CompTIA Cybersecurity Analyst CySA+ Certification Training

Level: Intermediate
Rating: 4.8/5 4.79/5 Based on 86 Reviews

This CompTIA Cybersecurity Analyst (CySA+) training course will prepare you to successfully achieve this in-demand certification with hands-on, scenario-based training so you'll be ready to meet advanced persistent threats (APTs) head on.

In this certification training course, you will gain the foundational knowledge to fully prepare for the CySA+ exam (CS0-001). This is an intermediate certification that is part of the CompTIA certification pathway, fitting in between the Network+ & CASP certifications. Achieving this certification validates that you have the skills as a cybersecurity analyst, that you can take an analytical approach to cybersecurity, and have the knowledge of network security tools and techniques to combat threats.

Included in your course tuition is a voucher that enables you to take the CS0-001 exam at any Pearson VUE Test Center location.

Key Features of this CySA+ Training

  • CompTIA-approved CySA+ training programs
  • After-course instructor coaching benefit
  • Exam voucher included

You Will Learn How To:

  • Prepare for and pass the Cybersecurity Analyst (CySA+) exam
  • Identify tools and techniques used to perform environmental reconnaissance of a target network or security system
  • Use network host and web application vulnerability assessment tools and interpret the results to provide effective mitigation
  • Participate in a senior role within an incident response team and use forensic tools to identify the source of an attack
  • Understand the use of frameworks, policies, and procedures, and report on security architecture with recommendations for effective compensating controls



Choose the Training Solution That Best Fits Your Individual Needs or Organizational Goals


In Class & Live, Online Training

  • 5-day instructor-led training course
  • One-on-one after course instructor coaching
  • Earn 29 CompTIA CEUs
  • Exam voucher included
  • Pay later by invoice -OR- at the time of checkout by credit card
View Course Details & Schedule

Standard $3810

Government $3360




Team Training

  • Bring this or any training to your organization
  • Full - scale program development
  • Delivered when, where, and how you want it
  • Blended learning models
  • Tailored content
  • Expert team coaching

Customize Your Team Training Experience


Save More On Training with FlexVouchers – A Unique Training Savings Account

Our FlexVouchers help you lock in your training budgets without having to commit to a traditional 1 voucher = 1 course classroom-only attendance. FlexVouchers expand your purchasing power to modern blended solutions and services that are completely customizable. For details, please call 888-843-8733 or chat live.

In Class & Live, Online Training

Time Zone Legend:
Eastern Time Zone Central Time Zone
Mountain Time Zone Pacific Time Zone

Note: This course runs for 5 Days *

*Events with the Partial Day Event clock icon run longer than normal but provide the convenience of half-day sessions.

  • Dec 14 - 18 9:00 AM - 4:30 PM EST Online (AnyWare) Online (AnyWare) Reserve Your Seat

  • Feb 8 - 12 9:00 AM - 4:30 PM EST Greenbelt,MD / Online (AnyWare) Greenbelt,MD / Online (AnyWare) Reserve Your Seat

  • Apr 12 - 16 9:00 AM - 4:30 PM EDT Herndon, VA / Online (AnyWare) Herndon, VA / Online (AnyWare) Reserve Your Seat

  • Jun 7 - 11 9:00 AM - 4:30 PM EDT Alexandria, VA / Online (AnyWare) Alexandria, VA / Online (AnyWare) Reserve Your Seat

  • Jul 26 - 30 9:00 AM - 4:30 PM EDT Greenbelt,MD / Online (AnyWare) Greenbelt,MD / Online (AnyWare) Reserve Your Seat

Guaranteed to Run

When you see the "Guaranteed to Run" icon next to a course event, you can rest assured that your course event — date, time — will run. Guaranteed.

Partial Day Event

Learning Tree offers a flexible schedule program. If you cannot attend full day sessions, this option consists of four-hour sessions per day instead of the full-day session.

Important CySA+ Course Information

  • Requirements

    • IT Security Professionals must have 3-4 years of hands-on information security or related experience at the level of Network+ or Security+
  • Recommended Experience

    • It is recommended that you have the following skills and knowledge before starting this course:
      • Knowledge of basic network terminology and functions (such as OSI Model, Topology, Ethernet, Wi-Fi, switches, routers)
      • Understanding of TCP/IP addressing, core protocols, and troubleshooting tools
      • Network attack strategies and defenses
      • Knowledge of the technologies and uses of cryptographic standards and products
      • Network- and host-based security technologies and practices
      • Standards and products used to enforce security on web and communications technologies
  • Exam Information

    • Course tuition includes an exam voucher. The exam is offered through Pearson Vue.
  • Certification Information

CySA+ Course Outline

  • Module 1: Threat Management

    Cybersecurity analysts

    • Cybersecurity roles and responsibilities
    • Frameworks and security controls
    • Risk evaluation
    • Penetration testing processes

    Reconnaissance techniques

    • The kill chain
    • Open source intelligence
    • Social engineering
    • Topology discovery
    • Service discovery
    • OS fingerprinting
  • Module 2: Threat Management

    Security appliances

    • Configuring firewalls
    • Intrusion detection and prevention
    • Configuring IDS
    • Malware threats
    • Configuring anti-virus software
    • Sysinternals
    • Enhanced mitigation experience toolkit

    Logging and analysis

    • Packet capture
    • Packet capture tools
    • Monitoring tools
    • Log review and SIEM
    • SIEM data outputs
    • SIEM data analysis
    • Point-in-time data analysis
  • Module 3: Vulnerability Management

    Managing vulnerabilities

    • Vulnerability management requirements
    • Asset inventory
    • Data classification
    • Vulnerability management processes
    • Vulnerability scanners
    • Microsoft baseline security analyzer
    • Vulnerability feeds and SCAP
    • Configuring vulnerability scans
    • Vulnerability scanning criteria
    • Exploit frameworks

    Remediating vulnerabilities

    • Analyzing vulnerability scans
    • Remediation and change control
    • Remediating host vulnerabilities
    • Remediating network vulnerabilities
    • Remediating virtual infrastructure vulnerabilities

    Secure software development

    • Software development life cycle
    • Software vulnerabilities
    • Software security testing
    • Interception proxies
    • Web application firewalls
    • Source authenticity
    • Reverse engineering
  • Module 4: Cyber Incident Response

    Incident response

    • Incident response processes
    • Threat classification
    • Incident severity and prioritization
    • Types of data

    Forensics tools

    • Digital forensics investigations
    • Documentation and forms
    • Digital forensics crime scenes
    • Digital forensics kits
    • Image acquisition
    • Password cracking
    • Analysis utilities

    Incident analysis and recovery

    • Analysis and recovery frameworks
    • Analyzing network symptoms
    • Analyzing host symptoms
    • Analyzing data exfiltration
    • Analyzing application symptoms
    • Using sysinternals
    • Containment techniques
    • Eradication techniques
    • Validation techniques
    • Corrective actions
  • Module 5: Security Architecture

    Secure network design

    • Network segmentation
    • Blackholes, sinkholes, and honeypots
    • System hardening
    • Group policies and MAC
    • Endpoint security

    Managing identities and access

    • Network access control
    • Identity management
    • Identity security issues
    • Identity repositories
    • Context-based authentication
    • Single sign on and federation
    • Exploiting identities
    • Exploiting web browsers and applications

    Security frameworks and policies

    • Frameworks and compliance
    • Reviewing security architecture
    • Procedures and compensating controls
    • Verifications and quality control
    • Security policies and procedures
    • Personnel policies and training

Team Training

CySA+ Training FAQs

  • What is CompTIA CySA+ certification?

    Cybersecurity Analyst (CySA+) is an IT workforce certfication. It applies behavioral analytics to networks and devices to help prevent, detect and combat cyber threats.  

  • How do I earn CompTIA CySA+ certification?

    To earn this certification, you must take and pass CompTIA exam CS0-001.

  • How do I take the CySA+ exam (CS0-001)?

    Course tuition includes an exam voucher. The exam is offered through Pearson Vue.

  • How do I maintain my CompTIA CySA+ certification?

    You must earn 60 CompTIA CEUs over a three-year period to maintain CySA+ certification. Maintain your CompTIA certification with CEU-approved training.

CompTIA Certification All-Inclusive Pack

Blended Learning Bundles + Labs + Exam Vouchers
all for one price!

Questions about which training is right for you?

call 888-843-8733
chat Live Chat

100% Satisfaction Guaranteed

Your Training Comes with a 100% Satisfaction Guarantee!*

*Partner-delivered courses may have different terms that apply. Ask for details.

Online (AnyWare)
Greenbelt,MD / Online (AnyWare)
Herndon, VA / Online (AnyWare)
Alexandria, VA / Online (AnyWare)
Greenbelt,MD / Online (AnyWare)
Preferred method of contact:
Chat Now

Please Choose a Language

Canada - English

Canada - Français