chain of custody for electronic evidence from collection to court, documenting storage, transfer, and custodians; use tamper-evident seals and logs to prove no alteration.
Forensic Analysis of Compromised Systems3:35
COOP - Continuity of Operations3:36
Order of Volatility2:18
Guidelines for Conducting Incident and Emergency Responses2:21
Lesson 11 Review0:23
Lesson 11 - Quiz

Legal Issues0:09
Explore legal issues, computer crime laws and regulations, and incident response to crime as part of advanced security practitioner topics.
Topic A: Computer Crime Laws and Regulations0:20
Common Law1:14
Statutory Law1:04
Types of Statutory Offenses1:21
Administrative Law0:44
Examine administrative law and how government regulatory agencies set minimum security standards across businesses, with violations pursued in administrative law courts and potential criminal penalties, as seen in Enron.
Intellectual Property Law2:29
Information Privacy Law2:40
Computer Crime Law1:38
Compliance0:52
Audits verify compliance with evolving laws and regulations, making it a top management priority to avoid fines; security and legal teams must collaborate to protect information and meet legal requirements.
Liability1:19
Internal and External Audits1:38
Conduct internal audits under management to review processes, logs, and transactions for compliance. External auditors provide unbiased oversight to verify compliance and uncover security vulnerabilities.
Governmental Oversight Resources0:51
Topic B: Computer Crime Incident Response0:32
Computer Crime1:24
The Computer Criminal Incident Response Process4:02
The Evidence Life Cycle0:47
Discover how to identify, protect, and preserve evidence throughout its life cycle, then record, collect, and transport it to secure facilities or court, and finally present and return it.
Evidence Collection Techniques0:44
Evidence Types2:21
Chain of Evidence2:03
Rules of Evidence1:22
Surveillance Techniques1:26
Computer Forensics A1:48
Computer Forensics B1:06
Lesson 12 Review0:17
Lesson 12 - Quiz

Judgment and Decision-Making0:15
Topic A: Develop Critical Thinking Skills0:24
Intellectual Autonomy1:37
Humility1:25
Objectivity1:23
Focus on the Argument0:38
Clarity1:09
Achieve clarity by simplifying ideas and knowing your audience across cultures; minimize slang and jargon to overcome language barriers in instructional settings.
Defining Your Argument0:57
Intellectual Honesty0:26
Logical Fallacies2:44
Assessing Arguments Logically1:09
How to Employ Critical Thinking Skills0:26
Topic B: Determine the Root of a Problem0:26
Obstacles to Analysis1:15
Occam's Razor0:41
In this part of the CompTIA advanced security practitioner course, apply Occam's razor to break down complex problems by defining the problem clearly and favoring the simplest explanation.
Techniques for Applying Occam's Razor2:06
Theme Analysis0:23
The Four Guidelines Technique0:57
How to Determine the Root of a Problem0:24
Identify the root of a problem by applying Ockham's Razor to simplify complexity, ask probing questions, clarify perceptions, and analyze hidden expectations.
Topic C: Use Judgment to Make Sound Decisions0:46
Develop judgment to make sound decisions by analyzing problems with analytical and creative thinking, using fishbone diagrams, cost-benefit analysis, decision trees, and the ease and effect matrix.
Analyzing Problems0:39
Analyze problems by defining and analyzing the issue, then gather and interpret data with matrices and charts. Identify multiple cost-effective solutions and compare to choose the best.
Analytical vs. Creative Thinking1:47
Barriers to Creative Thinking1:18
Identify barriers to creative thinking, such as restricted thinking from past experience, assumptions about what's possible, and reflexive judgments that dismiss ideas or insist on one right answer.
Brainstorming0:28
Rules of Brainstorming1:10
Evaluating Brainstorming Ideas1:05
A Fishbone Diagram1:11
Use the fishbone (cause-and-effect) diagram to analyze a defined problem and generate ideas for solutions, organizing issues such as machine, nonstandard software, format incompatibilities, storyboards, and poor training.
A Pareto Chart1:39
A Histogram0:38
Explore how a histogram, a kind of chart, reveals patterns in data. See test scores from 75 to 85, 10 times, with some results pointing to the solution.
A Cost-Benefit Analysis1:30
Phases in Cost-Benefit Analysis1:28
A Prioritization Matrix1:06
A Trade-Off Method1:18
A Decision Tree0:21
Explore how a decision tree visually maps alternatives and their strengths and weaknesses, guiding investment decisions such as capacity expansion with a systematic evaluation approach.
An Ease and Effect Matrix0:54
A PMI Analysis Table1:06
How to Use Judgment to Make Sound Decisions0:19
Lesson 13 Review0:18
Lesson 13 review focuses on methods for developing critical thinking, identifying the root of problems, and using that insight to make sound judgments and decisions.
Lesson 13 - Quiz
Course Closure0:10

Requirements

The course does not have any formal pre-requisites, however, students are advised to attend a basic and foundation level course regarding basic network technologies such as TCP/IP, routing, and switching.
Alternatively, students having one year experience in networking can opt for this course without any preliminary training.

Description

CompTIA Advanced Security Practitioner (CAS-002) is the course that teaches the students on securing complex enterprise environments. In this course, the students will expand their knowledge of IT security and learn about the more advanced tools and techniques to keep any organization safe and secure.

The CompTIA Advanced Security Practitioner (CAS-002) course will enable the students to meet the growing demands of today’s IT environment. The course helps the students to develop their skills and perform their jobs as advanced security professionals in their organizations. The course is designed for IT security professionals who want to acquire the technical knowledge and skills needed to conceptualize, engineer, integrate, and implement secure solutions across complex enterprise environments.

** This course is in 2 parts. Please purchase Part 1 as well for the complete course.**

Who this course is for:

The course is primarily intended for the candidates appearing in the CAS-002: CompTIA Advances Security Practitioner exam.
The course will helps the candidates to prepare the exam topics and successfully complete the certification.
In addition to this, the IT professionals looking to increase their knowledge of enterprise security can also register.

CompTIA Advanced Security Practitioner (Exam CAS-002) Part 2

What you'll learn

Explore related topics

Course content

Lesson 11 - Responding to and Recovering from Incidents17 lectures • 35min

Lesson 12 - Legal Issues25 lectures • 34min

Lesson 13 - Judgment and Decision-Making39 lectures • 38min

Requirements

Description

Who this course is for: