CompTIA Security+ S0Y-701

0.0(0)
Studied by 0 people
call kaiCall Kai
Locked
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
GameKnowt Play
Card Sorting

1/332

encourage image

There's no tags or description

Looks like no tags are added yet.

Last updated 7:26 PM on 7/17/26
Name
Mastery
Learn
Test
Matching
Spaced
Call with Kai
Chat

No analytics yet

Send a link to your students to track their progress

333 Terms

1
New cards

Information Security

Act of protecting data and information from unauthorized access, unlawful modification and disruption, disclosure, and corruption, and destruction

2
New cards

Information Systems Security

Act of protecting the systems that hold and process the critical data

3
New cards

Confidentiality, Integrity, Availability

CIA Triad

4
New cards

Confidentiality

Ensures that information is only accessible to those with the appropriate authorization

5
New cards

Integrity

Ensures that data remains accurate and unaltered unless modification is required

6
New cards

Availabilitiy

Ensures that information and resources are accessible and functional when needed by authorized users

7
New cards

Non-repudiation

Guaranteeing that a specific action or event has taken place and cannot be denied by the parties involved

8
New cards

Authentication, Authorization, and Accounting

AAA of Security

9
New cards

Authentication

Process of verifying the identity of a user or system

10
New cards

Authorization

Defines what actions or resources a user can access

11
New cards

Accounting

Act of tracking user activities and resources usage, typically for audit or billing purposes

12
New cards

Security Controls

Measures or mechanisms put in place to mitigate risks and protect the confidentiality, integrity, and availability of information systems and data

13
New cards

Zero Trust

Security model that operates on the principle that no one, whether inside or outside the organization, should be trusted by default

14
New cards

Control Plane

Consists of the adaptive identity, threat scope reduction, policy-driven access control, and secured zones

15
New cards

Data Plane

Focused on the subject/system, policy engine, policy administrator, and establishing policy enforcement points

16
New cards

Threat

Anything that could cause harm, loss, damage, or compromise to information technology systems

17
New cards

Vulnerability

Any weakness in the system design and implementation

18
New cards

Risk Management

Finding different ways to minimize the likelihood of an outcome occurring and achieve the desired outcomes

19
New cards

Encryption

Process of converting data into code to prevent unauthorized access

20
New cards

Access Controls

Ensure only authorized personnel can access certain types of data

21
New cards

Data Masking

Method that involves obscuring data within a database to make it inaccessible for unauthorized users while retaining the real data's authenticity and user for authorized users

22
New cards

Physical Security Measures

Used to ensure confidentiality for physical types of data and for digital information contained on servers and workstations

23
New cards

Training and Awareness

Conducting regular training on the security awareness best practices that employees can use to protect the organization's sensitive data

24
New cards

Hashing

Process of converting data into a fixed-size value

25
New cards

Checksums

Method to verify the integrity of data during transmission

26
New cards

Regular Audits

Involve reviewing logs and operations to ensure that only authorized changes have been made and any discrepancies are addressed

27
New cards

Availability

Used to ensure that information, systems, and resources are accessible and operational when needed by authorized users

28
New cards

Redundancy

Duplication of critical components or functions of a system with the intention of enhancing its reliability

29
New cards

Server Redundancy

Involves using multiple servers in a load balance so that if one is overloaded or fails, the other servers can take over the load to continue supporting end users

30
New cards

Data Redundancy

Involves storing data in multiple places

31
New cards

Network Redundancy

Ensures that if one network path fails, the data can travel through another route

32
New cards

Power Redundancy

Involves using backup power sources to ensure that an organization's systems remain operational during periods of power disruption or outages within a local service area

33
New cards

Something You Know (Knowledge Factor)

Relies on information that a user can recall

34
New cards

Something You Have (Possession Factor)

Relies on the user presenting a physical item to authenticate themselves

35
New cards

Something You Are (Inherence Factor)

Relies on the user providing a unique physical or behavioral characteristic of the person to validate that they are who they claim to be

36
New cards

Something You Do (Action Factor)

Relies on the user conducting a unique action to prove who they are

37
New cards

Somewhere You Are (Location Factor)

Relies on the user being in a certain geographic location before access is granted

38
New cards

Multi-factor Authentication (MFA)

Security process that requires users to provide multiple methods of identification to verify their identity

39
New cards

Audit Trail

Provides a chronological record of all user activities that can be used to trace changes, unauthorized access, or anomalies back to a specific user or point in time

40
New cards

Regulatory Compliance

Maintains a comprehensive record of all the users' activities

41
New cards

Forensic Analysis

Uses detailed accounting and event logs that can help cybersecurity experts understand what happened, how it happened, and how to prevent similar incidents from occurring again in the future

42
New cards

Resource Optimization

Organizations can optimize system performance and minimize costs by tracking resource utilization and allocation decisions

43
New cards

User Accountability

Thorough accounting system ensures users' actions are monitored and logged, deterring potential misuse and promoting adherence to the organization's policies

44
New cards

Syslog Servers

Used to aggregate logs from various network devices and systems so that system administrators can analyze them to detect patterns or anomalies in the organization's systems

45
New cards

Network Analyzers

Used to capture and analyze network traffic to gain detailed insights into all the data moving within a network

46
New cards

Security Information and Event Management

SIEM - Provides real-time analysis of security alerts generated by various hardware and software infrastructures in an organization

47
New cards

Technical Controls

The technologies, hardware, and software mechanisms that are implemented to manage and reduce risks

48
New cards

Managerial Controls

Involve the strategic planning and governance side of security

49
New cards

Operational Controls

Procedures and measures that are designed to protect data on a day-to-day basis and are mainly governed by internal processes and human actions

50
New cards

Physical Controls

Tangible, real-world measures taken to protect assets

51
New cards

Preventive Controls

Proactive measures implemented to thwart potential security threats or breaches

52
New cards

Deterrent Controls

Aim to discourage potential attackers by making the effort seem less appealing or more challenging

53
New cards

Detective Controls

Monitor and alert organizations to malicious activities as they occur or shortly thereafter

54
New cards

Corrective Controls

Mitigate any potential damage and restore the systems to their normal state

55
New cards

Compensating Controls

Alternative measures that are implemented when primary security controls are not feasible or effective

56
New cards

Directive Controls

Often rooted in policy or documentation and set the standards for behavior within an organization

57
New cards

Adaptive Identity

Rely on real-time validation that takes into account the user's behavior, device, location, and more

58
New cards

Threat Scope Reduction

Limit the users' access to only what they need for their work tasks because this drastically reduces the network's potential attack surface

59
New cards

Policy-Driven Access Control

Entails developing, managing, and enforcing user access policies based on their roles and responsibliities

60
New cards

Secured Zones

Isolated environments within a network that are designed to house sensitive data

61
New cards

Policy Engine

Cross-references the access request with its predefined policies

62
New cards

Policy Administrator

Used to establish and manage the access policies

63
New cards

Subject/System

Refers to the individual or entity attempting to gain access

64
New cards

Policy Enforcement Point

Allow or restrict access, and it will effectively act as a gatekeeper to the sensitive areas of the systems or networks

65
New cards

Gap Analysis

Process of evaluating the differences between an organization's current performance and its desired performance

66
New cards

1: Define the scope of the analysis

First step in Gap Analysis

67
New cards

2: Gather data on the current state of the organization

Second step in Gap Analysis

68
New cards

3: Analyze the data to identify the gaps

Third step in Gap Analysis

69
New cards

4: Develop a plan to bridge the gap

Fourth step in Gap Analysis

70
New cards

Technical Gap Analysis

Involves evaluating an organization's current technical infrastructure and identifying any areas where it falls short of the technical capabilities required to fully utilize their security solutions

71
New cards

Business Gap Analysis

Involves evaluating an organization's current business processes and identifying any areas where they fall short of the capabilities required to fully utilize cloud-based solutions

72
New cards

Plan of Action and Milestones

POA&M - Outlines the specific measures to address each vulnerability, allocate resources, and set up timelines for each remediation task that is needed

73
New cards

Threat Actor

An individual or entity responsible for incidents that impact security and data protection

74
New cards

Threat Actor Attributes

Specific characteristics or properties that define and differentiate various threat actors from one another

75
New cards

Unskilled Attackers

Individuals with limited technical expertise who use readily available tools like downloaded scripts or exploits to carry out attacks

76
New cards

Hacktivists

Cyber attackers who carry out their activities driven by political, social, or environmental ideologies who often want to draw attention to a specific cause

77
New cards

Organized Crime

Well-structured groups that execute cyberattacks for financial gain, usually through methods like ransomware, identity theft, or credit card fraud

78
New cards

Nation-state Actors

Highly skilled attackers that are sponsored by governments to carry out cyber espionage, sabotage, or cyber warfare against other nation states or specific targets in a variety of industries

79
New cards

Insider Threats

Security threats that originate from within the organization

80
New cards

Shadow IT

IT systems, devices, software applications, and services that are managed and utilized without explicit organizational approval

81
New cards

Honeypots

Decoy systems or servers designed to attract and deceive potential attackers, simulating real-world IT assets to study their techniques

82
New cards

Honeynets

Creates an entire network of decoy systems to observe complex-multi-stage attacks

83
New cards

Honeyfiles

Decoy files placed within systems to detect unauthorized access or data breaches

84
New cards

Honeytokens

Fake pieces of data, like a fabricated user credential, inserted into databases or systems to alert administrators when they are accessed or used

85
New cards

Data Exfiltration

The unauthorized transfer of data from a computer

86
New cards

Financial Gain

One of the most common motivations for cybercriminals

87
New cards

Blackmail

The attacker obtains sensitive or compromising information about an individual or an organization and threatens to release this information to the public unless certain demands are met

88
New cards

Service Disruption

Often achieved by conducting a DDoS attack to overwhelm a network, service, or server with excessive amounts of traffic so that it becomes unavailable to its normal users

89
New cards

Philosophical or Political Beliefs

Individuals or groups use hacking to promote a political agenda, social change, or to protest against organizations they perceive as unethical

90
New cards

Ethical Reasons

Individuals or groups motivated by a desire to improve security

91
New cards

Revenge

An employee who is disgruntled, or one who has recently been fired or laid off, might want to harm their current or former employer by causing a data breach, disrupting services, or leaking sensitive information

92
New cards

Disruption or Chaos

These actors, often referred to as Unauthorized hackers, engage in malicious activities for the thrill of it, to challenge their skills, or simply to cause harm

93
New cards

Espionage

Involves spying on individuals, organizations, or nations to gather sensitive or classified information

94
New cards

War

Cyberattacks have increasingly become a tool for nations to attack each other both on and off the battlefield

95
New cards

Resources and Funding

Refers to the tools, skills, and personnel at the disposal of a given threat actor

96
New cards

Level of Sophistication and Capability

Refers to threat actor's technical skill, the complexity of the tools and techniques they use, and their ability to evade detection and countermeasures

97
New cards

Unskilled Attacker/Script Kiddie

An individual who lacks the technical knowledge to develop their own hacking tools or exploits

98
New cards

Website Defacement

Electronic graffiti, often treated as another form of vandalism

99
New cards

Doxing

Public release of private information about an organization or individual

100
New cards

Nation-State Actors

Groups that are sponsored by a government to conduct cyber operations against other nations, organizations, or individuals