Best CompTIA Security+ Training in Jalandhar.

Competency in Network Security, Threats and vulnerabilities, Application, data and host security, Compliance and operational security, Access control and identity management, cryptography, etc is validated by the Security+ program from CompTIA.
This certification empowers the candidate to apply the knowledge of security tools, concepts and also the defensive and reactive procedures to security incidents besides also being vendor-neutral. Besides equipping the professionals to anticipate security risks, the certification also helps them to guard and defend against security risks.

Implement security configuration parameters on network devices and other technologies.

1. Firewalls
2. Routers
3. Switches
4. Load balancers
5. Proxies
6. Web security gateways
7. VPN concentrators
8. NIDS and NIPS
9. Protocol analyzers
10. Spam filter
11. UTM security appliances
12. Web application firewall vs. network firewall
13. Application aware devices

Given a scenario, use secure network administration principles.

1. Rule-based management
2. Firewall rules
2. VLAN management
3. Secure router configuration
4. Access control lists
5. Port security
6. 802.1x
7. Flood guards
8. Loop protection
9. Implicit deny
10. Network separation
11. Log analysis
12. Unified threat management

Explain network design elements and components.

1. DMZ
2. Subnetting
3. VLAN
4. NAT
5. Remote access
6. Telephony
7. NAC
8. Virtualization
9. Cloud computing
10. Layered security/defense in depth

Given a scenario, implement common protocols and services.

1. Protocols
2. Ports
3. OSI relevance

Given a scenario, troubleshoot security issues related to wireless networking.

1. WPA
2. WPA2
3. WEP
4. EAP
5. PEAP
6. LEAP
7. MAC filter
8. Disable SSID broadcast
9. TKIP
10. CCMP
11. Antenna placement
12. Power level controls
13. Captive portals
14. Antenna types
15. Site surveys
16. VPN (over open wireless)

Explain the importance of risk related concepts.

1. Control types
2. False positives
3. False negatives
4. Importance of policies in reducing risk
5. Risk calculation
6. Quantitative vs. qualitative
7. Vulnerabilities
8. Threat vectors
9. Probability/threat likelihood
10. Risk avoidance, transference, acceptance, mitigation, deterrence
11. Risks associated with cloud computing and virtualization
12. Recovery time objective and recovery point objective

Summarize the security implications of integrating systems and data with third parties.

1. On-boarding/off-boarding business partners
2. Social media networks and/or applications
3. Interoperability agreements
4. Privacy considerations
5. Risk awareness
6. Unauthorized data sharing
7. Data ownership
8. Data backups
9. Follow security policy and procedures
10. Review agreement requirements to verify compliance and performance standards

Given a scenario, implement appropriate risk mitigation strategies.

1. Change management
2. Incident management
3. User rights and permissions reviews
4. Perform routine audits
5. Enforce policies and procedures to prevent data loss or theft
6. Enforce technology controls

Given a scenario, implement basic forensic procedures.

1. Order of volatility
2. Capture system image
3. Network traffic and logs
4. Capture video
5. Record time offset
6. Take hashes
7. Screenshots
8. Witnesses
9. Track man hours and expense
10. Chain of custody
11. Big Data analysis

Summarize common incident response procedures.

1. Preparation
2. Incident identification
3. Escalation and notification
4. Mitigation steps
5. Lessons learned
6. Reporting
7. Recovery/reconstitution procedures
8. First responder
9. Incident isolation
10. Data breach
11. Damage and loss control

Explain the importance of security related awareness and training.

1. Security policy training and procedures
2. Role-based training
3. Personally identifiable information
4. Information classification
5. Data labeling, handling and disposal
6. Compliance with laws, best practices and standards
7. User habits
8. New threats and new security trends/alerts
9. Use of social networking and P2P
10. Follow up and gather training metrics to validate compliance and security posture

Implement security configuration parameters on network devices and other technologies.

1. Firewalls
2. Routers
3. Switches
4. Load balancers
5. Proxies
6. Web security gateways
7. VPN concentrators
8. NIDS and NIPS
Behavior-based
Signature-based
Anomaly-based
Heuristic
9. Protocol analyzers
10. Spam filter
11. UTM security appliances
URL filter
Content inspection
Malware inspection
12. Web application firewall vs. network firewall
13. Application aware devices
Firewalls
IPS
IDS
Proxies
Given a scenario, use secure network administration principles. 1. Rule-based management
2. Firewall rules
2. VLAN management
3. Secure router configuration
4. Access control lists
5. Port security
6. 802.1x
7. Flood guards
8. Loop protection
9. Implicit deny
10. Network separation
11. Log analysis
12. Unified threat management
Explain network design elements and components. 1. DMZ
2. Subnetting
3. VLAN
4. NAT
5. Remote access
6. Telephony
7. NAC
8. Virtualization
9. Cloud computing
10. Layered security/defense in depth
Given a scenario, implement common protocols and services.
1. Protocols
3. OSI relevance

Given a scenario, troubleshoot security issues related to wireless networking.

1. WPA
2. WPA2
3. WEP
4. EAP
5. PEAP
6. LEAP
7. MAC filter
8. Disable SSID broadcast
9. TKIP
10. CCMP
11. Antenna placement
12. Power level controls
13. Captive portals
14. Antenna types
15. Site surveys
16. VPN (over open wireless)

Explain the importance of risk related concepts.

1. Control types
2. False positives
3. False negatives
4. Importance of policies in reducing risk
5. Risk calculation
6. Quantitative vs. qualitative
7. Vulnerabilities
8. Threat vectors
9. Probability/threat likelihood
10. Risk avoidance, transference, acceptance, mitigation, deterrence
11. Risks associated with cloud computing and virtualization
12. Recovery time objective and recovery point objective
Summarize the security implications of integrating systems and data with third parties.
1. On-boarding/off-boarding business partners
2. Social media networks and/or applications
3. Interoperability agreements
4. Privacy considerations
5. Risk awareness
6. Unauthorized data sharing
7. Data ownership
8. Data backups
9. Follow security policy and procedures
10. Review agreement requirements to verify compliance and performance standards
Given a scenario, implement appropriate risk mitigation strategies.
1. Change management
2. Incident management
3. User rights and permissions reviews
4. Perform routine audits
5. Enforce policies and procedures to prevent data loss or theft
6. Enforce technology controls
Data Loss Prevention (DLP)
Given a scenario, implement basic forensic procedures. 1. Order of volatility
2. Capture system image
3. Network traffic and logs
4. Capture video
5. Record time offset
6. Take hashes
7. Screenshots
8. Witnesses
9. Track man hours and expense
10. Chain of custody
11. Big Data analysis
Summarize common incident response procedures. 1. Preparation
2. Incident identification
3. Escalation and notification
4. Mitigation steps
5. Lessons learned
6. Reporting
7. Recovery/reconstitution procedures
8. First responder
9. Incident isolation
Quarantine
Device remova
10. Data breach
11. Damage and loss control
Explain the importance of security related awareness and training. 1. Security policy training and procedures
2. Role-based training
3. Personally identifiable information
4. Information classification
High
Medium
Low
Confidential
Private
Public
5. Data labeling, handling and disposal
6. Compliance with laws, best practices and standards
7. User habits
Password behaviors
Data handling
Clean desk policies
Prevent tailgating
Personally owned devices
8. New threats and new security trends/alerts
New viruses
Phishing attacks
Zero-day exploits
9. Use of social networking and P2P
10. Follow up and gather training metrics to validate compliance and security posture
Compare and contrast physical security and environmental controls.
1. Environmental controls
2. Physical security
3. Control types

Summarize risk management best practices.

1. Business continuity concepts
2. Fault tolerance
3. Disaster recovery concepts

Given a scenario, select the appropriate control to meet the goals of security.

1. Confidentiality
2. Integrity
3. Availability
4. Safety

CompTIA Security+