The U.S. Department of Labor forecasts that computer security and related computer-support specialties will be among the fastest-growing occupations through 2026. CompTIA's Security+ certificate is widely regarded as the entry-level certificate for this fast-growing field. Getting that certificate requires passing CompTIA's challenging SY0-501 exam.

After completing CompTIA® Security+ Certification Prep 1, this course continues preparation for the CompTIA® Security+ certification and provides key terminology and concepts needed to pass the SY0-501 exam. It's condensed in a format for rapid reading and provides helpful study tools, including games and practice questions to aid your learning. All of the content is geared toward helping you prepare to pass the SY0-501 exam, so you can leave the test center with your Security+ passing score in hand.

Enrollment Options:

6 Weeks Access Course Code: sc3
Start Dates* May 15 | Jun 19 | Jul 17 | Aug 14
*Choose start date in cart



Enroll before 31th May and get high quality lamination on your hardcopy certificate absolutely free! Use your certificate to your advantage by showing your certified credentials to prospective employers and recruiters.



You'll start off with a brief review of the Security+ exam and its objectives. Then you'll jump right into learning about access control. Authentication—verifying that a user requesting entry to a system or network is who they claim to be—is the first step in access control, which protects valuable and sensitive resources from unauthorized users and evildoers. In this lesson, you'll explore authentication, as well as its methods, protocols, and devices.

Authorization and Access Control

You previously learned about the authentication step in access control. In this lesson, you're going to continue your exploration of access control with a closer look at authorization and access control. Both of these are extremely important parts of the security policies protecting network resources. You'll take a detailed look at the elements that make up these two processes.

Managing and Securing User Accounts

This lesson will cover the policy and administration of accounts in a secure environment. It will first go over the different types of accounts you might work with, including individual accounts and group accounts. Then you'll learn about password policies, which govern how to make passwords as strong as possible, when passwords should expire, and how to deal with lost or forgotten passwords. Lastly, the lesson will discuss permissions, privileges, and the administrative actions required to minimize vulnerability.

Risk Management

Network administrators are constantly managing risk. But what does that really mean? In this lesson, you'll investigate the elements of the risk management process, including vulnerabilities, threats, risks, and likelihood and the methods used to identify, determine, or calculate each. The ultimate goal of risk management is to reduce risk to a level that's acceptable to the system and organization. In this lesson, you'll discover the methods that are used to figure out what level of risk is acceptable.


If you work in network security, being cryptic is just part of the job! Cryptography, or encryption, is used to prevent unauthorized people from being able to understand or use intercepted data. In this lesson, you'll explore the concepts behind encryption and the primary types of encryption in use. You'll learn about the most common encryption algorithms and ciphers and about the secure transport of encrypted data.

Public Key Infrastructure

With the Internet being so integrated these days, everyone depends on a security and validation system that's easy to take for granted: the public key infrastructure (PKI). The PKI protects you, often unknowingly, from people and companies that may be untrustworthy. In this lesson, you'll learn about the PKI and the security elements that work to protect you, including how and why they work.

Data Security

How can you protect the crucial data that allows your organization to function day in and day out? That's the question that will be addressed in this lesson. You'll start with a look at data loss prevention systems, which manage, identify, and protect data in its various states. You'll get acquainted with data encryption applications and hardware-based encryption devices. And you'll cover some considerations for off-site and remote data storage—what should you keep in mind about data when deciding where to store it and back it up? Maintaining your data's integrity and security is incredibly important, so you won't want to miss this lesson.

Securing Mobile Devices

As businesses go global and standard business hours no longer apply, mobile devices are becoming more common in organizational networks. In this lesson, you'll look at the threats that mobile devices introduce and the security methods for removing these threats. You'll investigate some internal measures for dealing with mobile devices, including what you can to protect data if a device is lost or stolen. You'll also explore what you should include in external security policies for mobile devices, and you'll see how technologies like mobile biometrics, voice encryption, and GPS tracking can help on the mobile security front. Mobile devices are only getting more essential to people's business and personal lives, so securing them is an increasingly important priority.

Virtualization and Cloud Computing

If you're working in IT these days, chances are you're working with virtualization in some form. But what exactly is virtualization? This lesson will build on what you learned about it in the first course. You'll find out how server virtualization works and explore virtualization software and hardware. You'll also learn how virtualization can benefit an organization as well as the particular security concerns that come along with it. You'll finish up with a look at the various types of cloud computing available today.

Application, Host, and Hardware Security

In this lesson, you'll focus on the security of application software. There are a few ways to make applications more secure, including application hardening and careful patch management. You'll see how these work and take a look at some common application attacks. You'll also see how to make sure the in-house software development process is as secure as you can make it. The lesson will even discuss the ways in which a host computer is secured both internally and externally.

Penetration Testing, Vulnerability Scanning, and Data Recovery

Do you know the differences between penetration testing and vulnerability scanning? When is it best to use each? In this lesson, you'll find out the answers to those questions. You'll take a look at the six phases of the penetration testing process and find out how vulnerability management works. Then you'll look at methods of software vulnerability testing, including black box, white box, and gray box testing. The lesson will conclude with a discussion of disaster recovery plans and data backup methods.

Preparing for the Security+ Exam

The CompTIA Security+ exam covers a wide-range of security concepts, topics, terminology, and practices, as well as a bit of hardware and software. In this lesson, which is the last of the two prep courses for the Security+ exam, you'll review the key terms and concepts that will be on the exam. The lesson will revisit what you really must know, and you'll get some final tips for taking a CompTIA exam.


Hardware Requirements:

  • This course can be taken on either a PC or Mac.

Software Requirements:

  • PC: Windows 8 or newer.
  • Mac: OS X Snow Leopard 10.6 or later.
  • Browser: The latest version of Google Chrome or Mozilla Firefox are preferred. Microsoft Edge and Safari are also compatible.


  • Email capabilities and access to a personal email account.


There are no prerequisites to take this course.


Ron Gilster is a best-selling author with more than 40 titles in print. He writes on topics including information technology (IT) certifications, real estate, and business. Ron has held a variety of IT-related positions, ranging from computer operator to senior manager. He has worked in consulting, manufacturing, software development, telecommunications, and higher education. He has an MBA and holds A+, Network+, i-Net+, CCNA, and AAGG certifications. He has developed and facilitated numerous courses and has taught in A+, Network+, and CCNA boot camps. His books include CompTIA Cloud+ CV0-001 In Depth,CCNA For Dummies, A+ Certification for Dummies, Server+ For Dummies, Network+ For Dummies, i-Net+ For Dummies, Cisco Networking For Dummies, MCSA For Dummies, CCDA For Dummies, Microsoft Office SharePoint Server 2007: A Beginner's Guide, CEA-CompTIA DHTI+ Digital Home Technology Integrator All-In-One Exam Guide, and PC Hardware: A Beginner's Guide.


The median annual pay for computer security technicians was $55,510 in May 2021.

According to the U.S. Bureau of Labor Statistics (, the median annual pay for computer security technicians was $55,510 in May 2021. As computer security technician, you can be part of an IT support team for all types of organizations, providing technical support and ensuring the company functions smoothly. CompTIA is the industry standard for establishing a career in IT and is the preferred certification for technical support and IT operational roles. The employment of CompTIA certified professionals is projected to grow 8 percent from 2019 to 2029, much faster than the average for all professions. Join the ranks of hundreds of individuals who have successfully completed the CompTIA Certifications through us and go on to work as a IT support specialist, IT field service technician, desktop support analyst, and much more.

About ExpertRating

ExpertRating is an ISO 9001:2015 certified company offering online certification and training services to individuals and companies globally. Over 25 million people have benefited from ExpertRating Online Certifications and assessments. ExpertRating is the winner of the Google SME Hero's award for showing outstanding use of technology in delivering trusted services to thousands of people on a daily basis. Our affordable certifications are an excellent way of demonstrating your knowledge and skills to prospective employers as well as vastly boosting your chances of moving ahead in your business or career.

Company Timeline

Since 2001

Decades of excellence

800+ Skill Tests

World’s largest test inventory

2500+ Companies

Thousands depend on use

25 Million People Tested

10 tests every minute

35 Countries Serviced

Over 1500 clients in the US

86% Reorder Rate

Satisfied clients

We deliver over 3 million online certification tests and online courses annually.


ExpertRating is a winner of the Google SME Heroes award. This award has been instituted by Google to honor IT companies that have excelled in their domain and have leveraged the internet to grow and expand their businesses in innovative ways.

ExpertRating is an ISO 9001:2015 certified company, which reflects that our courses and tests conform to the highest international quality standards. Our training material is prepared by thorough professionals with years of experience, and goes through several rounds of analysis by expert teams to help develop well-balanced, comprehensive and meaningful content.

By the end of the course, you will be ready to take the certification exams to qualify as an IT security technician, and you will do it all online at your own pace with a facilitator who will provide one-on-one interaction by answering questions and providing feedback on your performance. ExpertRating offers everything you need to succeed. ExpertRating gives you the flexibility to move ahead at your own pace, whether you have a full-time job, you are currently home, or you are looking to get back to work, you can enroll at any time. So, start preparing to be a certified IT security technician today.