CWNP CWSP-206 Certification Exam Syllabus

CWSP-206 Syllabus, Wi-Fi Security Exam Questions PDF, CWNP CWSP-206 Dumps Free, Wi-Fi Security PDF, CWSP-206 Dumps, CWSP-206 PDF, Wi-Fi Security VCE, CWSP-206 Questions PDF, CWNP Wi-Fi Security Questions PDF, CWNP CWSP-206 VCEA great way to start the CWNP Certified Wireless Security Professional (CWSP) preparation is to begin by properly appreciating the role that syllabus and study guide play in the CWNP CWSP-206 certification exam. This study guide is an instrument to get you on the same page with CWNP and understand the nature of the CWNP Wi-Fi Security exam.

Our team of experts has composed this CWNP CWSP-206 exam preparation guide to provide the overview about CWNP Wireless Security Professional exam, study material, sample questions, practice exam and ways to interpret the exam objectives to help you assess your readiness for the CWNP CWSP exam by identifying prerequisite areas of knowledge. We recommend you to refer the simulation questions and practice test listed in this guide to determine what type of questions will be asked and the level of difficulty that could be tested in the CWNP Wi-Fi Security certification exam.

CWNP CWSP-206 Exam Overview:

Exam Name
Wireless Security Professional
Exam Number CWSP-206 CWSP
Exam Price $250 USD
Duration 90 minutes
Number of Questions 60
Passing Score 70%
Recommended Training Official Wi-Fi Security Self Study Kit
Wi-Fi Security eLearning
Live Network Certification Training Class
Exam Registration PEARSON VUE
Sample Questions CWNP CWSP-206 Sample Questions
Practice Exam CWNP Certified Wireless Security Professional Practice Test

CWNP CWSP-206 Exam Topics:

Section Objectives

Security Policy - 10%

Define WLAN security Requirements - Evaluate and incorporate business, technical, and applicable regulatory policies (for example, PCI-DSS, HIPAA, GPDR, etc.)
- Involve appropriate stakeholders
- Review client devices and applications
- Review WLAN infrastructure devices
Develop WLAN security policies - Translate security requirements to high-level policy statements
- Write policies conforming to common practices including definitions of enforcement and constraint specification
- Ensure appropriate approval and support for all policies
- Implement security policy lifecycle management
Ensure proper training is administered for all stakeholders related to security policies and ongoing security awareness  

Vulnerabilities, Threats, and Attacks - 30%

Identify potential vulnerabilities and threats to determine the impact on the WLAN and supporting systems and verify, mitigate, and remediate them - Use information sources to identify the latest vulnerabilities related to a WLAN including online repositories containing CVEs
- Determine the risk and impact of identified vulnerabilities
- Select appropriate actions to mitigate threats exposed by vulnerabilities
Review and adjust device configurations to ensure conformance with security policy
Implement appropriate code modifications, patches and upgrades
Quarantine unrepaired/compromised systems
Examine logs and network traffic where applicable
- Describe and detect possible, common WLAN attacks including eavesdropping, man-inthe-middle, cracking, phishing, and social engineering attacks
- Implement penetration testing procedures to identify weaknesses in the WLAN
Use appropriate penetration testing processes including scope definition, information gathering, scanning, attack, and documentation procedures
Select and use penetration testing tools including project documentation, scanners, hardware tools, Kali Linux, protocol analyzers, WLAN auditing tools (software and hardware)
- Implement network monitoring to identify attacks and potential vulnerabilities
Use appropriate tools for network monitoring including centralized monitoring, distributed monitoring, and Security Information Event Management (SIEM) systems
Implement mobile (temporary), integrated and overlay WIPS solutions to monitor security events
Describe and perform risk analysis and risk mitigation procedures - Asset management
- Risk Ratings
- Loss expectancy calculations
- Develop risk management plans for WLANs

WLAN Security Design and Architecture - 45%

Select the appropriate security solution for a given implementation and ensure it is installed and configured according to policy requirements

- Select and implement appropriate authentication solutions
WPA/WPA2-Personal (Pre-Shared Key)
WPA/WPA2-Enterprise
WPA3-SAE and 192-Bit enterprise security
802.1X/EAP
Understand the capabilities of EAP methods including EAP-TLS, EAP-TTLS, PEAP, EAP-FAST, EAP-SIM, and EAP-GTC
Guest access authentication
- Select and implement appropriate encryption solutions
Encryption methods and concepts
TKIP/RC4
CCMP/AES
SAE and 192-bit security
OWE
Virtual Private Network (VPN)
- Select and implement wireless monitoring solutions
Wireless Intrusion Prevention System (WIPS) - overlay and integrated
Laptop-based monitoring with protocol and spectrum analyzers
- Understand and explain 802.11 Authentication and Key Management (AKM) components and processes
Encryption keys and key hierarchies
Handshakes and exchanges (4-way, SAE, OWE)
Pre-shared keys
Pre-RSNA security (WEP and 802.11 Shared Key authentication)
TSN security
RSN security
WPA, WPA2, and WPA3

Implement or recommend appropriate wired security configurations to support the WLAN - Physical port security in Ethernet switches
- Network segmentation, VLANs, and layered security solutions
- Tunneling protocols and connections
- Access Control Lists (ACLs)
- Firewalls
Implement authentication and security services - Role-Based Access Control (RBAC)
- Certificate Authorities (CAs)
- AAA Servers
- Client onboarding
- Network Access Control (NAC)
- BYOD and MDM
Implement secure transitioning (roaming) solutions - 802.11r Fast BSS Transition (FT)
- Opportunistic Key Caching (OKC)
- Pre-Shared Key (PSK) - standard and per-user
Secure public access and/or open networks - Guest access
- Peer-to-peer connectivity
- Captive portals
- Hotspot 2.0/Passpoint
Implement preventative measures required for common vulnerabilities associated with wireless infrastructure devices and avoid weak security solutions - Weak/default passwords
- Misconfiguration
- Firmware/software updates
- HTTP-based administration interface access
- Telnet-based administration interface access
- Older SNMP protocols such as SNMPv1 and SNMPv2

Security Lifecycle Management - 15%

Understand and implement management within the security lifecycle of identify, assess, protect, and monitor - Identify technologies being introduced to the WLAN
- Assess security requirements for new technologies
- Implement appropriate protective measures for new technologies and validate the security of the measures
- Monitor and audit the new technologies for security compliance (Security Information Event Management (SIEM), portable audits, intrastructure-based audits, WIPS/WIDS)
Use effective change management procedures including documentation, approval, and notifications  
Use information from monitoring solutions for load observation and forecasting of future requirements to comply with security policy  
Implement appropriate maintenance procedures including license management, sofware/code upgrades, and configuration management  
Implement effective auditing procedures to perform audits, analyze results, and generate reports - User interviews
- Vulnerability scans
- Reviewing access controls
- Penetration testing
- System log analysis
- Report findings to management and support professionals as appropriate

CWNP CWSP Exam Description:

The CWSP certification is a professional level wireless LAN certification for the CWNP Program. To earn a CWSP certification, you must hold a current and valid CWNA credential. You must take the CWSP exam at a Pearson Vue Testing Center and pass with a 70% or higher. Instructors must pass with a 80% or higher. However you choose to prepare for the CWSP exam, you should start with the exam objectives, which cover the full list of skills tested on the exam.

Rating: 4.9 / 5 (45 votes)