CompTIA Cybersecurity Analyst (CySA+)

Exam pass guarantee included*

Learn with Wales leading CompTIA training provider

Fully accredited courses by CompTIA

Official CompTIA course materials provided

Classroom, Onsite and Virtual courses available

Certified trainers with 5 Star customer ratings

Welsh Government funding accepted

Duration: 5 Days
Accredited: Yes
Exams: Included
Funding: Accepted
Type: Classroom, Online, Onsite, Virtual
Company group booking discount available

Get this course for FREE with PLA Digital Funding

Live-Instructor or Online Self-Paced Courses Available

Course Information

Course Overview

CompTIA is a not-for-profit trade association with the purpose of advancing the interests of IT professionals and IT channel organizations, and its industry-leading IT certifications are an important part of that mission. CompTIA CyberSecurity Analyst (CySA+) certification is an intermediate-level certification designed to demonstrate the knowledge and competencies of a security analyst or specialist with four years’ experience in the field.

This course covers the duties of cybersecurity analysts who are responsible for monitoring and detecting security incidents in information systems and networks, and for executing a proper response to such incidents. The course introduces tools and tactics to manage cybersecurity risks, identify various types of common threats, evaluate the organization’s security, collect and analyze cybersecurity intelligence, and handle incidents as they occur. The course will also prepare you for the CompTIA CySA+ (Exam CS0-002) certification examination.

After you complete this course you will be able to:

  • Assess and respond to security threats and operate a systems and network security analysis platform.
  • Collect and use cybersecurity intelligence and threat data.
  • Identify modern cybersecurity threat actors types and tactics, techniques and procedures.
  • Analyze data collected from security and event logs and network packet captures.
  • Respond to and investigate cybersecurity incidents using forensic analysis techniques.
  • Assess information security risk in computing and network environments.
  • Implement a vulnerability management program.
  • Address security issues with an organization‘s network architecture.
  • Understand the importance of data governance controls.
  • Address security issues with an organization‘s software development life cycle.
  • Address security issues with an organization‘s use of cloud and service-oriented architecture.


CompTIA Cybersecurity Analyst (CySA+)

Lesson 1: Explaining the Importance of Security Controls and Security Intelligence

  • Topic 1A: Identify Security Control Types
  • Topic 1B: Explain the Importance of Threat Data and Intelligence

Lesson 2: Utilizing Threat Data and Intelligence

  • Topic 2A: Classify Threats and Threat Actor Types
  • Topic 2B: Utilize Attack Frameworks and Indicator Management
  • Topic 2C: Utilize Threat Modeling and Hunting Methodologies

Lesson 3: Analyzing Security Monitoring Data

  • Topic 3A: Analyze Network Monitoring Output
  • Topic 3B: Analyze Appliance Monitoring Output
  • Topic 3C: Analyze Endpoint Monitoring Output
  • Topic 3D: Analyze Email Monitoring Output

Lesson 4: Collecting and Querying Security Monitoring Data

  • Topic 4A: Configure Log Review and SIEM Tools
  • Topic 4B: Analyze and Query Logs and SIEM Data

Lesson 5: Utilizing Digital Forensics and Indicator Analysis Techniques

  • Topic 5A: Identify Digital Forensics Techniques
  • Topic 5B: Analyze Network-related IoCs
  • Topic 5C: Analyze Host-related IoCs
  • Topic 5D: Analyze Application-Related IoCs
  • Topic 5E: Analyze Lateral Movement and Pivot IoCs

Lesson 6: Applying Incident Response Procedures

  • Topic 6A: Explain Incident Response Processes
  • Topic 6B: Apply Detection and Containment Processes
  • Topic 6C: Apply Eradication, Recovery, and Post‑Incident Processes

Lesson 7: Applying Risk Mitigation and Security Frameworks

  • Topic 7A: Apply Risk Identification, Calculation, and Prioritization Processes
  • Topic 7B: Explain Frameworks, Policies, and Procedures

Lesson 8: Performing Vulnerability Management

  • Topic 8A: Analyze Output from Enumeration Tools
  • Topic 8B: Configure Infrastructure Vulnerability Scanning Parameters
  • Topic 8C: Analyze Output from Infrastructure Vulnerability Scanners
  • Topic 8D: Mitigate Vulnerability Issues

Lesson 9 Applying Security Solutions for Infrastructure Management

  • Topic 9A: Apply Identity and Access Management Security Solutions
  • Topic 9B: Apply Network Architecture and Segmentation Security Solutions
  • Topic 9C: Explain Hardware Assurance Best Practices
  • Topic 9D: Explain Vulnerabilities Associated with Specialized Technology

Lesson 10: Understanding Data Privacy and Protection

  • Topic 10A: Identify Non-Technical Data and Privacy Controls
  • Topic 10B: Identify Technical Data and Privacy Controls

Lesson 11: Applying Security Solutions for Software Assurance

  • Topic 11A: Mitigate Software Vulnerabilities and Attacks
  • Topic 11B: Mitigate Web Application Vulnerabilities and Attacks
  • Topic 11C: Analyze Output from Application Assessments

Lesson 12: Applying Security Solutions for Cloud and Automation

  • Topic 12A: Identify Cloud Service and Deployment Model Vulnerabilities
  • Topic 12B: Explain Service-Oriented Architecture
  • Topic 12C: Analyze Output from Cloud Infrastructure Assessment Tools
  • Topic 12D: Compare Automation Concepts and Technologies


CompTIA Cybersecurity Analyst (CySA+)

  • Exam time: 165 minutes
  • Multiple-choice style: 85 questions
  • Pass mark: 750 (on a scale of 100-900)
  • Closed-book exam (i.e. no reference materials are allowed during the exam)

What's Included

  • 5-days training and exam preparation from NILC’s accredited CompTIA trainer
  • Official CompTIA course notes and materials
  • CompTIA examination voucher – valid for 12 months
  • Exam Pass Guarantee – if you do not pass the exam after attending this training course with us, you will be eligible to attend the same training again for free. All that will be payable is the examination fee which is charged by the examination board. Applies to instructor-led courses only.

Dates & Prices

Upcoming Courses

Choose your location

Online Self-Paced

Start Date: Anytime


£1,498.00 excl. VAT



Start Date: Mon 08 July 2024


£2,595.00 excl. VAT



Start Date: Mon 09 September 2024


£2,595.00 excl. VAT



Start Date: Mon 11 November 2024


£2,595.00 excl. VAT



Start Date: Mon 13 January 2025


£2,595.00 excl. VAT



Start Date: Mon 28 July 2025


£2,595.00 excl. VAT


Can't find the course dates, location or delivery type you are looking for?

Fill out the request dates form above and we'll try our best to accommodate or contact us directly.

Why choose NILC for your training?

Learn why we should be your training provider of choice.

Awarding Winning Training Courses with industry leading customer satisfaction rates

A family business with customer service at the heart of everything we do

Trusted Training Partner to multiple colleges, government departments, businesses and unions

UK based Trainers that are industry experts and fully qualified

Rated "Excellent" with over 500+ Trustpilot Reviews

How we deliver our courses



Our virtual courses allow you to access live instructor-led training from the same expert instructors that deliver our classroom courses, without leaving the comfort of your home or office. All virtual courses are fully interactive, and learners can communicate with their trainer and peers at any time.

Many of our virtual courses are also recorded, so you can recap over the content you learnt as many time as you wish.


Our classroom courses allow you to learn and interact face-to-face with our expert instructors in a comfortable and modern training environment. All of our classroom based courses take place at NILC centers, or high quality training facilities, and include all required IT and physical equipment.

We also limit our class sizes to help promote better discussions and to ensure your learning experience is comfortable as possible.


Save time and hassle by arranging for one of our expert instructors to come to you. Our onsite courses allow you to learn in a location of your choosing, and you can train as many or as few people as you want – from a single person or team to whole departments. We can also fully customize the course content to the specific requirements of your business or project.

We offer onsite courses throughout the UK and it can be a great team building opportunity for colleagues to come together, bond and discuss.


Our Online Self Paced courses allow you to learn new skills from our expert instructors, in your own time and at your own pace. Our flexible online learning platform allows you to access content on your computer, tablet or mobile device, whether you’re on the move or at home. All our online courses come with immediate access and you can start learning straight away, from any internet enabled compatible device.

We also offer online email support from our expert instructors, so they’re always on hand and happy to help you with any questions which may arise.

Why choose NILC for your training?

Learn why we should be your training provider of choice.

Awarding Winning Training Courses with industry leading customer satisfaction rates

A family business with customer service at the heart of everything we do

Trusted Training Partner to multiple colleges, government departments, businesses and unions

UK based Trainers that are industry experts and fully qualified

Rated "Excellent" with over 500+ Trustpilot Reviews


“Highly Recommended”

A complex course subject was delivered clearly and with great passion and enthusiasm by our tutor. Subjects were explained in clear, real-life examples. Without doubt, I'm sure my successful result is in large part due to his experience and skill in this area.

- Neil Wilson

“Fantastic Course Thank You”

Fantastic course. Amazing from start to finish. Julie was absolutely outstanding. She was professional and has given me the knowledge and confidence to continue my studies. I cant thank Karim and team enough.

- Jodie Gee

“Great Tuition"

Great tuition. Felt really comfortable to ask questions and the course was engaging. Tony and Karim were brilliant.

- Amy Jones

“Great Instructor”

Great instructor. Well delivered and knows the subject inside and out. Friendly and provides a warm atmosphere conducive for feeling relaxed. A lot of context to cover in a short time.

- David Schofield

“Five Star Quality Course”

I received all the resources in advance which helped me prep for the course. The tutor was engaging and explained complex topics really well. The exam coaching was a unique selling point for me as it got me prepared for the exams so that nerves were less of a factor. Great communication throughout, thank you Tony and the whole team.

- Kim Darkin


How do I take my CompTIA exam?

You can take a CompTIA certification exam either online or in-person at a Person VUE test center.

I want to work in IT, but I don’t know where to start. Which certification is best for me?

The CompTIA IT Fundamentals (ITF+) certification is recommended for career-changers and students preparing to enter the IT workforce. That’s because CompTIA ITF+ helps professionals decide if a career in IT is right for them or to develop a broader understanding of IT. The CompTIA Career Pathway showcases different paths you can take and the certifications within that pathway. If you already have some technical knowledge but need credentials to get your foot in the door, check out CompTIA A+. This certification is the industry standard for entry-level IT jobs, including technical support specialist and help desk technician.

Why should I choose CompTIA?

There are a lot of other certifications out there. It depends on what area you’re looking to get certified in and which companies offer those certifications. CompTIA is vendor-neutral, so the skills you learn can be applied to any product. Other certifications, such as Cisco and Microsoft, are vendor-specific, meaning that the skills you learn only focus on a specific product. Starting with a vendor-neutral certification like CompTIA’s can help you build a foundation of skills that allows you to dive deeper with a vendor-specific certification.

What skills do I need to be successful in IT?

IT pros must actively acquire new skills to keep up with evolving technology. These in-demand skills will keep you competitive and functioning well in your IT career, regardless of what the future holds. The most sought out IT skills include not only technical skills – such as cloud computing, programming and tech support – but also professional skills like project management, communication and problem solving.

Trusted By