CompTIA Advanced Security Practitioner (CASP+) (CAS-004)

In a nutshell

CompTIA is the world's largest vendor-neutral IT certification body. The CompTIA Advanced Security Practitioner (CASP+) qualification is a stand-alone qualification that validates advanced-level IT security skills and knowledge for advanced Practitioner of cybersecurity.

CASP+ certifies critical thinking and judgement across a broad spectrum of security disciplines and allows IT security professionals to conceptualise, design, and engineer secure solutions across complex enterprise environments.

The CompTIA Advanced Security Practitioner (CASP+) qualification will add authentication to your skills as you help to meet the growing demand for advanced IT security professionals.

This course is available as part of a Personal Learning Account (PLA). PLA is an initiative from the Welsh Government which offers people the chance to access free, part-time courses with flexible and convenient learning that fits around their existing lifestyle (subject to eligibility).

This course is for...

Individuals currently employed by Tata Steel UK (sites in Wales) OR its wider Welsh supply chain (including at risk of redundancy), aged 19+, living in Wales.

Course content

The course includes:

• The History of Cryptography
• Cryptographic Services
• Symmetric Encryption
• Asymmetric Encryption
• Hybrid Encryption
• Hashing
• Digital Signatures
• Public Key Infrastructure
• Implementation of Cryptographic Solutions
• Cryptographic Attacks
• Advanced Network Design
• TCP/IP
• Secure Communication Solutions
• Secure Facility Solutions and Network Infrastructure Design
• Enterprise Security
• Cloud Computing
• Virtualization
• Virtual LANs
• Virtual Networking and Security Components
• Enterprise Storage
• Firewalls and Network Access Control Lists
• Trusted Operating System
• Endpoint Security Software
• Anti-malware
• Host Hardening
• Asset Management
• Data Exfiltration
• Intrusion Detection and Prevention
• Network Management, Monitoring, and Security Tools
• Application Security Testing
• Specific Application Issues
• Application Sandboxing and Application Security Framework
• Secure Coding Standards
• Application Exploits
• Cookie Storage and Transmission
• Malware Sandboxing
• Process Handling at the Client and Server
• Security Assessments and Penetration Testing
• Risk Terminology
• Identifying Vulnerabilities
• Operational Risks
• The Risk Assessment Process
• A High-Level View of Documentation
• Business Documents Used to Support Security
• Documents and Controls Used for Sensitive Information
• Auditing Requirements and Frequency
• The Incident Response Framework
• Incident and Emergency Response
• Apply Research Methods to Determine Industry Trends and Impact to the Enterprise
• Analyze Scenarios to Secure the Enterprise
• Integrate Enterprise Disciplines to Achieve Secure Solutions
• Integrate Hosts, Storage, Networks, and Applications into a Secure Enterprise Architect
• Selecting the Appropriate Control to Secure Communications and Collaboration Solutions
• Integrate Advanced Authentication and Authorization Technologies to Support Enterprise Objectives
• Implement Security Activities across the Technology Life Cycle

Entry Requirements

The CASP+ qualification is recommended for you if you are at IT professional with at least five years hands-on experience in technical security and/or ten years overall experience in IT administration.

Additional information

This course is delivered by virtual classroom. Virtual classrooms are equivalent to face-to-face classroom courses, but delivered in an online environment.

You will need to put aside 5 days to attend this course.

The course includes exams which are invigilated online and you need to have access to an internet enabled device with a microphone and a webcam.