Table of Contents

Part I The CompTIA Security+ Exam
1. The Security+ Exam
2. Assessment Exam
Part II Stepping up to IT Security
3. The Basics of Security
4. Understanding Security Governance
5. Risk Management
6. IT Risk Assessment
Part III Cryptography
7. Understanding Cryptography
8. Cryptographic Methods
9. Application of Cryptographic Methods
10. Public Key Infrastructure
Part IV Authentication and Authorization
11. Understanding Identification and Authentication
12. Understanding Authorization
13. Authentication Methods and Services
14. User Account Management
Part V Host Security
15. Host Threats
16. Host Software Hardening
17. Host Network Service Hardening
18. Storage Security
19. Static Hosts
Part VI LAN Security
20. LAN Review
21. Network Threats
22. Network Hardening
23. Network Monitoring
Part VII Application Security
24. Host Application Threats
25. Web Application Threats
26. Application Hardening
27. Internet Service Hardening
28. Virtualization Security
Part VIII Wireless Security
29. Wireless Threats
30. Wireless Hardening
Part IX Physical Security
31. Environmental Security and Controls
32. Perimeter and Physical Controls
Part X Outside Security
33. Third-party Security
34. Cloud Computing
35. Mobile Security
Part XI People Security
36. Social Engineering
37. Security Training
Part XII Proactive Security
38. Security Assessment
39. Incident Response
40. Forensics
41. Business Continuity
42. Disaster Recovery

About the Author

Michael Meyers, MCP, CompTIA A+, CompTIA Network+, CompTIA Security+ (Houston, TX), is one of the industry's leading authorities on CompTIA certification. He is the president and founder and Total Seminars, LLC, a major provider of PC and network repair seminars for thousands of organizations including IBM, Lucent Technologies, GE, the FBI, the FAA and the United Nations. Mike is the best-selling author of the A+ Certification All-in-One Exam Guide.

Bobby E. Rogers is an Information Security Engineer working for a major hospital in the southeastern United States. His previous experience includes working as a contractor for Department of Defense agencies, helping to secure, certify, and accredit their information systems. His duties include information system security engineering, risk management, and certification and accreditation efforts. He retired after 21 years in the United States Air Force, serving as a network security engineer and instructor, and has secured networks all over the world. Bobby has a Master’s degree in Information Assurance (IA), and is pursuing a doctoral degree in IA from Capitol College, Maryland. His many certifications include CompTIA’s A+, CompTIA Network+, CompTIA Security+, and CompTIA Mobility+ certifications, as well as the CISSP-ISSEP, CEH, and MCSE: Security.