Posts

Showing posts from December, 2024

Cybersecurity and Networking Terms (ABC)

Image
Terms you need to know 3-leg perimeter A type of DMZ where a firewall has three legs that connect to the LAN, the Internet, and the DMZ. 10 tape rotation A backup rotation scheme in which ten backup tapes are used over the course of two weeks. 802.1X An authentication technology used to connect devices to a LAN or WLAN. It is an example of port‐based network access control (NAC). Acceptable use Often defined as a policy, acceptable use defines the rulesthat restrict how a computer, network, or other system may be used. Access control list (ACL) A list of permissions attached to an object. ACLsspecify whatlevel of access a  user, users, or groups have to an object. When dealing with firewalls, an ACL is a set of rules that applies  to a list of network names, IP addresses, and port numbers. Access control model Specifies methodologies by which admission to physical areas and,more importantly, computer systems, is managed and organized. Access control mechanism  Securi...

CompTIA Security+ DOMAIN: (General Security Concepts)

Image
 Analyze and differentiate between the various types of security controls. • Categories of Security Controls: - Technical: These are controls implemented through technology. They include hardware, software, or firmware components built into information systems. Examples include firewalls, antivirus software, and encryption. Technical controls are automated and rely on technology to enforce security measures. - Managerial: These controls focus on overall risk management and the administration of cybersecurity systems. They involve policies, procedures, and practices that guide the organization's security posture. Examples include risk assessments, security planning, and resource allocation for security initiatives. - Operational: These are controls implemented and executed primarily by people rather than systems. They involve day-to-day security practices and procedures carried out by staff. Examples include security awareness training, physical patrols, and manual log reviews. - Ph...

CompTIA Security+

Image
  Conquer the CompTIA Security+ Exam: A Deep Dive into General Security Concepts The world of cybersecurity is ever-evolving. With the rise of technology, understanding general security concepts is crucial for any professional in this field. This guide will explore the key elements of the CompTIA Security+ exam, with a focus on general security concepts. The Growing Need for Cybersecurity Professionals Cyber threats are increasing daily, creating a high demand for skilled security professionals. Companies face cyberattacks that can lead to significant losses and repercussions. As a result, those with a solid understanding of security principles become invaluable assets to organizations. The Importance of a Strong Foundation in Security+ Having a strong base in security concepts is essential. The CompTIA Security+ exam tests knowledge in several areas. A good grasp of these concepts not only helps in passing the exam but also equips individuals with the skills needed to protec...