CompTIA CASP+ CAS-004 Certification Guide
eBook - ePub

CompTIA CASP+ CAS-004 Certification Guide

Develop CASP+ skills and learn all the key topics needed to prepare for the certification exam

  1. 654 pages
  2. English
  3. ePUB (mobile friendly)
  4. Available on iOS & Android
eBook - ePub

CompTIA CASP+ CAS-004 Certification Guide

Develop CASP+ skills and learn all the key topics needed to prepare for the certification exam

About this book

Master architecting and implementing advanced security strategies across complex enterprise networks with this hands-on guide

Key Features

  • Learn how to apply industry best practices and earn the CASP+ certification
  • Explore over 400 CASP+ questions to test your understanding of key concepts and help you prepare for the exam
  • Discover over 300 illustrations and diagrams that will assist you in understanding advanced CASP+ concepts

Book Description

CompTIA Advanced Security Practitioner (CASP+) ensures that security practitioners stay on top of the ever-changing security landscape. The CompTIA CASP+ CAS-004 Certification Guide offers complete, up-to-date coverage of the CompTIA CAS-004 exam so you can take it with confidence, fully equipped to pass on the first attempt. Written in a clear, succinct way with self-assessment questions, exam tips, and mock exams with detailed explanations, this book covers security architecture, security operations, security engineering, cryptography, governance, risk, and compliance. You'll begin by developing the skills to architect, engineer, integrate, and implement secure solutions across complex environments to support a resilient enterprise. Moving on, you'll discover how to monitor and detect security incidents, implement incident response, and use automation to proactively support ongoing security operations. The book also shows you how to apply security practices in the cloud, on-premises, to endpoints, and to mobile infrastructure. Finally, you'll understand the impact of governance, risk, and compliance requirements throughout the enterprise. By the end of this CASP study guide, you'll have covered everything you need to pass the CompTIA CASP+ CAS-004 certification exam and have a handy reference guide.

What you will learn

  • Understand Cloud Security Alliance (CSA) and the FedRAMP programs
  • Respond to Advanced Persistent Threats (APT) by deploying hunt teams
  • Understand the Cyber Kill Chain framework as well as MITRE ATT&CK and Diamond Models
  • Deploy advanced cryptographic solutions using the latest FIPS standards
  • Understand compliance requirements for GDPR, PCI, DSS, and COPPA
  • Secure Internet of Things (IoT), Industrial control systems (ICS), and SCADA
  • Plan for incident response and digital forensics using advanced tools

Who this book is for

This CompTIA book is for CASP+ CAS-004 exam candidates who want to achieve CASP+ certification to advance their career. Security architects, senior security engineers, SOC managers, security analysts, IT cybersecurity specialists/INFOSEC specialists, and cyber risk analysts will benefit from this book. Experience in an IT technical role or CompTIA Security+ certification or equivalent is assumed.

]]>

Trusted by 375,005 students

Access to over 1.5 million titles for a fair monthly price.

Study more efficiently using our study tools.

Information

Publisher
Packt Publishing
Year
2022
Topic
Computer Science
eBook ISBN
9781801814485
Subtopic
Certification Guides in Computer Science
Index
Computer Science

Section 1: Security Architecture

In this section, you will learn about the challenges that are faced by an enterprise when supporting a large, complex, hybrid network architecture. This section will take you through the design of traditional network architectures up to complex hybrid cloud models. You will also understand the importance of authentication and authorization strategies within complex environments.
This part of the book comprises the following chapters:
  • Chapter 1, Designing a Secure Network Architecture
  • Chapter 2, Integrating Software Applications into the Enterprise
  • Chapter 3, Enterprise Data Security, Including Secure Cloud and Virtualization Solutions
  • Chapter 4, Deploying Enterprise Authentication and Authorization Controls

Chapter 1: Designing a Secure Network Architecture

Security professionals need to analyze security requirements and objectives to ensure an appropriate, secure network architecture for a new or existing network and to provide the appropriate authentication and authorization controls.
Designing a modern enterprise network has many practical and security challenges. De-perimeterization means that access to information systems may be made from devices outside of the enterprise network. The types of devices can range from a handheld smartphone used to access a customer record to an Internet of Things (IoT) device transmitting telemetry data to a critical monitoring dashboard.
Regulatory or industry compliance may require strict network segmentation between processes and business units (BUs).
It is important to consider all the threat actors when you plan your network—think Defense in Depth (DiD).
This first chapter is an essential building block for the following chapters. It is the information systems on our networks that provide the data and services for an enterprise.
In this chapter, we will cover the following topics:
  • Physical and virtual network and security devices
  • Application- and protocol-aware technologies
  • Advanced network design
  • Network management and monitoring tools
  • Advanced configuration of network devices
  • Security zones

Physical and virtual network and security devices

For the certification exam, it is important that you understand the strengths and weaknesses of all the proposed network devices/appliances, the correct placement of network devices for maximum effect, and the required security configuration.

OSI model

No introduction to networking would be complete without a brief introduction to the Open Systems Interconnection (OSI) 7-layer model. As we move through the chapters, you will occasionally see references to layers. This has become a standard reference model and it allows for different vendors to implement services, protocols, and hardware using this reference model. Throughout the book, we will discuss applications, services, protocols, and appliances that sit at different layers within the model. Although the CompTIA Advanced Security Professional 004 (CASP 004) exam will not be testing your knowledge specifically (OSI is not a listed objective), it can be useful as a reference aid when we discuss networking subjects. The model is not actually defining a complete working network model—it is a conceptual model. For example, to fully understand the details of the Simple Mail Transport Protocol (SMTP), you would need to gain access to Internet Engineering Task Force (IETF) Request for Comments (RFC) documents. Imagine you are looking to manufacture network cables to meet Category 6 (CAT 6) standards—you could access International Organization for Standardization/International Electrotechnical Commission (ISO/IEC 11801) standards documentation. See the following screenshot for an overview of the OSI 7-layer model:
Figure 1.1 – OSI 7-layer model
Figure 1.1 – OSI 7-layer model
Vulnerabilities may exist across multiple layers within the OSI model. For example, we may be vulnerable to Man-in-the-Middle (MITM) attacks on our layer 2 switch. We will take a look at the many different threats that may impact an enterprise network throughout the book.

Unified threat management

A unified threat management (UTM) appliance offers firewall functionality and many additional security functions; it is deployed as a single security appliance or software solution. This security solution offers a comprehensive suite of security features all in a single package. While this is a good solution for small enterprises with limited resources (limited staff and limited budget), it does not offer the DiD required by enterprise customers.
UTMs may include a significant number of converged security features, but not necessarily all of the following:
  • Network firewall
  • Intrusion detection system (IDS)
  • Intrusion prevention system (IPS)
  • Deep packet inspection (DPI)
  • Data loss prevention (DLP)
  • Anti-virus capability...

Table of contents

  1. CompTIA CASP+ CAS-004 Certification Guide
  2. Contributors
  3. Preface
  4. Section 1: Security Architecture
  5. Chapter 1: Designing a Secure Network Architecture
  6. Chapter 2: Integrating Software Applications into the Enterprise
  7. Chapter 3: Enterprise Data Security, Including Secure Cloud and Virtualization Solutions
  8. Chapter 4: Deploying Enterprise Authentication and Authorization Controls
  9. Section 2: Security Operations
  10. Chapter 5: Threat and Vulnerability Management
  11. Chapter 6: Vulnerability Assessment and Penetration Testing Methods and Tools
  12. Chapter 7: Risk Mitigation Controls
  13. Chapter 8: Implementing Incident Response and Forensics Procedures
  14. Section 3: Security Engineering and Cryptography
  15. Chapter 9: Enterprise Mobility and Endpoint Security Controls
  16. Chapter 10: Security Considerations Impacting Specific Sectors and Operational Technologies
  17. Chapter 11: Implementing Cryptographic Protocols and Algorithms
  18. Chapter 12: Implementing Appropriate PKI Solutions, Cryptographic Protocols, and Algorithms for Business Needs
  19. Section 4: Governance, Risk, and Compliance
  20. Chapter 13: Applying Appropriate Risk Strategies
  21. Chapter 14: Compliance Frameworks, Legal Considerations, and Their Organizational Impact
  22. Chapter 15: Business Continuity and Disaster Recovery Concepts
  23. Chapter 16: Mock Exam 1
  24. Chapter 17: Mock Exam 2
  25. Other Books You May Enjoy

Frequently asked questions

Yes, you can cancel anytime from the Subscription tab in your account settings on the Perlego website. Your subscription will stay active until the end of your current billing period. Learn how to cancel your subscription
No, books cannot be downloaded as external files, such as PDFs, for use outside of Perlego. However, you can download books within the Perlego app for offline reading on mobile or tablet. Learn how to download books offline
Perlego offers two plans: Essential and Complete
  • Essential is ideal for learners and professionals who enjoy exploring a wide range of subjects. Access the Essential Library with 800,000+ trusted titles and best-sellers across business, personal growth, and the humanities. Includes unlimited reading time and Standard Read Aloud voice.
  • Complete: Perfect for advanced learners and researchers needing full, unrestricted access. Unlock 1.5M+ books across hundreds of subjects, including academic and specialized titles. The Complete Plan also includes advanced features like Premium Read Aloud and Research Assistant.
Both plans are available with monthly, semester, or annual billing cycles.
We are an online textbook subscription service, where you can get access to an entire online library for less than the price of a single book per month. With over 1.5 million books across 990+ topics, we’ve got you covered! Learn about our mission
Look out for the read-aloud symbol on your next book to see if you can listen to it. The read-aloud tool reads text aloud for you, highlighting the text as it is being read. You can pause it, speed it up and slow it down. Learn more about Read Aloud
Yes! You can use the Perlego app on both iOS and Android devices to read anytime, anywhere — even offline. Perfect for commutes or when you’re on the go.
Please note we cannot support devices running on iOS 13 and Android 7 or earlier. Learn more about using the app
Yes, you can access CompTIA CASP+ CAS-004 Certification Guide by Mark Birch in PDF and/or ePUB format, as well as other popular books in Computer Science & Certification Guides in Computer Science. We have over 1.5 million books available in our catalogue for you to explore.