Sign up for free at http://convocourses.com for deeper dives.
Many more videos on https://www.youtube.com/convocourses
short videos at https://www.tiktok.com/@convocourses?lang=en
Podcast version of the content:
DISA Risk Management Executive has released the Microsoft Windows Defender Antivirus Security Technical Implementation Guide (STIG) Version 1 Release 1. The requirements of the STIG become effective immediately. The STIG is available on IASE at https://iase.disa.mil/stigs/
For all STIG related questions, please contact the DISA STIG Customer Support Desk: firstname.lastname@example.org
There are hundreds of different roles & responsibilities in the IT Security career field alone. Here are some of the common types that I have seen:
Information System Security Manager – coordinate with the system owner and the information system security officer to ensure security is on the systems.
Information System Security Officer – coordinate with management and system administrators to implement system security controls. Ensures security controls are tracked and documented.
System Administrator – applies technical functionality and security on information systems.
Architect – assists in the design of enterprise information systems.
Security Analyst – review the logs of information systems to determine if there are any malicious activities happening.
Auditors – review the information systems to make sure the security controls are applied, documented and continuously monitored.
The Comptia Security+ IT certification is a very good certification for IT professionals getting into IT security and for IT security professional that have been doing cyber security for a while. If you already have a high-level security certification (i.e. CISSP, CISM,CISA,CASP) I would say the Security+ is not necessary, because those certs already cover everything in the Security+ and more. But if you don’t have any general security certs then you should definitely get it.
What are the benefits:
It is a well known certification that lets employers know that you are more than familiar with security best practice.
Having the Security+ alone is enough to get a job or a raise in some situations.
If you are unfamiliar with all the security best practices it is a great start in getting to know an important body of knowledge.
It is 8570/8140 compliant.
For more information on the Security+: https://certification.comptia.org/certifications/security
|Launch Date||May 1, 2014|
|Exam Description||CompTIA Security+ certification covers network security, compliance and operation security, threats and vulnerabilities as well as application, data and host security. Also included are access control, identity management, and cryptography.|
|Number of Questions||Maximum of 90 questions|
|Type of Questions||Multiple choice and performance-based|
|Length of Test||90 Minutes|
|Passing Score||750 (on a scale of 100-900)|
|Recommended Experience||CompTIA Network+ and two years of experience in IT administration with a security focus|
|Languages||English, Japanese and Portuguese|
|Retirement||TBD – Usually three years after launch.|
|Price||$311.00 USD (See all pricing)|