CASP CompTIA Advanced Security Practitioner Study Guide (Exam CAS-001)

Targeting security professionals who either have their CompTIA Security+ certification or are looking to achieve a more advanced security certification, this CompTIA Authorized study guide is focused on the new CompTIA Advanced Security Practitioner (CASP) Exam CAS-001. Veteran IT security expert and author Michael Gregg details the technical knowledge and skills you need to conceptualize, design, and engineer secure solutions across complex enterprise environments. He prepares you for aspects of the certification test that assess how well you apply critical thinking and judgment across a broad spectrum of security disciplines.

Featuring clear and concise information on crucial security topics, this study guide includes examples and insights drawn from real-world experience to help you not only prepare for the exam, but also your career. You will get complete coverage of exam objectives for all topic areas including:

• Securing Enterprise-level Infrastructures
• Conducting Risk Management Assessment
• Implementing Security Policies and Procedures
• Researching and Analyzing Industry Trends
• Integrating Computing, Communications and Business Disciplines

About the Authors

Michael Gregg is the COO of Superior Solutions, Inc. (thesolutionfirm.com), a Houston-based consulting firm that performs security assessments and penetration testing for Fortune 1000 companies. He is an expert on security, networking, and Internet technologies, and has written over 14 books on IT security. Michael holds the following certifications: CISSP, CISA, CISM, MCSE, MCT, CTT+, A+, Network+, Security+, CNA, CCNA, CIW Security Analyst, CCE, CEH, CHFI, CEI, DCNP, ES Dragon IDS, ES Advanced Dragon IDS, and SSCP.

Billy Haines, CCNA Security, CISSP Associate, is a systems engineer for a science, engineering, technology, and applications company in the greater San Diego area. Prior to that, he was a network security vulnerability technician with the U.S. Navy, specializing in advanced networking, intrusion detection, vulnerability management, information assurance, and comprehensive defense-in-depth implementation.