CompTIA Security+ (SY0-701) Online Training & Certification Prep
Build the core cybersecurity skills validated by the industry's most widely held security certification, with hands-on labs that mirror real enterprise environments.
Course Overview
CompTIA Security+ (SY0-701) is the benchmark entry-level cybersecurity certification recognized by the U.S. Department of Defense, thousands of enterprises worldwide, and virtually every major managed-service provider. Updated in 2023, the SY0-701 exam reflects current attack surfaces—from hybrid cloud environments and IoT to AI-driven threat intelligence—making it a genuinely current measure of practitioner readiness.
This course maps directly to the five SY0-701 exam domains: General Security Concepts, Threats Vulnerabilities & Mitigations, Security Architecture, Security Operations, and Security Program Management & Oversight. Each module pairs conceptual instruction with Live Labs on real hardware and cloud-connected environments, so you practice configuring firewalls, analyzing packet captures, implementing MFA, and responding to simulated incidents rather than working through screenshots.
Boost eLearning offers three ways to complete this training: online self-paced (learn on your schedule with six months of access), live virtual (instructor-led cohorts with real-time Q&A), and on-site delivery for teams. Every modality is backed by our Pass Guarantee—if you sit the SY0-701 exam and don’t pass, we’ll provide additional instruction at no charge.
The course is designed for IT professionals with roughly two years of hands-on networking or systems experience who are ready to specialize in security. You’ll leave with the threat-analysis, architecture, and incident-response vocabulary and skills that hiring managers look for in Security Analysts, SOC Tier 1/2 roles, and IT Auditors. Our Certified Partner instructors bring real-world SOC and penetration-testing backgrounds to every session, grounding the curriculum in scenarios you’ll actually encounter on the job—not just on the exam.
What You'll Learn
- Identify and mitigate threats, vulnerabilities, and attack vectors including social engineering, malware, and application attacks
- Apply cryptographic concepts: symmetric/asymmetric algorithms, PKI, certificate management, and hashing
- Configure and manage identity and access management controls including MFA, SSO, and privileged access
- Implement network security architecture: segmentation, VPNs, firewalls, IDS/IPS, and secure protocols
- Analyze indicators of compromise and perform basic digital forensics and incident-response procedures
- Secure cloud, hybrid, and virtualized environments including container security and serverless workloads
- Apply risk management concepts: risk assessments, BIA, BCP/DR planning, and compliance frameworks (NIST, ISO 27001)
- Harden endpoints, mobile devices, and embedded/IoT systems against common attack vectors
- Interpret security logs, SIEM alerts, and vulnerability scanner output to prioritize remediation
- Understand data privacy regulations (GDPR, HIPAA, PCI-DSS) and their security program implications
Who This Course Is For
- IT support technicians and help-desk staff transitioning into security roles
- Network administrators and systems administrators adding a security specialization
- SOC Tier 1 analysts preparing to formalize their credentials
- Recent CompTIA Network+ or A+ holders pursuing the recommended Security+ next step
- Military and government IT personnel meeting DoD 8570/8140 baseline requirements
- IT students and recent graduates targeting their first cybersecurity position
Course Outline
- Security controls: technical, managerial, operational, and physical categories
- Basic cryptography: symmetric, asymmetric, hashing, and digital signatures
- PKI components: CAs, certificate chains, revocation (CRL/OCSP), and certificate types
- Authentication concepts: MFA, passwordless, biometrics, and authenticator apps
- Security gaps: zero-day, misconfigurations, and weak cipher suites
- Threat actors and motivations: nation-state, hacktivist, insider, and cybercriminal
- Social engineering: phishing, smishing, vishing, pretexting, and BEC
- Malware taxonomy: ransomware, RATs, rootkits, spyware, logic bombs, and fileless malware
- Application attacks: SQL injection, XSS, buffer overflows, API abuse, and CSRF
- Network attacks: DoS/DDoS, on-path attacks, DNS poisoning, and VLAN hopping
- Vulnerability scanning and penetration testing phases
- Cloud security models: IaaS/PaaS/SaaS shared responsibility and cloud-native controls
- Network segmentation: VLANs, DMZ, microsegmentation, and zero-trust architecture
- Secure network protocols: TLS 1.3, SSH, SFTP, DNSSEC, and IPSec
- Infrastructure security: firewalls, WAFs, proxies, load balancers, and SD-WAN
- Virtualization and containerization security: hypervisor attacks, Docker hardening
- Operational technology (OT) and IoT security considerations
- Identity and access management: RBAC, ABAC, PAM, and directory services (LDAP/AD)
- Endpoint hardening: patch management, application control, EDR, and baseline configurations
- Incident response lifecycle: preparation, detection, containment, eradication, and recovery
- Digital forensics: chain of custody, imaging, log acquisition, and memory analysis
- SIEM concepts: log aggregation, correlation rules, alert tuning, and SOC workflows
- Monitoring tools: packet analysis (Wireshark), vulnerability scanners (Nessus), and IDS/IPS
- Risk management: quantitative/qualitative analysis, risk register, and risk appetite
- Compliance frameworks: NIST CSF, ISO 27001, SOC 2, HIPAA, PCI-DSS, and GDPR
- Data classification, labeling, and handling procedures
- Third-party risk: vendor assessments, supply-chain security, and contractual controls
- Business continuity and disaster recovery: BIA, RTO/RPO, and failover testing
- Guided lab review: firewall rules, IDS alert triage, and certificate deployment
- Performance-based question (PBQ) strategies and simulation walkthroughs
- Full-length practice exam with detailed answer rationale
- Weak-domain targeted review sessions
About the Certification Exam
- Exam code
- SY0-701
- Length
- 90 minutes
- Questions
- Maximum 90 (multiple-choice and performance-based)
- Passing score
- 750 on a scale of 100u2013900
- Exam cost
- ~$392 USD
- Where
- Pearson VUE testing center or online proctored
The certification exam fee is paid separately to the testing provider and is not included in the course price unless stated otherwise.
Live Labs Included
Hands-on practice on real environments
This course includes Live Labs — direct access to real hardware and cloud environments so you build the skills the exam actually tests.
- Configure and test a stateful firewall ruleset on a live pfSense appliance
- Capture and analyze network traffic with Wireshark to identify credential exposure
- Deploy and enroll certificates in a Windows Server CA, then test revocation via OCSP
- Implement and test MFA enforcement on an Active Directory domain using Microsoft Entra
- Simulate a ransomware incident: isolate an endpoint, collect forensic artifacts, and document the chain of custody
- Run a credentialed Nessus vulnerability scan, triage findings by CVSS score, and draft a remediation plan
Pass Guarantee Included
Complete this course and if you don't pass the certification exam on your first attempt, we'll refund your course fee or give you a free retake — your choice.
