

Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
SBOLC SEC+ EXAM STUDY GUIDE 2026
Typology: Exams
1 / 3
This page cannot be seen from the preview
Don't miss anything!


CIA triad - Answers- Confidentiality, Integrity, Availability Confidentiality - Answers- Ensuring that information is view-able only by authorized users (encryption) Integrity - Answers- Ensures information remains accurate and complete over its entire lifetime (Hashing) Availability - Answers- ensures that information is always available to authorized users ( Load balancing, redundancy , high availability 99.99%) High Availibilty - Answers- 99.99% 5 minutes of down time a year Risk - Answers- a chance of harm coming to an asset true positive - Answers- A problem occurred, and the analysis recognized it. This is a good result: even if the problem itself is bad, it was recognized and can be addressed. True negative - Answers- The event was benign, and triggered no alerts. This is a good result, since everything is quietly working properly. false positive - Answers- The event was benign, but the analysis mistook it for a problem. This is bad: frequent false alarms can disrupt routine functions, cost administrators time, or just make people less alert when a real attack happens. false negative - Answers- problem occurred, and the analysis mistook it for benign behavior. This is potentially disastrous, since security could be compromised without anyone knowing. SECURITY CONTROLS (4) - Answers- Tools and measures used to achieve security: Administrative Technical Operational Physical Administrative - Answers- Represent organizational policies and training regarding security. I.E Procedure Managment Technical - Answers- Technological solutions used to enforce security
Operational - Answers- Day‐to‐day employee activities that are used to achieve security goals threat - Answers- anything that can cause harm to assest Vulnerability - Answers- any weakness the assets has against potential threats Event - Answers- any meaningful change in a system's state that is both detectable and happened at a specific me Incident - Answers- an event or series of events that is unexpected, unusual, and that poses some meaningful threat to the system's functions, performance, or security Alert - Answers- a signal that an event is an incident, whether it's from a user observation of something wrong, or an automated report from a security system. Physical - Answers- Methods used to guarantee the physical security and safety of organizational assets HTTP Normal Port - Answers- 80 LDAP Normal Port - Answers- 389 FTP Normal Port - Answers- 20/ Telnet Normal Port - Answers- 23 IMAP Normal Port - Answers- 143 SMTP Normal Port - Answers- 25 POP3 - Answers- 110 HTTP Encrypted Port - Answers- https 443 LDAP Encrypted Port - Answers- 636 FTP Encrypted Port - Answers- 989/ Telnet Encrypted Port - Answers- 992 IMAP Encrypted Port - Answers- 93 SMTP Encrypted Port - Answers- 465