Implementation of Secure Solutions for CompTIA Security+

By Christopher Rees
This course will teach you the fundamentals and key concepts around secure protocols, hardware and software technologies, and various use cases to illustrate how they function to keep a company’s assets and data secure.
Play course overview
Course info
Level
Beginner
Updated
Dec 7, 2020
Duration
6h 14m
Table of contents
Course Overview
Course Overview 2m
Implementing Secure Protocols
Module Intro 1m Networking Protocols and TCP Three-way Handshake 4m DNSSEC 4m SSH 1m S/MIME 1m Secure Real-Time Transport Protocol (SRTP) 1m Lightweight Directory Access Protocol over SSL (LDAPS) 1m FTPS and SFTP 2m SNMP v3 1m SSL/TLS 1m HTTPS 1m Secure POP/IMAP 3m Use Cases 4m Module Review 1m
Understanding Host or Application Security Solutions
Module Overview 1m Antivirus 1m Endpoint Detection and Response (EDR) 2m Data Loss Prevention (DLP) 2m Next-generation Firewall (NGFW) 2m HIDS/HIPS 1m Host-based Firewall 1m Boot Loader Protections and Secure Boot 3m Measured Launch 1m Integrity Measurement Architecture (IMA) 0m BIOS/UEFI 1m Hashing 2m Salt 1m Secure Coding Techniques 6m Code Quality and Testing 3m Static Code Analysis 2m Fuzzing 4m Additional Secure Coding Concepts 2m Peripherals Security 2m Hardening the Environment 2m Common Ports 1m Registry Hardening 2m Self-encrypting Drives (SED) 2m Hardware Root of Trust 1m Hardware Based Encryption 3m Sandboxing 2m
Implementing Secure Network Designs Part 1
Module Overview 1m Load Balancers 4m Security Segmentation Models 3m Virtualization 1m Air Gaps 2m East-west Traffic 2m Zero Trust 2m VPN 4m Split Tunnel 1m IPSec and Transport Encryption 2m VPN Concentrator 1m DNSSEC 4m Network Access Control (NAC) 3m In-band vs. Out-of-band Management 4m Port Security and 802.1x 4m Loop Protection and Flood Guards 2m Spanning Tree Protocol (STP) 3m DHCP Snooping 1m MAC Filtering 2m Module Review 0m
Implementing Secure Network Designs Part 2
Module Overview 1m Jump Server 2m Proxies 4m Web Security Gateways 2m Intrusion Detection and Prevention 6m IDS/IPS Component Workflow 1m Four Approaches to IDS 2m Network-based IDS 2m Security Device Placement 2m Firewalls 6m Web Application Firewalls 2m Unified Threat Management (UTM) 1m Content Filters 1m Implicit Deny and ACLs 1m Route Security 2m Quality of Service (QoS) 2m Implications of IPv6 2m Port Mirroring, Port Spanning, and Port Taps 3m File Integrity Check 2m Module Review 1m
Installing and Configuring Wireless Security Settings
Module Review 1m Wireless Definitions 2m WEP/WPA/WPA2 1m WPA and WPA2 Security 4m WPA3 4m Wireless Security Examples 2m Wireless Security and Pen Testing Tools 3m EAP, PEAP, and LEAP 2m 802.11x Wireless Protocols 2m RADIUS Federation 0m Wi-Fi Protected Setup (WPS) 1m Captive Portal 2m Installation Considerations 1m Access Points/Wi-Fi Security 4m Band Selection/Width 2m Fat vs. Thin Access Points and Stand-alone vs. Controller-based 3m Module Review 0m
Implementing Secure Mobile Solutions
Module Overview 1m Cellular 7m Securing Wi-Fi 2m Near Field Communication (NFC) 1m Additional Areas of Concern 2m MicroSD HSM 1m Mobile Device Management (MDM, MAM, and UEM) 1m SEAndroid 1m Device Security 4m Application Security and Key Credential Management 3m Authentication 2m Geo-tagging 2m Context-aware Authentication 2m Enforcement and Monitoring 4m BYOD Concerns and Deployment Models 4m Additional BYOD Concerns 3m Module Review 0m
Applying Cybersecurity Solutions to the Cloud
Module Intro 1m High Availability 2m Resource Policies 1m Secrets Management 2m Storage in the Cloud 3m Virtual Networks 3m API Inspection and Integration 2m Growth of Enterprise Cloud Application 1m Cyber Kill Chain in the Cloud 4m Compute in the Cloud 4m Cloud Access Security Broker (CASB) 1m Application Security 1m Next-gen Secure Web Gateway (NG-SWG) 1m Firewall Considerations in a Cloud Environment 2m TCP/IP and OSI Models 1m Application Layer, Protocol Layer, and Volumetric Attacks 2m Cost 1m Cloud Native Controls vs. Third-party Solutions 3m
Implementing Identity and Account Management Controls
Module Review 0m Identity Provider (IdP) 1m IdP Example 2m Certificates, Tokens, and SSH Keys 1m Certificate Issues 3m Smart Cards 1m User Accounts 1m Account Management 2m Password Complexity 1m Password History 2m Password Reuse 1m Time of Day Restrictions 1m User Access Best Practices 2m Permissions Auditing and Review 1m Recertification 2m Group Policy 2m Expiration 2m Recovery 2m Impossible Travel/Risky Login 2m Lockout 1m Disablement 1m Module Review 0m
Implementing Authentication and Authorization Solutions
Module Overview 1m Authentication Management 3m Extensible Authentication Protocol (EAP) 1m Challenge Handshake Authentication Protocol (CHAP) 1m Password Authentication Protocol (PAP) 1m Port Security and 802.1x Authentication 4m RADIUS 3m Single Sign-on (SSO) 1m SAML 2m TACACS 1m TACACS+ 2m oAUTH 2m OpenID and Shibboleth 1m Kerberos 4m Attribute Based Access Control (ABAC) 3m Rule-based/Role-based Access Control (RBAC) 2m Access Control Methods 1m Mandatory Access Control (MAC) 1m Discretionary Access Control (DAC) 1m Conditional Access 1m Privileged Accounts 1m Filesystem Permissions 1m
Implementing Public Key Infrastructure
Module Overview 1m Certificate Authorities and Digital Certificates 1m Certificate Authority 2m CRLs 1m OCSP 2m CSR and PKCS Standards 1m PKI 4m Public Key 1m Private Key 1m Object Identifiers (OID) 2m Types of Certificates 5m Certificate Formats 1m Online vs. Offline Certificate Authority (CA) 2m Stapling and Pinning 1m Trust Models 2m Key Escrow 1m Certificate Chaining 1m
Description
Course info
Level
Beginner
Updated
Dec 7, 2020
Duration
6h 14m
Description

In this course, you’ll learn about the various ways you can secure your company’s systems, network and data using secure protocols, hardware and software. First, you’ll learn about secure protocols and their various use cases. Next, you’ll learn about the hardware that helps harden a company’s security posture including endpoint protection, encryption mechanisms, database and application security, and network access control. Next, you’ll learn about securing WiFi and mobile solutions, along with protecting data in the cloud. Lastly, you’ll learn about authentication and public key infrastructure. When you’ve finished the course, you’ll have the knowledge necessary to pass the Implementation domain of the CompTIA Security+ exam as well as the skills required to secure your company’s data both on-prem and in the cloud.

About the author
Christopher Rees
About the author

Chris is a lifelong learner and professional information technologist, trainer and IT Manager. Married with 3 children, Chris is interested in martial arts, working out, spending time with family and friends and being creative whenever possible.

More from the author
Governance, Risk, and Compliance for CompTIA Security+
Beginner
2h 37m
Jan 25, 2021
Operations and Incident Response for CompTIA Security+
Beginner
3h 54m
Jan 19, 2021
More courses by Christopher Rees
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hey, everyone. My name is Christopher Rees, and welcome to my course, Implementation of Secure Solutions for CompTIA Security+. I'm both a Pluralsight author and also a senior IT OPs leader with over 20 years of enterprise IT experience that spans creating training and teaching students around the world and managing teams of enterprise engineers. Prior to my career and IT, I was in law enforcement, specializing in computer crime investigations. When it comes to security, Security+ is one of the premier certifications for those who are entering or advancing their careers in cybersecurity. Whether your role was in the public sector, the private sector, military, or federal government, understanding how to implement secure solutions is critical to defending against attacks both internal and external, on prem and also in the cloud. In this course, we're going to cover the critical elements associated with implementing secure solutions regardless of industry or location. Some of the major topics that we'll cover include implementing secure communications, protocols, and technologies, hardening infrastructure, applications, and services, secure networking solutions for wired, wireless, and also mobile communication, securing assets in the cloud, and then secure authentication, authorization, and access control including public key infrastructure. By the end of this course, you'll have a good understanding of the skills, the tools, and the knowledge required to assess and mitigate risks and implement secure solutions throughout your organization, as well as being able to articulate those risks to management and partner organizations. Before beginning this course, you should be familiar with general IT and cybersecurity concepts. I hope you'll join me on this journey to learn more about implementing secure solutions for your company as we dig into the Implementation of Secure Solutions for CompTIA Security+ here, at Pluralsight.

You're the smartest person in the room

PROVE IT

Your team won't just close the skills gap

THEY'LL HURDLE IT