- Paperback: 560 pages
- Publisher: Sybex; Study Guide edition (13 June 2017)
- Language: English
- ISBN-10: 1119348978
- ISBN-13: 978-1119348979
- Product Dimensions: 18.8 x 3 x 23.4 cm
- Boxed-product Weight: 794 g
- Average Customer Review: Be the first to review this item
- Amazon Bestsellers Rank: 57,956 in Books (See Top 100 in Books)
Other Sellers on Amazon
+ FREE Delivery
+ $11.35 Delivery
CompTIA CySA+ Study Guide: Exam CS0–001 Paperback – 13 Jun 2017
|New from||Used from|
Customers who bought this item also bought
Customers who viewed this item also viewed
From the Back Cover
Covers 100% of Cybersecurity Analyst (CySA+) exam objectives, including threat management, vulnerability management, cyber incident response, security architecture and tool sets, and much more...
Includes interactive online learning environment and study tools with:
- 2 custom practice exams
- 100 electronic flashcards
- Searchable key term glossary
Your complete guide to preparing for the CySA+ Exam CS0-001
The CompTIA CySA+ Study Guide is your complete resource for the CompTIA Cybersecurity Analyst (CySA+) certification. Exam highlights, end-of-chapter review questions, and 2 complete practice exams help you gauge and fine-tune your understanding of all key concepts. Practical examples, hands-on labs, expert recommendations on building a cybersecurity toolkit, and real-world insights help build the skills and confidence you need to think and respond like a seasoned professional. The online Sybex interactive learning environment gives you access to electronic flashcards, a searchable glossary, and hundreds of bonus practice questions. Prepare for the new CompTIA CySA+ with Sybex and get exam day confidence.
More than just a test prep, this book helps you to prepare to demonstrate your command of the four domains and major topics covered by the CySA+ exam:
- Threat management
- Vulnerability management
- Cyber incident response
- Security architecture and toolsets
- Configuring and using threat detection tools
- Performing data analysis
- Interpreting the results to identify vulnerabilities, threats, and risks to an organization
Interactive learning environment
Take your exam prep to the next level with Sybex's superior interactive online study tools. To access our learning environment, simply visit http://www.wiley.com/go/sybextestprep, type in your unique PIN, and instantly gain one year of FREE access to:
- Interactive test bank with 2 practice exams. The practice exams help you to identify areas where further review is needed. Get more than 90% of the answers correct, and you're ready to take the certification exam.
- 100 electronic flashcards to reinforce learning and last-minute prep before the exam.
- Comprehensive, searchable glossary in PDF format gives you instant access to they key terms so you are fully prepared.
ABOUT THE CySA+ CERTIFICATION
The Cybersecurity Analyst (CySA+) certification applies behavioral analytics to improve the overall state of IT security. CompTIA CySA+ meets the ISO 17024 standard and is approved by U.S. Department of Defense to fulfill Directive 8570.01-M requirements. It is compliant with government regulations under the Federal Information Security Management Act (FISMA). Visit https://certification.comptia.org/certifications/cybersecurity-analyst for more information.
About the Author
Mike Chapple, PhD, CySA+, CISSP, Security+, is Senior Director for IT Service Delivery at the University of Notre Dame overseeing information security, data governance, IT architecture, project management, strategic planning and product management functions and teaches undergraduate courses on Information Security.
David Seidl, CISSP, GPEN, GCIH is the Senior Director for Campus Technology Services at Notre Dame. As Senior Director for CTS, he is responsible for central platform and operating system support, database administration and services, identity and access management, application services, and email and digital signage.
From the Publisher
|CompTIA CySA+ Study Guide: Exam CS0-001||CompTIA CySA+ Practice Tests: Exam CS0-001||CompTIA Complete Cybersecurity Study Guide 2-Book Set|
|Format||Paperback||Paperback||Two Paperback Set|
|Audience Level||Beginner to Intermediate||Beginner to Intermediate||Beginner to Intermediate|
|Content Length||560 pages||480 pages||1032 pages|
|Author||Mike Chapple and David Seidl||Mike Chapple and David Seidl||Emmett Dulaney, Chuck Easttom, Mike Chapple, and David Seidl|
|Publication Date||April 2017||February 2018||November 2017|
|Product Description||Covers the CySA+ CS0-001 Exam objectives; includes access to interactive online learning environment and study tools plus two custom practice exams, 100 electronic flashcards, and a searchable key term glossary||Covers the CySA+ CS0-001 Exam objectives; provides 1,000 questions plus two practice exams covering all sections of the CySA+ objective domains; complements the CompTIA CySA+ Study Guide: Exam CS0-001||Covers the CySA+ CS0-001 Exam and Security+ SY0-501 Exam objectives; includes full editions of CompTIA CySA+ Study Guide and CompTIA Security+ Study Guide in one value-priced bundle|
|Available in Kindle||✓||✓|
No customer reviews
|5 star (0%)||0%|
|4 star (0%)||0%|
|3 star (0%)||0%|
|2 star (0%)||0%|
|1 star (0%)||0%|
Review this product
Most helpful customer reviews on Amazon.com
This book accurately covers the theory and general knowledge base (syllabus) needed to pass this exam. It's to the point and covers many aspects of work done by security analysts in SOCs. It will give you a good base to understand what software suites are used, and what are many procedures used in the industry (from security in the software development cycle, to analysis of incidents). The problem which some people may come up upon, is that the exam's format requires much more interaction between different skills, and this is taught by doing, and not by reading.
The two main pieces of software that the CSA+ exam heavily covers is NMAP & Wireshark. Experience in reading logs (system & IDS/IPS) is also required. As questions go, they're mostly situational, namely they'll give you a situation or some output, and you have to identify the best problem/solution, which often is not as clear cut or direct. Simulations in the exam can also be confusing unless you have had a chance to look over & use these two pieces of software (along with some system reporting commands in Windows & Linux). I don't think this book fails to prepare you for these parts, simply because without direct experience, it's can be hard to actually understand the information presented in the exam.
While this book has some labs described per each chapter, they might not be enough for everyone. I would also suggest watching some training videos (as of writing this review, only ITPro.TV has a complete CSA+ video course). And regarding use of SIEM software, these suites are often expensive and only found in larger, enterprise networks. So gaining experience on them is hard. Cybrary.it offers a set of online labs for this certification, and while not required, can help someone new to this field gain hands on experience. Supplementing this book with other training is pretty much required in order to pass the exam.
As for me, the book worked well, covered the topics well, and along with supplementary training from third parties (videos) & just messing around on my computer, helped me pass this exam.
Here's what the answer key listed for that question: C. Regular traffic from compromised systems to command and control nodes is known as beaconing. Anomalous pings could describe unexpected pings, but they are not typically part of botnet behavior, zombie chatter is a made-up term, and probing is a part of scanning behavior in some cases.
That wasn't the only question that had the wrong letter/answer association in the assessment test. It makes me wonder if I can even trust the material and tests presented in the rest of the book. Sloppy work...they obviously cut corners and rushed this book to print. Very disappointed and I'd like my money back.
I went through the book once, simply reading. I felt I had a decent grasp of the subject matter, so I purchased my vouchers and scheduled my exam 6 weeks later. In that six weeks, I went back through the book, taking meticulous notes on everything. In the last couple of weeks, I took the practice tests provided through the book (Wiley test banks), and was hitting 93-97% every time.
Therefore, I was pretty confident.
However, when I actually sat for the exam, I was immediately taken off-guard by the fact that there was a LOT of subject matter on the test that was not covered by the book. There is definitely a difference between seeing an acronym and not *remembering* what it is, and having never *seen* the acronym before. I used the standard CompTIA exam technique, flagging questions for review, and accepting that I either know the answer or I don't in some scenarios. I was very confident that I had failed the test, and was pleasantly shocked to find that I had passed.
I wish I had suggestions for compensating material, but the exam is so new that there's really not that much out there.
All in all, it’s really hard to rate tech study guides like this. I think people tend to rate them base on whether they passed or not. I could tell you now though that my experience with the exam is probably not going to be like your experience. I studied nmap and wireshark a lot because many have said they encountered those a lot, but with my exam, I got probably one question with wireshark and none on nmap, so cest la vie. I think that if a candidate has the recommended security+ cert and years of experience, he or she will pass using just this book.