1.0 General Security Concepts
Core security foundations: controls, basic cryptography, change management, resilience, and physical security concepts.
Use this as a starting review resource for domains, quick terms, practice questions, and existing PBQ labs. The database scripts are included so the content can grow over time.
Domain weights are from the CompTIA Security+ SY0-701 objectives document you provided. Study notes are paraphrased for classroom review.
Core security foundations: controls, basic cryptography, change management, resilience, and physical security concepts.
Threat actors, attack types, vulnerability discovery, social engineering, malware, and practical mitigation choices.
Secure enterprise design, cloud and virtualization, segmentation, data protection, resilience, and secure application concepts.
Hardening, identity and access, monitoring, vulnerability management, automation, incident response, and log analysis.
Governance, risk, compliance, policy, third-party risk, audits, privacy, and security awareness.
These connect to the existing Security+ practice pages in the training folder.
Annualized loss expectancy, commonly calculated as SLE multiplied by ARO.
Documentation that tracks evidence collection, handling, storage, and transfer.
Data loss prevention controls that detect or block unauthorized movement of sensitive data.
Endpoint detection and response tooling used to detect, investigate, and respond to endpoint activity.
Users, services, and systems receive only the permissions needed to perform the task.
Authentication using more than one factor, such as something you know, have, or are.
Moving some financial or operational risk to another party, such as through insurance or a contract.
Recovery point objective: the maximum acceptable data loss measured in time.
Answer each question, then check your work. A score of 80% marks this hub complete on this device.
1.0: Which security principle limits access to only what is required for the job?
Least privilege reduces risk by limiting unnecessary access.
2.0: A user receives a fake login page by email. What attack type is most likely?
Phishing uses deceptive messages or sites to steal credentials or trigger unsafe actions.
3.0: What design choice reduces lateral movement after one host is compromised?
Segmentation separates systems and limits how far an attacker can move.
4.0: Which tool commonly correlates firewall, endpoint, and server logs?
A SIEM centralizes and correlates security events.
5.0: Buying cyber insurance is usually which risk response?
Insurance transfers some financial impact to another party.