Professor Messer’s Security+ Success Bundle: Have you watched my CompTIA Security+ videos, but you’d like a downloadable version that includes Course Notes and Practice Exams? You can find all of this and more in my Security+ Success Bundle. How well do you know your Security+ exam objectives? Follow along with our Q&A in this replay […]
Professor Messer’s SY0-601 Security+ Study Group – December 2023 Read More »
User training can involve employees, management, third-parties, and other business parties. In this video, you’ll learn about training methods, security education, and more. << Previous Video: Security Awareness Next Video: Security+ Training Course Index >> It’s a good best practice to provide security training for your users, and ideally, you would want to give them
It’s important to involve everyone in the organization when discussing security awareness. In this video, you’ll learn about phishing campaigns, anomalous behavior recognition, reporting options, and more. << Previous Video: Penetration Tests Next Video: User Training >> So let’s say you’re working for a company, and you’re wondering, how many employees would click a phishing
Security Awareness – CompTIA Security+ SY0-701 – 5.6 Read More »
Many audits use penetration tests to gather information about a company’s security posture. In this video, you’ll learn about pentesting perspectives, reconnaissance techniques, and more. << Previous Video: Audits and Assessments Next Video: Security Awareness >> We often think of penetration testing as something that’s done over the internet in a digital form. But physical
Penetration Tests – CompTIA Security+ SY0-701 – 5.5 Read More »
There are many good reasons to perform ongoing technology audits. In this video, you’ll learn about internal audits, external audits, and more. << Previous Video: Privacy Next Video: Penetration Tests >> The term “audit” often has a negative connotation, but there can be very good reasons for running an audit, especially in the context of
Audits and Assessments – CompTIA Security+ SY0-701 – 5.5 Read More »
There are many laws and guidelines associated with the data collected by an organization. In this video, you’ll learn about legal implications associated with privacy, data responsibilities, and data inventory and retention. << Previous Video: Compliance Next Video: Audits and Assessments >> Our organizations collect a massive amount of data. And there are privacy laws
Many organizations must meet a specific standard of laws, policies, and regulations. In this video, you’ll learn about regulatory compliance, reputational damage, compliance monitoring, and more. << Previous Video: Agreement Types Next Video: Privacy >> Compliance is the process of meeting a series of standards. These standards may be created by regulations or laws, or
Contracts and agreements are an important part of risk management. In this video, you’ll learn about service level agreements, memorandums of understanding, non-disclosure agreements, and more. << Previous Video: Third-party Risk Assessment Next Video: Compliance >> If you’re working with a service provider, you may want to set certain requirements for uptime or availability. And
Agreement Types – CompTIA Security+ SY0-701 – 5.3 Read More »
It’s often necessary to work with third-parties to mitigate risk. In this video, you’ll learn about right-to-audit clauses, supply chain analysis, vendor monitoring, and more. << Previous Video: Business Impact Analysis Next Video: Agreement Types >> Every organization works with vendors of some kind. These might be an organization that provides payroll services. You might
Third-party Risk Assessment – CompTIA Security+ SY0-701 – 5.3 Read More »
