In this course, you will build on your knowledge of and professional experience with security fundamentals, networks, and organizational security as you acquire the specific skills required to implement basic security services on any type of computer network.



In this course, you will implement information security across a variety of different contexts. You will:

  • Identify the fundamental components of information security.
  • Analyze risk.
  • Identify various threats to information security.
  • Conduct security assessments to detect vulnerabilities.
  • Implement security for hosts and software.
  • Implement security for networks.
  • Manage identity and access.
  • Implement cryptographic solutions in the organization.
  • Implement security at the operational level.
  • Address security incidents.
  • Ensure the continuity of business operations in the event of an incident.



This course is targeted toward the information technology (IT) professional who has networking and administrative skills in Windows®-based Transmission Control Protocol/Internet Protocol (TCP/IP) networks; familiarity with other operating systems, such as macOS®, Unix, or Linux; and who wants to further a career in IT by acquiring foundational knowledge of security topics; preparing for the CompTIA Security+ certification examination; or using Security+ as the foundation for advanced security certifications or career roles.



CompTIA A+ and Network+ certifications, or equivalent knowledge, and six to nine months’ experience in networking, including configuring security parameters, are strongly recommended.



Module 1: Identifying security fundamentals

  • Identify Information Security Concepts.
  • Identify Basic Security Controls.
  • Identify Basic Authentication and Authorization Concepts.
  • Identify Basic Cryptography Concepts.


Module 2: Analyzing risk

  • Analyze Organizational Risk.
  • Analyze the Business Impact of Risk.


Module 3: Identifying security threats

  • Identify Types of Attackers.
  • Identify Social Engineering Attacks.
  • Identify Malware.
  • Identify Software-Based Threats.
  • Identify Network-Based Threats.
  • Identify Wireless Threats.
  • Identify Physical Threats.


Module 4: Conducting security assessments

  • Identify Vulnerabilities.
  • Assess Vulnerabilities.
  • Implement Penetration Testing.


Module 5: Implementing host and software security

  • Implement Host Security.
  • Implement Cloud and Virtualization Security.
  • Implement Mobile Device Security.
  • Incorporate Security in the Software Development Lifecycle.


Module 6: Implementing network security

  • Configure Network Security Technologies.
  • Secure Network Design Elements.
  • Implement Secure Networking Protocols and Services.
  • Secure Wireless Traffic.


Module 7: Managing identity and access

  • Implement Identity and Access Management.
  • Configure Directory Services.
  • Configure Access Services.
  • Manage Accounts.


Module 8: Implementing cryptography

  • Identify Advanced Cryptography Concepts.
  • Select Cryptographic Algorithms.
  • Configure a Public Key Infrastructure.
  • Enroll Certificates.
  • Back Up and Restore Certificates and Private Keys.
  • Revoke Certificates.


Module 9: Implementing operational security

  • Evaluate Security Frameworks and Guidelines.
  • Incorporate Documentation in Operational Security.
  • Implement Security Strategies.
  • Manage Data Security Processes.
  • Implement Physical Controls.


Module 10: Addressing security incidents

  • Troubleshoot Common Security Issues.
  • Respond to Security Incidents.
  • Investigate Security Incidents.


Module 11: Ensuring business continuity

  • Select Business Continuity and Disaster Recovery Processes.
  • Develop a Business Continuity Plan.


Related Certification

  • CompTIA Security+ (Exam SY0-501)