Security Plus Prep - RuhDel/Learning_Journal GitHub Wiki

Introduction (0.1)

How to pass your SY0-701 Security+ Exam

  • CompTIA stands for the Computing Technology Industry Association
  • It is the largest provider of vendor-neutral IT certifications.
  • Members include:
    • IT Resellers
    • IT Distributors
    • IT Manufacturers
    • IT Training Centers.
  • The exam is 90 minutes long and you can get a maximum of 90 questions.
  • The passing score: 750 on a scale of 100-900
  • There are 5 areas of focus (Domains)
    • 1.0 - General Security Concepts - 12%
    • 2.0 - Threats, Vulnerabilities, and Mitigations - 22%
    • 3.0 - Security Architecture - 18%
    • 4.0 - Security Operations - 28%
    • 5.0 - Security Program Management and Oversight - 20%
    • Total - 100%
  • Majority of questions will be multiple choice, but there may be questions that involve matching, drag-n-drop, or some other type of format questions classified as Performance-based questions.

๐Ÿ›ก๏ธ Security Controls: Types & Categories (1.1)

๐Ÿ“… Last Updated: June 4, 2025

โœ…Summary of control categories and types used in IT security for the Security+ exam or real-world application.

๐Ÿ”ง Control Categories

  • Technical - Controls implemented through technology: firewalls, system configs, AV
  • Managerial - Policies, procedures, and documentation that govern operations
  • Operational - Controls enforced by people: awareness training, guards, patrols
  • Physical - Tangible barriers: fences, locks, guard shacks, badge readers

๐Ÿงฉ Control Types

Preventive โ€“ Stops events before they occur

  • ๐Ÿ”ง Technical: Firewall rule
  • ๐Ÿง‘โ€๐Ÿ’ผ Managerial: Hiring/onboarding policy
  • ๐Ÿ‘ฎ Operational: Guard shack checking IDs
  • ๐Ÿ”’ Physical: Door locks

Deterrent โ€“ Discourages attackers without directly stopping them

  • ๐Ÿ’ป Technical: Splash screen warning
  • โš ๏ธ Managerial: Threat of demotion
  • ๐Ÿ’ Operational: Receptionist desk
  • ๐Ÿšซ Physical: Warning signs

Detective โ€“ Identifies and alerts on active incidents

  • ๐Ÿ“œ Technical: Log collection and alerts
  • ๐Ÿ“Š Managerial: Periodic report reviews
  • ๐Ÿšถ Operational: Property patrols
  • ๐Ÿ•ต๏ธ Physical: Motion detectors

Corrective โ€“ Mitigates impact after an incident

  • ๐Ÿ’พ Technical: Restore from backup
  • ๐Ÿ›Ž๏ธ Managerial: Issue reporting policy
  • ๐Ÿ“ž Operational: Contacting law enforcement
  • ๐Ÿงฏ Physical: Fire extinguishers

Compensating โ€“ Temporary workaround for insufficient controls

  • ๐Ÿ›ก๏ธ Technical: Firewall block in place of patch
  • ๐Ÿ“‚ Managerial: Separation of duties
  • ๐Ÿ‘ฅ Operational: Multiple guards on shift
  • โšก Physical: Power generator

Directive โ€“ Guides secure behavior; relies on compliance

  • ๐Ÿ” Technical: Encrypted folder use policy
  • ๐Ÿ“˜ Managerial: Compliance documentation
  • ๐Ÿ‘จโ€๐Ÿซ Operational: Security awareness training
  • ๐Ÿ“ Physical: 'Authorized Personnel Only' sign

๐Ÿง  Final Notes

  • Controls may overlap categories depending on implementation.
  • Real-world organizations mix these depending on threat models.
  • Control effectiveness evolves with technology and user behavior.