IT Professional Curricula Internet and Network Technologies Solution Area Security Solutions CompTIA CySA+ (CS0-002)
In this course, you'll learn about centralized monitoring for on-premises and cloud solutions and how this results in the timely response to business disruptions and highlights indicators of compromise. You'll examine continuous monitoring, log types, cloud logging and auditing, centralized Linux logging, Windows event log filtering, and cloud alarms. You'll also learn about the OSI model, network traffic analysis, filtering captured network traffic, e-mail monitoring, honeypots, and SIEM. This course can be used in preparation for the CompTIA Cybersecurity Analyst (CySA+) certification exam CS0-002.
Objectives |
---|
CS0-002 - CompTIA Cybersecurity Analyst+: Threat Monitoring
|