CompTIA Cybersecurity Analyst CySA+ Certification Training

Nivå: Intermediate
Snittbetyg: 4,8/5 4,79/5 Based on 86 Reviews

This CompTIA Cybersecurity Analyst (CySA+) training course will prepare you to successfully achieve this in-demand certification with hands-on, scenario-based training so you'll be ready to meet advanced persistent threats (APTs) head on.

In this certification training course, you will gain the foundational knowledge to fully prepare for the CySA+ exam (CS0-001). This is an intermediate certification that is part of the CompTIA certification pathway, fitting in between the Network+ & CASP certifications. Achieving this certification validates that you have the skills as a cybersecurity analyst, that you can take an analytical approach to cybersecurity, and have the knowledge of network security tools and techniques to combat threats.

Included in your course tuition fee is a voucher that enables you to take the CS0-001 exam at any Pearson VUE Test Centre location.


  • CompTIA-approved CySA+ training programs
  • After-course instructor coaching benefit
  • Exam voucher included

Du kommer lära dig att:

  • Prepare for and pass the Cybersecurity Analyst (CySA+) exam
  • Identify tools and techniques used to perform environmental reconnaissance of a target network or security system
  • Use network host and web application vulnerability assessment tools and interpret the results to provide effective mitigation
  • Participate in a senior role within an incident response team and use forensic tools to identify the source of an attack
  • Understand the use of frameworks, policies, and procedures, and report on security architecture with recommendations for effective compensating controls

Välj den utbildningsform som passar dig bäst


I klass & Live, Online-utbildning

  • 5-day instructor-led training course
  • One-on-one after course instructor coaching
  • Earn 29 CompTIA CEUs
  • Exam voucher included
  • Pay later by invoice -OR- at the time of checkout by credit card



  • Använd denna eller någon annan utbildning i ditt företag
  • Fullskalig programutveckling
  • Levereras när, var och hur du vill
  • Blandade utbildningsmodellerSkräddarsytt innehåll
  • Coaching av ett expertteam

Anpassa kurs och innehåll efter teamets behov

Kontakta oss

Utveckla dig och ditt team med anpassade eller öppna kurser alternativt e-learning

Learning Tree erbjuder kundanpassad utbildning hos er, öppna kurser i Stockholm, London eller Washington, möjlighet att delta via våra Anywhere centers (Malmö, Göteborg, Linköping, Stockholm eller Borlänge) eller olika former av e-learning med lärarstöd. Läs mer på .

I klass & Live, Online-utbildning

Note: This course runs for 5 dagar *

*Events with the Partial Day Event clock icon run longer than normal but provide the convenience of half-day sessions.

  • 14 - 18 dec 9:00 - 4:30 GMT Online (AnyWare) Online (AnyWare) Boka Din Kursplats

  • 1 - 5 mar 9:00 - 4:30 GMT Online (AnyWare) Online (AnyWare) Boka Din Kursplats

  • 7 - 11 jun 9:00 - 4:30 BST Online (AnyWare) Online (AnyWare) Boka Din Kursplats

  • 23 - 27 aug 9:00 - 4:30 BST Online (AnyWare) Online (AnyWare) Boka Din Kursplats

  • 14 - 18 dec 9:00 - 4:30 EST Online (AnyWare) Online (AnyWare) Boka Din Kursplats

  • 12 - 16 apr 9:00 - 4:30 EDT Herndon, VA / Online (AnyWare) Herndon, VA / Online (AnyWare) Boka Din Kursplats

  • 7 - 11 jun 9:00 - 4:30 EDT Alexandria, VA / Online (AnyWare) Alexandria, VA / Online (AnyWare) Boka Din Kursplats

Kurs med startgaranti

När du ser symbolen för “Guaranteed to Run” vid ett kurstillfälle vet du att kursen blir av. Garanterat.

Partial Day Event

Learning Tree offers a flexible schedule program. If you cannot attend full day sessions, this option consists of four-hour sessions per day instead of the full-day session.

Important CySA+ Course Information

  • Requirements

    • IT Security Professionals must have 3-4 years of hands-on information security or related experience at the level of Network+ or Security+
  • Recommended Experience

    • It is recommended that you have the following skills and knowledge before starting this course:
      • Knowledge of basic network terminology and functions (such as OSI Model, Topology, Ethernet, Wi-Fi, switches, routers)
      • Understanding of TCP/IP addressing, core protocols, and troubleshooting tools
      • Network attack strategies and defenses
      • Knowledge of the technologies and uses of cryptographic standards and products
      • Network- and host-based security technologies and practices
      • Standards and products used to enforce security on web and communications technologies
  • Exam Information

    • Course tuition includes an exam voucher. The exam is offered through Pearson Vue.
  • Certification Information

CySA+ Course Outline

  • Module 1: Threat Management

    Cybersecurity analysts

    • Cybersecurity roles and responsibilities
    • Frameworks and security controls
    • Risk evaluation
    • Penetration testing processes

    Reconnaissance techniques

    • The kill chain
    • Open source intelligence
    • Social engineering
    • Topology discovery
    • Service discovery
    • OS fingerprinting
  • Module 2: Threat Management

    Security appliances

    • Configuring firewalls
    • Intrusion detection and prevention
    • Configuring IDS
    • Malware threats
    • Configuring anti-virus software
    • Sysinternals
    • Enhanced mitigation experience toolkit

    Logging and analysis

    • Packet capture
    • Packet capture tools
    • Monitoring tools
    • Log review and SIEM
    • SIEM data outputs
    • SIEM data analysis
    • Point-in-time data analysis
  • Module 3: Vulnerability Management

    Managing vulnerabilities

    • Vulnerability management requirements
    • Asset inventory
    • Data classification
    • Vulnerability management processes
    • Vulnerability scanners
    • Microsoft baseline security analyser
    • Vulnerability feeds and SCAP
    • Configuring vulnerability scans
    • Vulnerability scanning criteria
    • Exploit frameworks

    Remediating vulnerabilities

    • Analysing vulnerability scans
    • Remediation and change control
    • Remediating host vulnerabilities
    • Remediating network vulnerabilities
    • Remediating virtual infrastructure vulnerabilities

    Secure software development

    • Software development life cycle
    • Software vulnerabilities
    • Software security testing
    • Interception proxies
    • Web application firewalls
    • Source authenticity
    • Reverse engineering
  • Module 4: Cyber Incident Response

    Incident response

    • Incident response processes
    • Threat classification
    • Incident severity and prioritisation
    • Types of data

    Forensics tools

    • Digital forensics investigations
    • Documentation and forms
    • Digital forensics crime scenes
    • Digital forensics kits
    • Image acquisition
    • Password cracking
    • Analysis utilities

    Incident analysis and recovery

    • Analysis and recovery frameworks
    • Analysing network symptoms
    • Analysing host symptoms
    • Analysing data exfiltration
    • Analysing application symptoms
    • Using sysinternals
    • Containment techniques
    • Eradication techniques
    • Validation techniques
    • Corrective actions
  • Module 5: Security Architecture

    Secure network design

    • Network segmentation
    • Blackholes, sinkholes, and honeypots
    • System hardening
    • Group policies and MAC
    • Endpoint security

    Managing identities and access

    • Network access control
    • Identity management
    • Identity security issues
    • Identity repositories
    • Context-based authentication
    • Single sign on and federation
    • Exploiting identities
    • Exploiting web browsers and applications

    Security frameworks and policies

    • Frameworks and compliance
    • Reviewing security architecture
    • Procedures and compensating controls
    • Verifications and quality control
    • Security policies and procedures
    • Personnel policies and training


CySA+ Training FAQs

  • What is CompTIA CySA+ certification?

    Cybersecurity Analyst (CySA+) is an IT workforce certfication. It applies behavioral analytics to networks and devices to help prevent, detect and combat cyber threats.  

  • How do I earn CompTIA CySA+ certification?

    To earn this certification, you must take and pass CompTIA exam CS0-001.

  • How do I take the CySA+ exam (CS0-001)?

    Course tuition fee includes an exam voucher. The exam is offered through Pearson Vue.

  • How do I maintain my CompTIA CySA+ certification?

    You must earn 60 CompTIA CEUs over a three-year period to maintain CySA+ certification. Maintain your CompTIA certification with CEU-approved training.

CompTIA Certification All-Inclusive Pack

Blended Learning Bundles + Labs + Exam Vouchers
all for one price!

Questions about which training is right for you?

call 08-506 668 00

100% Satisfaction Guaranteed

Your Training Comes with a 100% Satisfaction Guarantee!*

*Partner-delivered courses may have different terms that apply. Ask for details.

Online (AnyWare)
Online (AnyWare)
Online (AnyWare)
Online (AnyWare)
Online (AnyWare)
Herndon, VA / Online (AnyWare)
Alexandria, VA / Online (AnyWare)
Hur föredrar du att bli kontaktad:

Please Choose a Language

Canada - English

Canada - Français