Thursday, October 25, 2012

CompTIA Advanced Security Practitioner

CompTIA Advanced Security Practitioner
The CompTIA Advanced Security Practitioner (CASP) certification designates IT professionals with advanced-level security skills and knowledge.

Course/Exam Objectives

  • CASP Exam Overview

    • Examination and certification goals
    • The four domains of the exam

    Enterprise Security Principles

    Distinguishing cryptographic tools and techniques

    • Deploying encryption and hashing
    • Advanced PKI concepts
    • Cryptographic algorithms and usage
    • Transport encryption
    • Digital signature

    Virtual, distributed and shared computing

    • Securing virtual environments and equipment
    • Assessing vulnerabilities
    • Implementing secure elastic cloud computing
    • Maintaining different classification levels

    Securing enterprise storage

    • Virtual storage
    • NAS
    • vSAN
    • iSCSI
    • FCoE
    • Secure storage management
    • Maintaining availability with redundancy

    Protecting Your Hosts and Networks

    Integrating hosts, networks and applications

    • Complex network security solutions for data flow
    • Documenting with a logical deployment diagram
    • Advanced configuration of routers and switches
    • Host security: firewalls, end-point, host hardening

    Enhancing application security

    • Application sandboxing
    • Secure coding standards
    • Preventing attacks with error and exception handling
    • Securing against privilege escalation and fuzzing
    • Mitigating client-side vs. server-side vulnerabilities
    • Identifying buffer overflows and memory leaks

    Conducting assessments

    • Determining the best security testing tools
    • Port and vulnerability scanners
    • Protocol analyzers
    • Password crackers
    • HTTP interceptor
    • Testing methods: penetration testing, black box, code review, social engineering

    Risk Management Policies and Procedures

    Applying risk mitigation strategies and controls

    • Analyzing risk scenarios
    • Determining risks of evolving business strategies
    • Assessing the CIA aggregate score
    • Conducting system-specific risk analysis
    • Selecting security controls
    • Continuous monitoring

    Supporting incident response and recovery

    • Constructing a data inventory with e-discovery
    • Minimizing the severity of a data breach
    • Responding to incidents and emergencies

    Privacy policies and procedures

    • Safeguarding Personally Identifiable Information (PII)
    • Developing policies to support business objectives
    • Implementing policies designed to prevent fraud
    • Preventing social engineering attacks

    Research and Analysis

    Examining industry trends

    • Performing on-going research to support best practices
    • Testing new security systems and services
    • Assessing social media hazards

    Countering new exploits and attack methods

    • Preparing to defend against zero days
    • Identifying emerging threat information

    Integrating Computing, Communications and Business Disciplines

    Establishing communication requirements

    • Securely collaborating multiple job roles
    • Publishing security documentation

    Maintaining security in organizational change

    • Complying with rules, policies and regulations
    • Minimizing third-party product risk
    • Segmenting networks to separate traffic

    Securing the technology life cycle

    • Selecting security controls
    • Implementing unified communication security
    • Integrating security to the systems development life cycle

Test Details
Number of questions80 (maximum)
Length of Test150 minutes
Passing ScorePass/Fail only. No scaled score.
Recommended experience10 years experience in IT administration, including at least 5 years of hands-on technical security experience
Exam codeCAS-001 

The CASP certification is an international, vendor-neutral exam that proves competency in enterprise security; risk management; research and analysis; and integration of computing, communications, and business disciplines.
The exam covers the technical knowledge and skills required to conceptualize, design, and engineer secure solutions across complex enterprise environments. It involves applying critical thinking and judgment across a broad spectrum of security disciplines to propose and implement solutions that map to enterprise drivers.

While there is no required prerequisite, the CASP certification is intended to follow CompTIA Security+ or equivalent experience and has a technical, hands-on focus at the enterprise level.
The CompTIA Advanced Security Practitioner certification was accredited by the International Organization for Standardization (ISO) and the American National Standards Institute (ANSI)on Dec. 13, 2011. The CompTIA Advanced Security Practitioner certification may be kept current through the CompTIA Continuing Education program.

CompTIA SmartBrief