CySA+
Course Outline
The CompTIA Cybersecurity Analyst (CySA+) course is designed for professionals responsible for detecting, preventing, and responding to security incidents through continuous monitoring. The course provides hands-on training to enhance security operations processes, differentiate threat intelligence from threat hunting, and identify malicious activity using the appropriate tools. Participants will learn to conduct vulnerability assessments, prioritise findings, and recommend effective mitigation strategies. The course also covers attack methodology frameworks, the incident response process, and the incident management lifecycle, equipping participants to handle security incidents efficiently. In addition, it emphasises communication best practices, enabling professionals to report on vulnerability management and incident response with actionable plans and meaningful metrics for stakeholders.
Learning Objectives
The CompTIA CySA+ course is designed to help participants develop and validate advanced cybersecurity skills. Throughout the training, you will enhance your ability to manage security operations processes, differentiate between threat intelligence and threat hunting, and identify malicious activity using appropriate tools. These skills are essential for effectively monitoring and defending organisational networks against cyber threats.
Participants will also learn to conduct comprehensive vulnerability assessments, prioritise vulnerabilities based on risk, and recommend mitigation strategies to strengthen security posture. The course covers attack methodology frameworks and the incident management lifecycle, enabling you to perform incident response activities and handle security incidents effectively. Additionally, you will develop communication skills to report on vulnerability management and incident response, providing stakeholders with actionable plans and meaningful metrics for informed decision-making.
Specialist Skills Hub are a proud partner of ELCAS, supporting those leaving the armed forces to transition into a career in the tech industry. Find out more here.
Why Should You Attend?
Attending the CompTIA Cybersecurity Analyst (CySA+) course is an ideal choice for professionals looking to advance their skills in cybersecurity. The course equips participants with the knowledge and practical expertise to enhance security operations processes, differentiate between threat intelligence and threat hunting, and accurately identify malicious activity using the right tools.
Participants will also gain the ability to conduct thorough vulnerability assessments, prioritise risks, and recommend effective mitigation strategies to strengthen an organisation’s security posture. The training covers attack methodology frameworks, incident response, and the full incident management lifecycle, preparing professionals to handle security incidents efficiently and confidently.
Specialist Skills Hub are a BCS approved training centre.
Who Should Attend?
The CySA+ course is designed for IT and cybersecurity professionals seeking to advance their careers in roles such as network engineer, network administrator, cybersecurity analyst or engineer, penetration tester, data analyst, or IT manager. Participants will build practical skills through CompTIA training and validate their expertise with CySA+ certification. The course equips attendees to enhance security operations processes, differentiate threat intelligence from threat hunting, and identify malicious activity using appropriate tools. It also teaches how to conduct thorough vulnerability assessments, prioritise vulnerabilities, and recommend effective mitigation strategies.
Specialist Skills Hub are proud to be a living wage employer.
General Information
The CySA+ course provides comprehensive training for IT and cybersecurity professionals looking to strengthen their expertise in detecting, responding to, and managing security threats. It covers all stages of penetration testing across a variety of attack surfaces, including cloud environments, web applications, APIs, and IoT systems, with a focus on hands-on skills such as vulnerability management, lateral movement, and incident response. Participants will learn to plan and scope penetration tests, perform active and passive reconnaissance, gather and analyse system information, and identify vulnerabilities. The course also covers executing network, host-based, web application, and cloud-based attacks using appropriate tools, maintaining persistence, performing lateral movement, and documenting findings to support remediation. This training equips participants with the practical skills and knowledge needed to advance careers as cybersecurity analysts, penetration testers, or security consultants while ensuring compliance with legal and ethical standards.
ELCAS Learners? Contact Us Today to Enquire About Your Course
Examination & Certification
The CompTIA CySA+ (V3) exam is designed to validate advanced cybersecurity skills in security operations, threat detection, and incident response. Launched on June 6, 2023, the exam consists of a maximum of 85 questions, including multiple-choice and performance-based items. Candidates are given 165 minutes to complete the exam, with a passing score of 750 on a scale of 100–900. The exam is offered in English, Japanese, Portuguese, and Spanish, and is expected to retire around 2026. Recommended experience includes CompTIA Network+ or Security+ knowledge, along with at least four years of hands-on experience as an incident response analyst, SOC analyst, or in an equivalent role. CySA+ aligns with DoD 8140 work roles such as all-source analyst, cyber defence analyst, vulnerability assessment analyst, and cyber defence incident responder.
The exam evaluates candidates across four key domains. Security operations (33%) covers system and network architecture, malicious activity indicators, detection tools, threat intelligence, and process improvement. Vulnerability management (30%) focuses on vulnerability scanning, assessment tool output, prioritisation, mitigation, and response. Incident response management (20%) addresses attack methodology frameworks, detection, analysis, containment, eradication, recovery, and incident management lifecycle. Reporting and communication (17%) assesses the ability to generate actionable reports, communicate effectively with stakeholders, and track key performance indicators for vulnerability management and incident response. Upon successfully passing the exam, candidates can earn the CompTIA CySA+ certification, demonstrating their expertise in cybersecurity analysis and operational security.
Dates & Locations
The course will be delivered live online via Microsoft Teams, offering a flexible and accessible learning experience. Participants can join from any location, gaining the benefits of interactive, instructor-led training without the need for travel. Dates are scheduled throughout the year. See the scheduled dates above or contact us to enquire about alternative dates.
Start Your Learning Now!
