You are previewing CompTIA® Security+™ SY0-301 Exam Cram, Third Edition.
O'Reilly logo
CompTIA® Security+™ SY0-301 Exam Cram, Third Edition

Book Description

Prepare for CompTIA Security+ SY0-301 exam success with this CompTIA Authorized Exam Cram from Pearson IT Certification, a leader in IT Certification learning and a CompTIA Authorized Platinum Partner.

CompTIA® Security+ Exam Cram, Third Edition, is the perfect study guide to help you pass CompTIA’s newly updated version of the Security+ exam. It provides coverage and practice questions for every exam topic. The book contains a set of 200 questions in two full practice exams. 

Limited Time Offer: Buy CompTIA Security+ SY0-301 Authorized Exam Cram and receive a 10% off discount code for the CompTIA Security+ SYO-301 exam.  To receive your 10% off discount code:

  1. Register your product at pearsonITcertification.com/register

  2. Follow the instructions

  3. Go to your Account page and click on “Access Bonus Content”

The CD-ROM contains the powerful Pearson IT Certification Practice Test engine that provides real-time practice and feedback with all the questions so you can simulate the exam.

Covers the critical information you need to know to score higher on your Security+ exam!

  • Master and implement general security best practices

  • Systematically identify threats and risks to your systems

  • Harden systems by eliminating nonessential services

  • Secure your communications, networks, and infrastructure

  • Systematically identify and protect against online vulnerabilities

  • Implement effective access control and authentication

  • Create security baselines and audit your security infrastructure

  • Understand cryptographic principles, and effectively deploy cryptographic solutions

  • Organize security from both a technical and organizational standpoint

  • Manage every facet of security, including education and documentation

  • Understand the laws related to IT security, and the basics of forensic investigations

  • Kirk Hausman (CISSP, CISA, CRISC, Security+) has worked as an ISO, consultant, trainer, and IT director. He is Assistant Commandant for IT at TAMU and teaches InfoSec topics as an Adjunct Professor at UMUC and UAT.

    Martin Weiss (CISSP, CISA, Security+, MCSE) leads a team of information security experts at Symantec supporting solutions to provide confidence in a connected world.

    Diane Barrett (CISSP, MCSE, A+, Security+) is the director of training for Paraben Corporation and an adjunct professor for American Military University.

    Companion CD

    The CD-ROM contains two, complete practice exam.

    Includes Exclusive Offer for 70% Off Premium Edition eBook and Practice Test

    Pearson IT Certification Practice Test minimum system requirements:

    Windows XP (SP3), Windows Vista (SP2), or Windows 7; Microsoft .NET Framework 4.0 Client; Pentium class 1GHz processor (or equivalent); 512 MB RAM; 650 MB disk space plus 50 MB for each downloaded practice exam

    Table of Contents

    1. Title Page
    2. Copyright Page
    3. Contents at a Glance
    4. Table of Contents
    5. About the Authors
    6. Dedication
    7. Acknowledgments
    8. We Want to Hear from You!
    9. CompTIA
      1. CompTIA Security+
      2. It Pays to Get Certified
      3. How Certification Helps Your Career
      4. CompTIA Career Pathway
      5. Content Seal of Quality
      6. Why CompTIA?
      7. How to obtain more information
    10. Introduction
      1. Taking a Certification Exam
      2. About This Book
      3. Pearson IT Certification Practice Test Engine and Questions on the CD
    11. Part I. Network Security
      1. Chapter 1. Network Design
        1. Explain the Security Function and Purpose of Network Devices and Technologies
        2. Cram Quiz
        3. Apply and Implement Secure Network Administration Principles
        4. Cram Quiz
        5. Distinguish and Differentiate Network Design Elements and Compounds
        6. Cram Quiz
        7. What Next?
      2. Chapter 2. Network Implementation
        1. Implement and Use Common Protocols
        2. Cram Quiz
        3. Identify Commonly Used Default Network Ports
        4. Cram Quiz
        5. Implement Wireless Networks in a Secure Manner
        6. Cram Quiz
        7. What Next?
    12. Part II. Compliance and Operational Security
      1. Chapter 3. Risk Management
        1. Exemplify the Concepts of Confidentiality, Integrity, and Availability
        2. Cram Quiz
        3. Explain Risk-Related Concepts
        4. Cram Quiz
        5. Carry Out Appropriate Risk-Mitigation Strategies
        6. Cram Quiz
        7. Explain the Importance of Security-Related Awareness and Training
        8. Cram Quiz
        9. What Next?
      2. Chapter 4. Response and Recovery
        1. Execute Appropriate Incident Response Procedures
        2. Cram Quiz
        3. Explain the Impact and Proper Use of Environmental Controls
        4. Cram Quiz
        5. Compare and Contrast Aspects of Business Continuity
        6. Cram Quiz
        7. Execute Disaster Recovery Plans and Procedures
        8. Cram Quiz
        9. What Next?
    13. Part III. Threats and Vulnerabilities
      1. Chapter 5. Attacks
        1. Analyze and Differentiate Among Types of Malware
        2. Cram Quiz
        3. Analyze and Differentiate Among Types of Attacks
        4. Cram Quiz
        5. Analyze and Differentiate Among Types of Social Engineering Attacks
        6. Cram Quiz
        7. Analyze and Differentiate Among Types of Wireless Attacks
        8. Cram Quiz
        9. Analyze and Differentiate Among Types of Application Attacks
        10. Cram Quiz
        11. What Next?
      2. Chapter 6. Deterrents
        1. Analyze and Differentiate Among Types of Mitigation and Deterrent Techniques
        2. Cram Quiz
        3. Implement Assessment Tools and Techniques to Discover Security Threats and Vulnerabilities
        4. Cram Quiz
        5. Within the Realm of Vulnerability Assessments, Explain the Proper Use of Penetration Testing versus Vulnerability Scanning
        6. Cram Quiz
        7. What Next?
    14. Part IV. Application, Data, and Host Security
      1. Chapter 7. Application Security
        1. Explain the Importance of Application Security
        2. Cram Quiz
        3. What Next?
      2. Chapter 8. Host Security
        1. Carry Out Appropriate Procedures to Establish Host Security
        2. Cram Quiz
        3. What Next?
      3. Chapter 9. Data Security
        1. Explain the Importance of Data Security
        2. Cram Quiz
        3. What Next?
    15. Part V. Access Control and Identity Management
      1. Chapter 10. Authentication and Authorization
        1. Authentication
        2. Cram Quiz
        3. Authorization
        4. Cram Quiz
        5. What Next?
      2. Chapter 11. Access Control and Account Management
        1. Explain the Fundamental Concepts and Best Practices Related to Access Control
        2. Cram Quiz
        3. Implement Appropriate Security Controls when Performing Account Management
        4. Cram Quiz
        5. What Next?
    16. Part VI. Cryptography
      1. Chapter 12. Cryptography Tools and Techniques
        1. Summarize General Cryptography Concepts
        2. Cram Quiz
        3. Use and Apply Appropriate Cryptographic Tools and Products
        4. Cram Quiz
        5. What Next?
      2. Chapter 13. Public Key Infrastructure
        1. Explain the Core Concepts of Public Key Infrastructure
        2. Cram Quiz
        3. Implement PKI, Certificate Management, and Associated Components
        4. Cram Quiz
        5. What Next?
    17. Part VII. Practice Exams and Answers
      1. Practice Exam 1: CompTIA Security+ SY0-301
        1. Exam Questions
      2. Answers to Practice Exam 1
        1. Answers at a Glance
        2. Answers with Explanations
      3. Practice Exam 2: CompTIA Security+ SY0-301
        1. Exam Questions
      4. Answers to Practice Exam 2
        1. Answers at a Glance
        2. Answers with Explanations
    18. Glossary
      1. A
      2. B
      3. C
      4. D
      5. E
      6. F
      7. G
      8. H
      9. I
      10. K
      11. L
      12. M
      13. N
      14. O
      15. P
      16. R
      17. S
      18. T
      19. U–V
      20. W
      21. X–Y–Z
    19. Index
    20. Exam Cram: The CompTIA® Security+ Cram Sheet
      1. Domain 1.0: Network Security
      2. Domain 2.0: Compliance and Operational Security
      3. Domain 3.0: Threats and Vulnerabilities
      4. Domain 4.0: Application, Data and Host Security
      5. Domain 5.0: Access Control and Identity Management
      6. Domain 6.0: Cryptography