Subscribe to the TST RSS Feed

RSS Feed

    Subscribe to Train Signal Training via RSS

    get real-time updates   •   more info

RSS by Email

    Or Subscribe via Email

    no spam   •   more info

My First IT Certification! Part 10: CompTIA A+

Posted on October 19th, 2007 by Kasia Grabowska No Comments »

Kasia_headshot_reflection3.jpg

The Importance of Security

Computer and network security is as important today as ever. Over the years it has continued to be a significant issue and an essential part of business and computer use in general.

CompTIA actually offers a certification that validates advanced knowledge of security infrastructures and concepts. Aptly labeled CompTIA Security+, the certification is a valuable credential that can offer numerous opportunities in an area that has huge demand.

Security is also a part of the CompTIA A+ training, covering issues such as physical security, wireless security, encryption, authentication, firewalls, anti-virus, anti-spyware, patches, and other related issues. Video 11 of Train Signal’s CompTIA A+ course is an introduction to security issues that gives a general overview of the topic (more on security is coming up later in the course). The objectives covered include:

  • 6.1 Identify the fundamental principles of security
  • 6.2 Install, configure, upgrade, and optimize security
  • 6.3 Identify tool, diagnostic procedures and troubleshooting techniques for security
  • 6.4 Perform preventative maintenance for computer security

David Davis, the instructor, provides the details on the most common security threats and how to avoid them. He also talks about the Security Policy and the Security Wheel, both of which are important concepts to be familiar with, whether you’re studying for a certification or just working with computers.

What I found really interesting though, was the information on Phishing and Social Engineering, both of which I was not familiar with. Social Engineering is basically acquiring information or access to information by talking to someone and tricking them into giving the information to you. For example, calling the IT department and pretending to be someone else only to trick the person into giving you information or access to that information. Phishing is a form of Social Engineering, but instead of talking to someone, a fraudulent email or a web page is used to get the information for improper use.

After a little bit of research, I found that there are several other Social Engineering techniques that are used to manipulate people into either giving away information or giving access to information. Most of these techniques are widely used to get personal information, such as Social Security numbers, bank information and even PIN numbers.

The most disturbing thing I found was the fact that these methods are easier and more effective than hacking. Even the CompTIA site states that “human error is the number one cause for a network security breach.” No wonder the field of information security is becoming so popular!

If you’re intersted in security issues, check out these articles for more information:



 

Related Posts:

Tags: , , , , , , , , ,

Leave A Comment: