O'Reilly logo

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

CompTIA Security+ Study Guide, 7th Edition

Book Description

Expert preparation covering 100% of Security+ exam SY0-501 objectives

CompTIA Security+ Study Guide, Seventh Edition offers invaluable preparation for Exam SY0-501. Written by an expert author team, this book covers 100% of the exam objectives with clear, concise explanation. You'll learn how to handle threats, attacks, and vulnerabilities using industry-standard tools and technologies, while understanding the role of architecture and design. From everyday tasks like identity and access management to complex topics like risk management and cryptography, this study guide helps you consolidate your knowledge base in preparation for the Security+ exam. Practical examples illustrate how these processes play out in real-world scenarios, allowing you to immediately translate essential concepts to on-the-job application. You also gain access to the Sybex online learning environment, which features a robust toolkit for more thorough prep: flashcards, glossary of key terms, practice questions, and a pre-assessment exam equip you with everything you need to enter the exam confident in your skill set.

This study guide is approved and endorsed by CompTIA, and has been fully updated to align with the latest version of the exam.

  • Master essential security technologies, tools, and tasks
  • Understand how Security+ concepts are applied in the real world
  • Study on the go with electronic flashcards and more
  • Test your knowledge along the way with hundreds of practice questions

To an employer, the CompTIA Security+ certification proves that you have the knowledge base and skill set to secure applications, devices, and networks; analyze and respond to threats; participate in risk mitigation, and so much more. As data threats loom larger every day, the demand for qualified security professionals will only continue to grow. If you're ready to take the first step toward a rewarding career, CompTIA Security+ Study Guide, Seventh Edition is the ideal companion for thorough exam preparation.

Table of Contents

  1. Acknowledgments
  2. About the Authors
  3. Introduction
    1. Before You Begin the CompTIA Security+ Certification Exam
    2. Why Become Security+ Certified?
    3. How to Become a Security+ Certified Professional
    4. Who Should Read This Book?
    5. What Does This Book Cover?
    6. Tips for Taking the Security+ Exam
    7. What’s Included in the Book
    8. Interactive Online Learning Environment and Test Bank
    9. How to Use This Book and Study Tools
    10. Exam SY0-501 Exam Objectives
    11. SY0-501 Certification Exam Objective Map
  4. Assessment Test
  5. Answers to Assessment Test
  6. Chapter 1 Managing Risk
    1. Risk Terminology
    2. Threat Assessment
    3. Risk Assessment
    4. Developing Policies, Standards, and Guidelines
    5. Summary
    6. Exam Essentials
    7. Review Questions
  7. Chapter 2 Monitoring and Diagnosing Networks
    1. Monitoring and Diagnosing Networks Terminology
    2. Frameworks, Best Practices, and Configuration Guides
    3. Secure Network Architecture Concepts
    4. Secure Systems Design
    5. Summary
    6. Exam Essentials
    7. Review Questions
  8. Chapter 3 Understanding Devices and Infrastructure
    1. Infrastructure Terminology
    2. Designing with Security in Mind
    3. Summary
    4. Exam Essentials
    5. Review Questions
  9. Chapter 4 Identity and Access Management
    1. Using Tools to Assess Your Network
    2. Troubleshooting Common Security Issues
    3. Security Technologies
    4. Identity and Access Management Concepts
    5. Install and Configure Identity and Access Services
    6. File and Database Security
    7. Summary
    8. Exam Essentials
    9. Review Questions
  10. Chapter 5 Wireless Network Threats
    1. Wireless Threat Terminology
    2. Wireless Vulnerabilities to Know
    3. Wireless Commonsense
    4. Wireless Attack Analogy
    5. Summary
    6. Exam Essentials
    7. Review Questions
  11. Chapter 6 Securing the Cloud
    1. Cloud-Related Terminology
    2. Working with Cloud Computing
    3. Working with Virtualization
    4. Security and the Cloud
    5. Summary
    6. Exam Essentials
    7. Review Questions
  12. Chapter 7 Host, Data, and Application Security
    1. Threat Actors and Attributes
    2. Use of Open Source Intelligence
    3. Types of Vulnerabilities
    4. Embedded Systems Security
    5. Application Vulnerabilities
    6. Secure Programming
    7. Other Application Security Issues
    8. Code Issues
    9. Summary
    10. Exam Essentials
    11. Review Questions
  13. Chapter 8 Cryptography
    1. An Overview of Cryptography
    2. Modern Cryptography
    3. Using Cryptographic Systems
    4. Understanding Cryptography Standards and Protocols
    5. Public Key Infrastructure
    6. Using Public Key Infrastructure
    7. Authentication
    8. Summary
    9. Exam Essentials
    10. Review Questions
  14. Chapter 9 Threats, Attacks, and Vulnerabilities
    1. Threat and Attack Terminology
    2. Living in a World of Viruses
    3. Malware and Crypto-Malware
    4. Understanding Various Types of Application/Service Attacks
    5. Summary
    6. Exam Essentials
    7. Review Questions
  15. Chapter 10 Social Engineering and Other Foes
    1. Social Engineering and Physical Security Terminology
    2. Understanding Social Engineering
    3. Understanding Physical Security
    4. Various Control Types
    5. Data Security and Privacy Practices
    6. Summary
    7. Exam Essentials
    8. Review Questions
  16. Chapter 11 Security Administration
    1. Connection Types
    2. Mobile Devices
    3. Account Management Concepts
    4. Summary
    5. Exam Essentials
    6. Review Questions
  17. Chapter 12 Disaster Recovery and Incident Response
    1. Disaster and Incident Related Terminology
    2. Penetration Testing
    3. Issues Associated with Business Continuity
    4. Summary
    5. Exam Essentials
    6. Review Questions
  18. Appendix Answers to Review Questions
    1. Chapter 1 : Managing Risk
    2. Chapter 2 : Monitoring and Diagnosing Networks
    3. Chapter 3 : Understanding Devices and Infrastructure
    4. Chapter 4 : Identity and Access Management
    5. Chapter 5 : Wireless Network Threats
    6. Chapter 6 : Securing the Cloud
    7. Chapter 7 : Host, Data, and Application Security
    8. Chapter 8 : Cryptography
    9. Chapter 9 : Threats, Attacks, and Vulnerabilities
    10. Chapter 10 : Social Engineering and Other Foes
    11. Chapter 11 : Security Administration
    12. Chapter 12 : Disaster Recovery and Incident Response
  19. Advert
  20. EULA