CompTIA CYSA+ CS0-002 – Non-technical Data and Privacy Controls Part 3

5. Data Retention (OBJ 5.1) Data retention. In this lesson, we are going to talk about data retention. When we talk about data retention, it’s really just talking about a set of policies, procedures, and tools for managing the storage of persistent data. Essentially, think about, how long should I keep this thing? Now, as… Read More »

CompTIA CYSA+ CS0-002 – Non-technical Data and Privacy Controls Part 2

3. Legal Requirements (OBJ 5.1) Legal requirements. In this lesson, we’re going to talk about some of the legal requirements around privacy. Now, any type of information or asset needs to consider how a compromise of that information can threaten the three core security attributes of the CIA triad confidentiality, integrity, and availability. And I… Read More »

CompTIA CYSA+ CS0-002 – Non-technical Data and Privacy Controls Part 1

1. Data Classification (OBJ 5.1) Data classification. In this lesson, we’re going to explore the world of data classification. And this all comes as part of data governance. When we talk about data governance, this is the process of managing information over its life cycle, from creation to destruction. So as we start thinking about… Read More »

CompTIA CYSA+ CS0-002 – Specialized Technology Part 3

6. Premise System Vulnerabilities (OBJ 1.5) Premise system vulnerabilities. In this lesson we are going to talk about premise systems. Now, what is a premise system? Well, a premise system is a system used for building automation and physical access security. And these are a different type of network as well. Oftentimes you’ll have this… Read More »

CompTIA CYSA+ CS0-002 – Specialized Technology Part 2

4. ICS & SCADA Vulnerabilities (OBJ 1.5) ICS and SCADA vulnerabilities. So at this point we’ve talked about a couple of pieces inside embedded systems and a lot of these things are going to be put together into an ICS or SCADA network. Now before we dive into that, let me first take a step… Read More »

CompTIA CYSA+ CS0-002 – Specialized Technology Part 1

1. Mobile Vulnerabilities (OBJ 1.5) Mobile vulnerabilities. In this lesson we’re going to start talking about mobile vulnerabilities. Now, as you look around the workforce these days, you cannot go within a couple of minutes without seeing somebody on their smartphone or on their tablet or on some other kind of mobile device, maybe a… Read More »

CompTIA CYSA+ CS0-002 – Hardware Assurance Best Practices

1. Supply Chain Assessment (OBJ 5.2) Supply chain assessment. In this lesson we’re going to talk about supply chain assessment and why it’s so important. When you think about supply chain assessment and more largely supply chain management, you have to think about all the components that go into a particular product. So for example,… Read More »

CompTIA CYSA+ CS0-002 – Network Architecture and Segmentation Part 4

7. Honeypots (OBJ 2.1) Honey Pots. In this lesson, we’re going to start talking about Honey Pots and active defense. Honey Pots are probably the most well known form of active defense, although there are several other types. Now, when we talk about defense, you probably have heard the old saying, the best defense is… Read More »

CompTIA CYSA+ CS0-002 – Network Architecture and Segmentation Part 3

5. Virtualization (OBJ 2.1) Virtualization. In this lesson we’re going to talk a little bit about virtualization. Now, I’m not going to go and rehash everything you learned in a plus or security plus about virtualization. I assume you already remember that. But I’m going to cover some of the highlights and then we’re going… Read More »

CompTIA CYSA+ CS0-002 – Network Architecture and Segmentation Part 2

3. Segmentation (OBJ 2.1) Segmentation. In this lesson we’re going to talk about one major architectural design strategy that you can use. It’s called segmentation. Now, segmentation involves taking all of your different parts of your network and then separating them up into different zones or different networks or subnetworks. For instance, here I have… Read More »