SY0-601 - CompTIA Security+: Monitoring, Visibility, & Reporting


Overview/Description
Expected Duration
Lesson Objectives
Course Number
Expertise Level


Overview/Description

In this CompTIA Security+ SY0-601 course, you'll bring your existing security knowledge together to prepare the delivery of your work's output and results to executive management, C-suite, and other stakeholders. You'll start by exploring how to take advantage of Windows and Linux logging and monitoring. You'll then examine how to work with protocol analyzer output, cloud computing tools, and log aggregation and collection. Next, you'll identify some best practices and guidelines to use when working with visibility and reporting. Finally, you'll outline how to identify lessons learned and create after-action reports. This course is part of a series that prepares you for the CompTIA Security+ (SY0-601) exam.



Expected Duration (hours)
0.5

Lesson Objectives

SY0-601 - CompTIA Security+: Monitoring, Visibility, & Reporting

  • discover the key concepts covered in this course
  • examine common Windows logs, like security, application, and system logs
  • outline how to use Linux logging utilities, such as systemd and auditd
  • outline how to work with Wireshark's output
  • describe the purpose of various AWS cloud computing services, such as CloudWatch, CloudTrail, and AWS Config
  • recognize the importance of log aggregation and collection tools
  • summarize the best practices and guidelines for dealing with visibility and reporting
  • identify lessons learned and their relationship to AARs
  • summarize the key concepts covered in this course

    • Course Number:
    it_cssecp2020_20_enus

    Expertise Level
    Intermediate