CompTIA Advanced Security Practitioner is an advanced-level security certification for security professionals in an enterprise, government, or military environment. This course covers domain 1 of the CompTIA CAS-002 certification exam.
User data, company secrets, intellectual property, critical infrastructure, and more are all vulnerable if not secured and constantly maintained. In this course, Enterprise Security for CASP (CAS-002), you'll first learn all about cryptographic concepts and encryption methods. Next, you will learn about enterprise storage concepts and technologies. Finally, you'll learn about host security and application vulnerability issues. By the end of this course, you'll have the knowledge needed to both pass the CompTIA CAS-002 certification exam and help secure your company's IT assets from attack.
Chris is a lifelong learner and professional information technologist, trainer and IT Manager. Married with 3 children, Chris is interested in martial arts, working out, spending time with family and friends and being creative whenever possible.
Security Implications Associated with Enterprise Storage Hey, welcome back to Pluralsight. I'm your instructor Christopher Rees and in this module, we're going to talk about security implications associated with enterprise storage. So, in this module, we're going to cover three main areas. Storage types, we'll talk about storage protocols and then we'll also talk about secure storage management. So let's jump right in and get started. Okay, in this module we have some new things to cover, some things that were not included in the Security+ course, so this is relatively new information if you're not kind of familiar with this space. So again, three main areas. Storage types, protocols and secure storage management. Under storage types, we're going to talk about such things as virtual storage, cloud storage, data warehousing, data archiving, and then of course, NAS or network attached storage, SAN, storage area networks, and then virtual SANs. Under storage protocols, we'll talk about iSCSI, FCoE, or Fibre Channel over Ethernet, and we'll talk about the differences between NFS and CIFS. Alright, and then under the secure storage management section, we'll talk about multipathing, snapshots, dedup or deduplication. We'll talk about LUN masking and mapping, HBA allocation, offsite or multi-site replication, and then various types of encryption. Disk, block, file, record level encryption and then port encryption.
Troubleshoot Security Controls for Hosts Hey, welcome back to Pluralsight, I'm your instructor, Christopher Rees, and in this module, we're going to be covering Troubleshooting Security Controls for Hosts. So we have a lot to cover in this module, so let's go ahead and dive right in. So in this module we have command shell restrictions. We're going to cover configuring dedicated interfaces, out-of-band NICs, or Network Interface Cards. We'll talk about data interface, or how to configure what that is. We'll talk about peripheral restrictions, Firewire. We'll talk about the security advantages and disadvantages of of virtualizing servers, and we'll break that down into Type I servers, Type II, and then container-based. We'll talk about cloud augmented security and hash matching. We'll also talk about content filtering, boot loader protections, and we'll break that down into several areas, including secure boot, measured launch, IMA, or Integrity Measurement Architecture, and we'll talk about BIOS and also UEFI. We'll talk about vulnerabilities associated with co-mingling of hosts of different security requirements, such things as VMEscape, privilege elevation, live VM migration, and then data remnants. We'll also talk about Virtual Desktop Infrastructure or VDI, and then also cover terminal services and application delivery services, and then last but not least, Virtual TPM. So again this builds upon a lot of the concepts that are covered in Security Plus. So if you look at the actual outline that's available on the website, you'll see what's covered in specifically this course and this module, and also what's covered in Security Plus. The two of those combined will give you all of the information for the CASP certification. Okay I just want to make sure I reiterate that, so you understand this is going to be in addition to what you're going to get from Security Plus, right? We're going to combine those together, give you the full breadth of information that you need for that CASP002 Certification. So let's go ahead and get started.