IT Specialist – Cybersecurity
R4,350.00
Candidates for this exam are preparing for a job as an entry-level cybersecurity technician
or junior analyst. This exam assesses their understanding of key security principles,
frameworks, and mindset. Successful candidates will have a keen awareness of how
vulnerabilities open a company to security incidents, and how adhering to security
principles and implementing benchmarks can help to mitigate the risk of attack. They are
developing the investigation and interpretation skills necessary to succeed in the field
and have an aptitude and desire to learn more. They are familiar with the toolset used to
monitor an endpoint device and network for indications of an incident and can analyze logs
to determine whether an escalation should occur.
1. Security Principles
1.1 Explain common security principles
1.2 Explain cybersecurity frameworks and industry-accepted best
practices
1.3 Explain vulnerabilities, threats, and common attacks
1.4 Recognize social engineering attacks
1.5 Explain access management principles and procedures
1.6 Explain how encryption protects the confidentiality and integrity
of data
2. Securing the Network
2.1 Identify vulnerabilities associated with commonly used protocols
2.2 Describe the role of addressing in network security
2.3 Describe the purpose and function of network security technologies
2.4 Validate the security of wireless networks
2.5 Examine network security logs to identify anomalies
3. Securing Endpoint Devices
3.1 Apply security settings to harden operating systems
3.2 Use endpoint tools to gather security assessment information
3.3 Use packet capture utilities to identify anomalies
3.4 Demonstrate familiarity with endpoint security policies and
standards
3.5 Interpret system logs to identify anomalies
3.6 Perform malware removal
4. Vulnerability Assessment and Risk Management
4.1 Use threat intelligence sources to identify potential network
vulnerabilities
4.2 Explain risk management
4.3 Explain the penetration testing process
5. Incident Handling
5.1 Monitor security events to determine if escalation is required
5.2 Explain the digital forensics process and attack frameworks
5.3 Explain the elements of cybersecurity incident response
5.4 Explain the importance of disaster recovery and business continuity
planning
5.5 Assist users in restoring data after an incident
