5Exam Domains
100%Covered by Blueprint
12Starter Terms
5Quick Questions

Exam Domains

Domain weights are from the CompTIA Security+ SY0-701 objectives document you provided. Study notes are paraphrased for classroom review.

12%

1.0 General Security Concepts

Core security foundations: controls, basic cryptography, change management, resilience, and physical security concepts.

22%

2.0 Threats, Vulnerabilities, and Mitigations

Threat actors, attack types, vulnerability discovery, social engineering, malware, and practical mitigation choices.

18%

3.0 Security Architecture

Secure enterprise design, cloud and virtualization, segmentation, data protection, resilience, and secure application concepts.

28%

4.0 Security Operations

Hardening, identity and access, monitoring, vulnerability management, automation, incident response, and log analysis.

20%

5.0 Security Program Management and Oversight

Governance, risk, compliance, policy, third-party risk, audits, privacy, and security awareness.

Starter Terms

ALE

Annualized loss expectancy, commonly calculated as SLE multiplied by ARO.

Chain of custody

Documentation that tracks evidence collection, handling, storage, and transfer.

DLP

Data loss prevention controls that detect or block unauthorized movement of sensitive data.

EDR

Endpoint detection and response tooling used to detect, investigate, and respond to endpoint activity.

Least privilege

Users, services, and systems receive only the permissions needed to perform the task.

MFA

Authentication using more than one factor, such as something you know, have, or are.

Risk transfer

Moving some financial or operational risk to another party, such as through insurance or a contract.

RPO

Recovery point objective: the maximum acceptable data loss measured in time.

Quick Review Check

Answer each question, then check your work. A score of 80% marks this hub complete on this device.

1.0: Which security principle limits access to only what is required for the job?

Least privilege reduces risk by limiting unnecessary access.

2.0: A user receives a fake login page by email. What attack type is most likely?

Phishing uses deceptive messages or sites to steal credentials or trigger unsafe actions.

3.0: What design choice reduces lateral movement after one host is compromised?

Segmentation separates systems and limits how far an attacker can move.

4.0: Which tool commonly correlates firewall, endpoint, and server logs?

A SIEM centralizes and correlates security events.

5.0: Buying cyber insurance is usually which risk response?

Insurance transfers some financial impact to another party.

Instructor note: This hub is ready to use as a standalone review page with safe built-in content. Database setup files are kept out of the student-facing navigation.