CompTIA Security+ SY0-701 Study Buddy Update

admin

This week has been another deep dive into my CompTIA Security+ journey, and I’m making progress, slowly but surely! With access to the CompTIA study lab, I’ve been tackling the course head-on, learning more about cybersecurity controls, threats, and attack types.

Study Buddy Session Recap.

Last night, I joined another weekly two-hour study buddy session, and we covered a lot! The main focus was on threat types and security controls, particularly in the realm of social engineering threats. Here’s a quick rundown of what we worked through:

Security Controls & Categories We reviewed how security measures fit into different categories:

  • Preventative (stopping threats before they happen)
  • Deterrent (discouraging attacks)
  • Detective (identifying threats)
  • Directive (policies and procedures to guide security practices)
  • Corrective (fixing issues after detection)
  • Compensating (alternative measures to improve security)
  • Performance-Based Questions (PDQs) – We analysed real-world attack scenarios, such as phishing emails, and had to determine:
    • What type of attack it was
    • What security controls should have been in place
    • How to mitigate similar threats in the future
  • CompTIA Lab on Social Engineering – Hands-on practice with different social engineering tactics and security measures to counteract them.

One of the biggest challenges was categorizing attack types—many threats fall into multiple security control categories, making it tough to decide the best response. Logical thinking is key here, and I’m getting better at weighing different security approaches.

Key Takeaways

  • Physical Controls: Barriers, fences, security guards.
  • Technical Controls: Firewalls, antivirus, intrusion detection systems.
  • Managerial Controls: Policies, risk assessments, and best practices.
  • Operational Controls: Security awareness training, posters, and incident response plans

This course is no joke. It’s challenging, it’s technical, and it’s forcing me to think like a security professional—but I’m loving every second of it. Cybersecurity isn’t just about memorizing terms; it’s about applying knowledge to real-world situations and making informed decisions.

Looking forward to next week’s study session and diving even deeper into the world of security. Onward and upward!

Stumbling through cybersecurity, because knowledge is power… once I figure it out!

Related Posts

Leave a Reply

Your email address will not be published. Required fields are marked *