Dr. Jason Edwards

Certified - CompTIA CYSA+ Audio Course

The CYSA+ Audio Course is your complete, exam-focused companion for mastering the CompTIA Cybersecurity Analyst (CYSA+) certification. Designed for learners who are always on the move, this Audio Course transforms the official exam objectives into clear, structured, and easy-to-follow lessons. Each episode helps you understand, retain, and apply key cybersecurity analysis skills—covering threat detection, vulnerability management, security architecture, and incident response. Whether you’re studying during your commute, exercising, or reviewing between shifts, every session is crafted to keep...

Autor

Dr. Jason Edwards

Kategorie

Education

Podcast-Website

baremetalcyber.com

Neueste Folge

14. Okt 2025

Wo hören?

Podcasts in der App Replaio Radio Bald verfügbar

Podcasts kommen bald in die App. Installiere sie jetzt und erlebe als Erster einen ganz neuen Blick auf Podcasts

Bei Google Play herunterladen Kostenlos installieren Android 5 Mio.+ Downloads · Bewertung 4,8 iOS bald

Folgen

Welcome to the CompTIA CYSA+ Certification 14.10.2025
Episode 130: Root Cause Analysis and Incident Performance Metrics 15.07.2025

Every incident response process must end with two critical questions: What went wrong? And how do we prevent it next time? In this final episode of Domain 4, we explore the structure and value of root cause analysis (RCA) and the metrics analysts use to evaluate incident response performance. You'll learn techniques for identifying the initial failure point, tracing cascading effects, and distingu...

Episode 129: Regulatory and Law Enforcement Reporting 15.07.2025

When a breach crosses a legal threshold, reporting to regulators or law enforcement may be required. In this episode, we examine the processes and obligations associated with regulatory reporting under frameworks like GDPR, HIPAA, PCI DSS, and state-level data breach laws. You’ll learn what types of incidents trigger mandatory disclosure, how quickly reports must be filed, and what they typically...

Episode 128: Customer and Media Communications 15.07.2025

Sometimes the most difficult part of a security incident isn’t stopping the threat—it’s explaining what happened to the people affected. In this episode, we explore how organizations communicate with customers, partners, and the media during and after an incident. You’ll learn what kinds of disclosures are required, what language builds trust, and how to balance transparency with prudence. We’ll a...

Episode 127: Legal and PR Communications During an Incident 15.07.2025

Communication during a security incident isn't just internal—it can affect your company’s reputation, legal standing, and customer trust. In this episode, we examine how security teams coordinate with legal departments and public relations professionals to craft official statements and limit liability. You'll learn how analysts contribute to this process by providing facts, timelines, and technica...

Episode 126: Writing Effective Incident Response Reports 15.07.2025

When the incident is over, the reporting begins. In this episode, we explore how security analysts write effective incident response reports that document what happened, how it was discovered, what actions were taken, and what outcomes resulted. You’ll learn how to construct a clear executive summary, provide a precise who-what-when-where-why breakdown, and include technical evidence in a way that...

Episode 125: Incident Declaration and Escalation Procedures 15.07.2025

Not every alert becomes an incident—but when one does, it needs to be declared formally and escalated swiftly. In this episode, we walk through the process of incident declaration, including the criteria used to define what qualifies as an incident and the steps analysts take to classify severity. You’ll learn how escalation procedures are triggered, how incident levels are assigned, and how teams...

Episode 124: Stakeholder Communication for Incident Response 15.07.2025

During an incident, clear and timely communication becomes a matter of urgency—not just best practice. In this episode, we cover how security analysts coordinate communication across teams and leadership tiers when responding to security events. You’ll learn how to identify the right stakeholders based on the severity and scope of the incident, and how to use predefined escalation paths, templates...

Episode 123: Identifying Stakeholders for Vulnerability Reporting 15.07.2025

Not all stakeholders need the same level of technical detail—but all of them need accurate, timely, and actionable reporting. In this episode, we explore how analysts identify and tailor communication for different stakeholder groups during the vulnerability management process. You’ll learn who needs to know what—from system administrators and developers to compliance officers and executives—and h...

Episode 122: Metrics and KPIs in Vulnerability Management 15.07.2025

You can’t improve what you don’t measure. In this episode, we focus on key performance indicators (KPIs) and metrics used to evaluate the effectiveness of vulnerability management programs. You’ll learn how metrics like vulnerability age, remediation time, recurrence rates, and vulnerability density across asset classes are used to benchmark performance and demonstrate progress. We’ll also explore...

Episode 121: Inhibitors to Remediation 15.07.2025

Even when vulnerabilities are known and documented, remediation doesn’t always move forward. In this episode, we examine the most common inhibitors to remediation—technical, procedural, and political obstacles that delay or prevent action. You’ll learn how factors like legacy systems, proprietary dependencies, business process interruptions, organizational governance constraints, and SLAs all play...

Episode 120: Action Plans and Remediation Communication 15.07.2025

Once vulnerabilities are identified, the work isn’t done—it’s just beginning. In this episode, we explore how analysts develop and communicate action plans for addressing discovered risks. You’ll learn how patching schedules, configuration changes, user awareness efforts, and compensating controls are communicated clearly to technical teams, project managers, and business stakeholders. We also cov...

Episode 119: Creating and Understanding Compliance Reports 15.07.2025

Security isn't just about stopping threats—it's also about proving due diligence. In this episode, we explore how security teams create and interpret compliance reports aligned with frameworks like PCI DSS, HIPAA, NIST 800-53, and ISO 27001. You’ll learn how reports are structured to demonstrate adherence to technical controls, timelines, audit requirements, and SLAs. We’ll also explain how vulner...

Episode 118: Vulnerability Management Reporting Essentials 15.07.2025

In this episode, we break down the core components of a vulnerability management report. You’ll learn how to organize and present data on discovered vulnerabilities, affected assets, associated risk scores, remediation efforts, recurrence frequency, and mitigation timelines. We explain how to structure reports for different audiences—whether it's a tactical report for system admins or a strategic...

Episode 117: Domain 4 Overview – Reporting and Communication in Cybersecurity 15.07.2025

Welcome to Domain 4 of the CySA+ PrepCast. In this episode, we introduce the principles of reporting and communication—critical soft skills that define how technical findings are translated into business decisions. You’ll learn why analysts must be effective communicators, how reporting ties into regulatory requirements, and what makes security metrics meaningful to leadership and auditors. We’ll...

Episode 116: Post-Incident Activity and Organizational Learning 15.07.2025

Once the smoke clears, the real improvement begins. In this episode, we explore the post-incident phase of the incident response lifecycle. You’ll learn how forensic analysis is conducted to uncover technical root causes, how timeline reconstruction helps validate scope and sequence, and how organizations document lessons learned to avoid repeating mistakes. We’ll also discuss how post-incident re...

Episode 115: Incident Preparation – Building a Response Program 15.07.2025

The best incident response doesn’t start with detection—it starts with preparation. In this episode, we walk through the preparation phase of the incident response lifecycle, focusing on how organizations create, document, and test their response plans. You’ll learn about IR playbooks, tabletop exercises, escalation matrices, and readiness assessments—all designed to ensure teams know their roles...

Episode 114: Containment, Eradication, and Recovery Phases 15.07.2025

Detecting an incident is only the beginning. In this episode, we examine the containment, eradication, and recovery phases of incident response—what they are, how they differ, and how they build upon one another to restore a secure state. You’ll learn how containment isolates the threat, eradication removes it from the environment, and recovery brings systems back into production while ensuring th...

Episode 113: Data and Log Analysis During an Incident 15.07.2025

Raw data becomes actionable intelligence when it’s properly analyzed. In this episode, we focus on the data and log analysis process during an incident, explaining how analysts sift through event logs, network traffic, system alerts, and application telemetry to reconstruct what happened. You’ll learn how to use timeline creation, correlation engines, and pivoting techniques to identify patient ze...

Episode 112: Evidence Acquisition and Chain of Custody 15.07.2025

Once an incident is detected, preserving evidence becomes a top priority. In this episode, we walk through the evidence acquisition process—from initial identification to collection, storage, and transfer. You’ll learn what types of evidence are collected during security incidents, including disk images, memory dumps, log files, and email headers, and how to maintain forensic integrity throughout...

Episode 111: Indicators of Compromise (IoCs) – Detection Foundations 15.07.2025

Detecting an attack starts with recognizing the signs. In this episode, we explore Indicators of Compromise (IoCs)—artifacts that suggest an organization may have been breached or is under active threat. You’ll learn how IoCs include file hashes, domain names, IP addresses, registry keys, and behavioral anomalies, and how analysts discover them during investigations or receive them through threat...

Episode 110: Open Source Security Testing Methodology Manual (OSSTMM) 15.07.2025

The OSSTMM is often overlooked—but it provides a rigorous, standards-based approach to security testing that aligns with the goals of CySA+ and many compliance frameworks. In this episode, we explain what the Open Source Security Testing Methodology Manual is, why it matters, and how it provides structure to everything from reconnaissance and vulnerability validation to operational control assessm...

Episode 109: MITRE ATT&CK Framework for Analysts 15.07.2025

In this episode, we explore the MITRE ATT&CK Framework—a living matrix of adversary behaviors that has transformed how cybersecurity professionals track and respond to attacks. You’ll learn how the framework maps tactics (the goals of an attacker) to techniques (the methods they use), and how analysts use ATT&CK to build detection logic, design threat hunts, and improve coverage in SIEMs a...

Episode 108: The Diamond Model of Intrusion Analysis 15.07.2025

What happens when we move beyond events and look at the relationships between adversaries, capabilities, victims, and infrastructure? In this episode, we introduce the Diamond Model of Intrusion Analysis—a framework that gives analysts a structured way to examine threats by looking at key attributes and how they interact. You’ll learn how this model complements the cyber kill chain and provides a...

Episode 107: Cyber Kill Chains – From Recon to Exploitation 15.07.2025

To stop an attack, you must understand its progression. In this episode, we explore the Lockheed Martin Cyber Kill Chain—a widely used framework that maps the stages of a cyberattack from initial reconnaissance through delivery, exploitation, command and control, and beyond. You’ll learn how attackers move through each phase, and how defenders can detect and disrupt their efforts at multiple point...

Höre den Podcast Certified - CompTIA CYSA+ Audio Course in Replaio

Radio und Podcasts in einer App - kostenlos und ohne Anmeldung. Installiere sie noch heute und verpasse den Start nicht

Bei Google Play herunterladen

Replaio ist kein Herausgeber von Podcasts; die Namen der Sendungen, Cover und Audioinhalte gehören ihren Autoren und werden über öffentliche RSS-Feeds verbreitet