Certified Security+

Home - Terms and Definitions - Briefings - Founder and History

Certified Security+

A Learning Management System (LMS) is a Web-based technology used for the administration, documentation, tracking, and reporting of training programs, classroom and online events, e-learning programs, and training content.

Areas tested during Security+ exam.
Systems Security -Differentiate among various systems security threats. --Privilege escalation --Virus --Worm --Trojan --Spyware --Spam --Adware --Rootkits --Botnets --Logic bomb -Explain the security risks pertaining to system hardware and peripherals. --BIOS --USB devices --Cell phones --Removable storage --Network attached storage -Implement OS hardening practices and procedures to achieve workstation and server security. --Hot fixes --Service packs --Patches --Patch management --Group policies --Security templates --Configuration baselines -Carry out the appropriate procedures to establish application security. -- ActiveX -- Java --Scripting --Browser -- Buffer overflows --Cookies --SMTP open relays --Instant messaging --P2P --Input validation --Cross-site scripting (XSS) -I mplement security applications. --HIDS --Personal software firewalls --Antivirus --Anti-spam --Popup blockers -Explain the purpose and application of virtualization technology.
Network Infrastructure Differentiate between the different ports & protocols, their respective threats and mitigation techniques. Antiquated protocols
TCP/IP hijacking
Null sessions
Spoofing
Man-in-the-middle
Replay
DoS
DDoS
Domain Name Kiting
DNS poisoning
ARP Poisoning
Distinguish between network design elements and components. DMZ
VLAN
NAT
Network interconnections
NAC
Introductionxxxi Subnetting
Telephony
2.3 etermine the appropriate use of network security tools to facilitate network security. D NIDS
NIPS
Firewalls
Proxy servers
Honeypot
Internet content filters
Protocol analyzers
2.4 pply the appropriate network tools to facilitate network security. A NIDS
Firewalls
Proxy servers
Internet content filters
Protocol analyzers
2.5 xplain the vulnerabilities and mitigations associated with network devices. E Privilege escalation
Weak passwords
Back doors
Default accounts
DoS
2.6 xplain the vulnerabilities and mitigations associated with various transmission media. E Vampire taps
2.7 xplain the vulnerabilities and implement mitigations associated with wireless E networking. Data emanation
War driving
SSID broadcast
Blue jacking
Bluesnarfing
Rogue access points
Weak encryption

Access Control Access Control 3.1 dentify and apply industry best practices for access control methods. I Implicit deny
Least privilege
Separation of duties
Job rotation
3.2 xplain common access control models and the differences between each. E MAC
DAC
Role & Rule based access control
3.3 rganize users and computers into appropriate security groups and roles while distin- O guishing between appropriate rights and privileges. 3.4 pply appropriate security controls to file and print resources. A 3.5 ompare and implement logical access control methods. C ACL
Group policies
Password policy
Domain password policy
User names and passwords
Time of day restrictions
Account expiration
Logical tokens
Summarize the various authentication models and identify the components of each. One, two and three-factor authentication
Single sign-on
Deploy various authentication models and identify the components of each. D Biometric reader
RADIUS
RAS
LDAP
Remote access policies
Remote authentication
VPN
Kerberos
Introduction xxxiii CHAP
PAP
Mutual
802.1x
TACACS
Explain the difference between identification and authentication (identity proofing). Explain and apply physical access security methods. Physical access logs/lists
Hardware locks
Physical access control—ID badges
Door access systems
Man-trap
Physical tokens
Video surveillance—camera types and positioning

Assessments & Audits Conduct risk assessments and implement risk mitigation. Carry out vulnerability assessments using common tools. Port scanners
Vulnerability scanners
Protocol analyzers
OVAL
Password crackers
Network mappers
Within the realm of vulnerability assessments, explain the proper use of penetration testing versus vulnerability scanning. Use monitoring tools on systems and networks, and detect security-related anomalies. Performance monitor
Systems monitor
Performance baseline
Protocol analyzers
Compare and contrast various types of monitoring methodologies. Behavior-based
Signature-based
Anomaly-based
xxxivIntroduction Executer proper logging procedures and evaluate the results. Security application
DNS
System
Performance
Access
Firewall
Antivirus
Conduct periodic audits of system security settings. User access and rights review
Storage and retention policies
Group policies

Cryptography Explain general cryptography concepts. Key management
Steganography
Symmetric key
Asymmetric key
Confidentiality
Integrity and availability
Non-repudiation
Comparative strength of algorithms
Digital signatures
Whole disk encryption
Trusted Platform Module (TPM)
Single vs. Dual sided certificates
Use of proven technologies
Explain basic hashing concepts and map various algorithms to appropriate applications. SHA
MD5
LANMAN
NTLM
Explain basic encryption concepts and map various algorithms to appropriate applications. DES
3DES
RSA
PGP
Elliptic curve
AES
AES256
One time pad
Transmission encryption (WEP TKIP, and so forth)
Explain and implement protocols. SSL/TLS
S/MIME
PPTP
HTTP vs. HTTPS vs. SHTTP
L2TP
IPSEC
SSH
Explain core concepts of public key cryptography. Public Key Infrastructure (PKI)
Recovery agent
Public key
Private keys
Certificate Authority (CA)
Registration
Key escrow
Certificate Revocation List (CRL)
Trust models
Implement PKI and certificate management. Public Key Infrastructure (PKI)
Recovery agent
Public key
Private keys
Certificate Authority (CA)
Registration
Key escrow
Certificate Revocation List (CRL)

Organizational Security Explain redundancy planning and its components. Hot site
Cold site
Warm site
Backup generator
Single point of failure
RAID
Spare parts
Redundant servers
Redundant ISP
UPS
Redundant connections
Implement disaster recovery procedures. I Planning
Disaster exercises
Backup techniques and practices—storage
Schemes
Restoration
Differentiate between and execute appropriate incident response procedures. Forensics
Chain of custody
First responders
Damage and loss control
Reporting—disclosure of
Identify and explain applicable legislation and organizational policies. Secure disposal of computers
Acceptable use policies
Password complexity
Introduction xxxvii Change management
Classification of information
Mandatory vacations
Personally Identifiable Information (PII)
Due care
Due diligence
Due process
SLA
Security-related HR policy
User education and awareness training
Explain the importance of environmental controls. Fire suppression
HVAC
Shielding
Explain the concept of and how to reduce the risks of social engineering. Phishing
Hoaxes
Shoulder surfing
Dumpster diving
User education and awareness training

Professional Certifications:
CompTIA - Security+
EC-Council - Certified Ethical Hacker (CEH)
(ISC)2 - Certified Information Systems Security Professional (CISSP)
(ISC)2 - Certified Authorization Professional (CAP)

Volunteer and Community Involvement:
OWASP Denver Chapter Board Member - Outreach and Education.
(ISC)2 Safe and Secure Online Volunteers

Contact Information:
Phone: 720-253-3854
VoIP/IP-Telephony/Video Conference: sip:aquilabusiness@ekiga.net
Email: Aquila Business Services, LLC
Office Address: 11292 E. Virginia Place, Aurora, CO 80012

Aquila In the News...

15Dec11
New Summary Briefing for NIST NICE Workforce Framework Publication.
Press Release: Online Here

28Nov11
Aquila releases IT Security Federal Guidance and Compliance Briefings.
Press Release: Online Here

27Nov11
Aquila provides Internet Safety Presentaions for your organization.
Press Release: Online Here

26Nov11
James Synovec - CIO, is speaking at the CISO Executive Summit 2011 in Las Vegas Dec 5-6.
Press Release: Online Here