All courses
Resource hub
Featured resource
Tech Upskilling Playbook 2025
Tech Upskilling Playbook

Build future-ready tech teams and hit key business milestones with seven proven plays from industry leaders.

Learn more
Hamburger Icon
  • Certification Path
    • Libraries: This path is only available in the libraries listed. To access this path, purchase a license for the corresponding library.
  • Security
    •

CompTIA CySA (CS0-003)

6 Courses
21 Labs
26 Hours
Practice exam

This series provides the knowledge and skills required to detect and analyze indicators of malicious activity, understand threat intelligence and threat management, respond to attacks and vulnerabilities, perform incident response, and report and communicate related activity. This series can be used to prepare for the CompTIA CySA+ (Cybersecurity Analyst, CSO-003) exam.

For 10% discount when you sign up for your next CompTIA exam, use the code "PLURAL10"

Get started

Content in this path

CompTIA CySA+ (CS0-003)

This series provides the knowledge and skills required to detect and analyze indicators of malicious activity, understand threat intelligence and threat management, respond to attacks and vulnerabilities, perform incident response, and report and communicate related activity. This series can be used to prepare for the CompTIA CySA+ (Cybersecurity Analyst, CSO-003) exam.

Course

Security Operations for CySA+

  • by Dale Meredith
  • 1h 39m
  • Jun 07, 2023
Course

Vulnerability Management for CySA+

  • by Dale Meredith
  • 1h 31m
  • Jun 07, 2023
Course

Incident Response and Management for CySA+

  • by Dale Meredith
  • 1h 1m
  • Jun 07, 2023
Course

Reporting and Communication for CySA+

  • by Dale Meredith
  • 58m
  • Jun 07, 2023
Course

Exam Review Tips and Tricks for CySA+

  • by Dale Meredith
  • 28m
  • Jun 07, 2023

CompTIA CySA+ (CS0-003) Hands-on Labs

This content provides the hands-on experience required to detect and analyze indicators of malicious activity, understand threat intelligence and threat management, respond to attacks and vulnerabilities, perform incident response, and report and communicate related activity. This series can be used to gain hands-on learning for the CompTIA CySA+ (Cybersecurity Analyst, CSO-003) exam.

Course

Getting Started in the Lab Environment

  • by Aaron Rosenmund
  • 6m
  • Oct 07, 2021
Lab

Log Analysis: Using a SIEM

  • by Joe Abraham
  • 40m
  • Aug 04, 2025
Lab

Log Analysis: Cloud

  • by Nick Stockhauser
  • 1h
  • Aug 04, 2025
Lab

Log Analysis: Web Applications

  • by Nick Stockhauser
  • 45m
  • Aug 04, 2025
Lab

Log Analysis: Windows Event Logs

  • by Jeff Christman
  • 50m
  • Aug 04, 2025
Lab

Malware Analysis: Debugging and Reverse Engineering

  • by Shimon Brathwaite
  • 45m
  • Jul 30, 2025
Lab

Malware Analysis: Sandboxing

  • by Aaron Diaz
  • 1h 10m
  • Aug 05, 2025
Lab

Monitoring and Detection: File Analysis

  • by Aaron Diaz
  • 1h
  • Aug 05, 2025
Lab

Monitoring and Detection: Log Ingestion

  • by Tim Coakley
  • 45m
  • Aug 05, 2025
Lab

Monitoring and Detection: Graylog

  • by Sean Wilkins
  • 1h 40m
  • Aug 05, 2025
Lab

Monitoring and Detection: Splunk

  • by Shimon Brathwaite
  • 1h 5m
  • Aug 08, 2025
Lab

Monitoring and Detection: User Behavior Analysis

  • by Sean Wilkins
  • 1h 5m
  • Jul 30, 2025
Lab

Network Analysis: Network and Host Discovery

  • by Craig Stansbury
  • 45m
  • Aug 04, 2025
Lab

Network Analysis: Packet Capture

  • by Miguel Saavedra
  • 50m
  • Aug 04, 2025
Lab

Network Analysis: Session Data and Signatures

  • by Sean Wilkins
  • 1h 38m
  • Aug 05, 2025
Lab

Network Forensics: tcpdump

  • by Jeff Christman
  • 45m
  • Jul 30, 2025
Lab

Vulnerability Scanning: OpenVAS

  • by Peter Mosmans
  • 55m
  • Aug 04, 2025
Lab

Web Attacks: SQL Injection

  • by Gavin JohnsonLynn
  • 50m
  • Aug 04, 2025
Lab

Authentication: Certificates

  • by Shimon Brathwaite
  • 1h
  • Aug 04, 2025
Lab

Active Defense: Honeypots

  • by Shimon Brathwaite
  • 50m
  • Aug 04, 2025
Lab

Threat Hunting: Network IOCs

  • by Sean Wilkins
  • 1h
  • Aug 04, 2025
Lab

Threat Hunting: Host IOCs

  • by Shimon Brathwaite
  • 45m
  • Aug 05, 2025
Try this learning path for free
Access this learning path and other top-rated tech content with a free trial.
Free individual trial Free team trial
Have questions? Get them answered now.
Start a live chat
Certification path

Build confidence to ace your certification exam with a variety of prep tools, including video courses, labs, and practice exams.

What You'll Learn
  • Important principles within Security Operations including system and network architecture, analyzing indicators of compromise, monitoring and detection and threat intelligence/threat hunting concepts.
  • Vulnerability management concepts using different scanning methods and tools, prioritization of vulnerabilities and recommendations of controls and other protections.
  • Incident response and management activities, methodologies and frameworks.
  • The importance of reporting and communication
Prerequisites
  • CompTIA recommends CySA+ candidates have 4 years of hands-on information/cyber security job role experience. This path does recommend Security+ and Network+, or equivalent knowledge and experience, prior to viewing.
Related topics
  • security analyst
  • continuous monitoring and detection
  • incident detection
  • CompTIA
Prepare for in-demand tech certifications Explore practice exams

Learn with the best

Dale Meredith
Dale Meredith
Dale Meredith has been a Certified Ethical Hacker/Instructor EC-Council for the past 15 years, and Microsoft Certified Trainer for over 20 years. Dale also has an additional 7 years of senior IT management experience and worked as a CTO for a popular ISP provider. Dale's expertise is in explaining difficult concepts and ensuring his students have an actionable knowledge of the course material. Straddling the line of fun and function, Dale's instruction is memorable and entertaining. Dale's knowl...
Aaron Rosenmund
Aaron Rosenmund
Aaron M. Rosenmund is a cyber security operations subject matter expert, with a background in federal and business defensive and offensive cyber operations and system automation. Leveraging his administration and automation experience, Aaron actively contributes to multiple open and closed source security operation platform projects and continues to create tools and content to benefit the community. As an educator & cyber security researcher at Pluralsight, he is focused on advancing cyber secur...
Joe Abraham
Joe Abraham
Joe Abraham, CCIE #62417, is a Cybersecurity Architect working in the public sector space, assisting customers develop and implement functional and secure network architectures. He graduated from Excelsior College with an M.S. in Cybersecurity and a B.S. in Information Technology (Network Management). He currently holds many IT certifications to include CCIE, CISSP, GSEC, and CCNP Security. Joe is a mentor to IT professionals and a blogger who spends his time either with his wife and three child...
Nick Stockhauser
Nick Stockhauser
Nick Had his start in I.T. with the Arizona Army National Guard as an I.T. Specialist in 2016. Since then he has worked with companies like Apple, TEKsystems, WGU, Leidos, and Booz Allen Hamilton as well as full time for the Army National Guard. He finished his Masters Degree in Cybersecurity from Western Governors University while also being employed there. He currently works with Booz Allen Hamilton as a Cloud Network. Nick is 4x AWS Certified, as well as CompTIA certified in CASP+, Security...
Jeff Christman
Jeff Christman
Jeff Christman is an experienced professional with over 20 years in the information technology field. Getting his start in the US Navy, he is now a consultant helping companies of all sizes migrate and secure cloud services. He is a passionate technologist and contributes regularly to several technology publications including Technsips.io, Adamtheautomator.com, and Pluralsight. Currently, he works for a large technology consulting company providing strategy, architecture, and planning expertise ...
Shimon Brathwaite
Shimon Brathwaite
Shimon Brathwaite is a seven-year cybersecurity professional with extensive experience in Incident Response, Vulnerability Management, Identity and Access Management and Consulting. He has worked at one of the Big Four consulting firms, multiple of Canada’s largest banks and in startup environments. In addition to his full-time work, he runs a blog securitymadesimple.org, a consulting company and is a published author with four books on cybersecurity. He is open for engagements related to cybers...
Aaron Diaz
Aaron Diaz
Aaron Diaz has worked primarily as a government contractor working with different branches of the military and government agencies. Aaron has worked as a Threat Hunter, Malware Reverse Engineer, Software Developer, and a Penetration tester. He is passionate about reverse engineering software and all things related to offensive security (malware/exploit development). During his tenure on a Threat Hunting team, he became the lead Malware Reverse Engineer. This sparked a love for understanding how ...
Tim Coakley
Tim Coakley
Tim Coakley is a Senior Security Solutions Architect for a large multi-national organisation and an author at Pluralsight. Tim started a long and successful full-time career in Digital Forensics supporting the criminal justice system and law enforcement on a long list of criminal cases. Parallel to this Tim ran a research and development business creating solutions from design through to support resulting in some unique and niche software not developed anywhere else. Tim now works fully within t...
Sean Wilkins
Sean Wilkins
Sean Wilkins, with over two decades of experience in the IT industry, serves as a distinguished networking consultant and contributor at Tech Building Blocks. His professional journey spans multiple prominent enterprises, underlining his extensive field expertise. Sean's credentials include esteemed certifications from Cisco (CCNP/CCDP), Microsoft (MCSE), and CompTIA (A+ and Network+). Academically, he has achieved a Master’s of Science in Information Technology, specializing in Network Architec...
Craig Stansbury
Craig Stansbury
Craig has over 10 years of IT experience, including working on Palo Alto Firewalls, Cisco Routes and Switches, Microsoft Servers, and VMWare ESXi. Craig started in IT in the United States Marine Corps and began teaching his Marines all the design and implementation concepts that they needed to know. He loves when his students have the "lightbulb moment" and are able to understand the concepts he is teaching them. Aside from teaching, Craig also owns a business that consults with enterprises to h...
Miguel Saavedra
Miguel Saavedra
Miguel Saavedra is an author, solutions architect, and Instructor specializing in AWS, big data, automation, and security. He has worked in several companies in the finance/fintech, education, and medical industries as well as some government projects. He has published and conducted research on both cloud and on-premise solutions for big data focusing on network analytics, and machine learning. He also designs highly available and automated CICD toolchains for high throughput microservices on AW...
Peter Mosmans
Peter Mosmans
Peter started out in the nineties as software engineer working on internet banking applications for various European financial institutions. After developing, he moved to the role of defending and designing systems and networks for high-availability websites. Since 2004 he started specializing in breaking: pentesting complex and feature-rich web applications. Currently he leads a global team of highly skilled penetration testers as lead pentester. He is a contributor to several open-source penet...
Gavin JohnsonLynn
Gavin JohnsonLynn
Gavin has 20 years’ experience writing software in regulated environments and for global organisations. The last five years of his development career were spent with a focus on security, becoming the security lead for a significant payments project at a FTSE 100 company. He has experience with languages from COBOL to .Net and many languages in between. Gavin's experience of secure development revealed a passion for security, leading him to become a speaker and blogger on the subject. He has held...

Join our learners and upskill
in leading technologies