Chapter 6
Educating and Protecting the User
The Following CompTIA Security+ Exam Objectives Are Covered in This Chapter:
- 2.4 Explain the importance of security related awareness and training.
- Security policy training and procedures
- Personally identifiable information
- Information classification: Sensitivity of data (hard or soft)
- Data labeling, handling, and disposal
- Compliance with laws, best practices, and standards
- User habits: Password behaviors; Data handling; Clean desk policies; Prevent tailgating; Personally owned devices
- Threat awareness: New viruses; Phishing attacks; Zero days exploits
- Use of social networking and P2P
- 3.2 Analyze and differentiate among types of attacks.
- Vishing
- Malicious insider threat
- 3.3 Analyze and differentiate ...