LATEST POSTS

October 17, 2017

Do you really need to know every single NIST document word for word? 

Answer: No

Are NIST documents an incredible source of learning material to expand your knowledge and provide clarity for the CISSP exam? 

Answer: Yes

Do the actual study guide books and practice exam question engines use NIST documents as their references when trying to explain topics?
Answ...

March 21, 2017

There are 3 categories of Access Control and 6 subcategories.

3 Categories of Access Control 

Technical
Physical
Administrative 
 
Within these three categories are 6 sub-categories: 

Preventative 
Detective 
Deterrent
Compensating
Corrective 
Recovery

Examples

Technical Preventative : Firewall
Physical Compensating: Emergency lights
Administrative Preventive:...

December 24, 2014

You might see a lot of questions on the CISSP exam about rule-based and role-based access.

Firewalls are an example of rule-based access.

Active Directory user profiles are a form of role-based access.

Role and Rule-based controls are called Non-Discretionary controls.

8 years ago when I was just a junior systems administrator, the IT Director provisioned me...

Please reload

© 2013 Study Notes and Theory
Terms and Conditions/Privacy Policy

Proudly created to make you

a better security professional.