Think Positive Cyber

Today’s study session was built around the CompTIA Security+ (SY0-701) Practice Test 2 from ExamCompass.

One key takeaway was the Zero Trust security model, which emphasizes never assuming trust and instead requires constant verification. I reviewed how the Data Plane manages policies, while the Control Plane enforces them dynamically based on context—like user identity, device posture, and network environment.

I also explored the Policy Decision Point (PDP), which evaluates access requests in real-time. Understanding how it fits into the broader Zero Trust framework helped clarify why context-aware access control is now industry standard.

Other critical topics included honeyfiles and honeytokens, which are tools for detecting unauthorized access through decoy content or credentials. I also revisited Business Impact Analysis (BIA), which evaluates how disruptions affect business operations.

Encryption methods came up in several forms:

• PKI for digital certificate management
• Key escrow and Recovery Agents for backup access
• Hardware encryption (e.g., self-encrypting drives)
• Full-disk software encryption (like BitLocker)
• EFS, for file-level encryption in Windows

Finally, I noted two outdated technologies to recognize and avoid: STARTTLS for email and SSL 2.0/3.0 for web traffic—both deprecated in favor of TLS.

I also submitted applications for roles ranging from Cyber Security Engineer to IT Specialist. Each step sharpens my understanding and gets me closer to my goal.