Testbusters.net
  Testbusters.net
Get SY0-101 Certified!
Free  support
    Test Questions
 640-811
  Test 3
  Test 22
  Test 11
Home  
Guarantee  
About Us  
FAQ  
Purchase
Products     Microsoft®    CompTIA®    Cisco®    Subnetting Made Easy
Free Tutorials
   220-301
   220-302
   N10-003
   SYO-101
Test Guides
   220-301
   220-302
   N10-003
   SY0-101
   640-801
   640-821
   640-811
   Subnetting
   70-210
   70-216
   70-218
   70-270
Download Free
Test Questions
   220-301
   N10-003
   Subnetting
   640-801
   70-216
   70-218
Security+ (SY0-101) Test Objectives
DOMAIN 5.0: Operational/Organizational Security

5.1 Understand the application of the following concepts of physical security

  • Access Control
  • Physical Barriers
  • Biometrics
  • Social Engineering
  • Environment
  • Wireless Cells
  • Location
  • Shielding
  • Fire Suppression

    5.2 Understand the security implications of the following topics of disaster recovery

  • Backups
  • Off Site Storage
  • Secure Recovery
  • Alternate Sites
  • Disaster Recovery Plan

    5.3 Understand the security implications of the following topics of business continuity

  • Utilities
  • High Availability / Fault Tolerance
  • Backups

    5.4 Understand the concepts and uses of the following types of policies and procedures

  • Security Policy
  • Acceptable Use
  • Care
  • Privacy
  • Separation of Duties
  • Need to Know
  • Password Management
  • SLAs (Service Level Agreements)
  • Disposal / Destruction
  • HR (Human Resources) Policy
  • Termination (Adding and revoking passwords and privileges, etc.)
  • Hiring (Adding and revoking passwords and privileges, etc.)
  • Code of Ethics
  • Incident Response Policy

    5.5 Explain the following concepts of privilege management

  • User / Group / Role Management
  • Single Sign-on
  • Centralized vs. Decentralized
  • Auditing (Privilege, Usage, Escalation)
  • MAC / DAC / RBAC (Mandatory Access Control / Discretionary Access Control / Role Based Access Control)

    5.6 Understand the concepts of the following topics of forensics

  • Chain of Custody
  • Preservation of Evidence
  • Collection of Evidence

    5.7 Understand and be able to explain the following concepts of risk identification

  • Asset Identification
  • Risk Assessment
  • Identification
  • Vulnerabilities

    5.8 Understand the security relevance of the education and training of end users, executives and human resources Communication

  • User Awareness
  • Education
  • On-line Resources 5.9 Understand and explain the following documentation concepts
  • Standards and Guidelines
  • Systems Architecture
  • Change Documentation
  • Logs and Inventories
  • Classification
  • Notification
  • Retention / Storage
  • Destruction

    DOMAIN 1.0: Communication Security
    DOMAIN 2.0: Communication Security
    DOMAIN 3.0: Infrastructure Security
    DOMAIN 4.0: Basics of Cryptography

    Copyright ©2002-2008 Testbusters.net. All Rights Reserved.
    Testbusters.net is not sponsored, endorsed or affiliated by any associated vendor.
    Associated venders include, but are not limited to, Microsoft®, Cisco®, CompTIA®, Novell® etc.