General Security Concepts

Part of the CompTIA Security+ SY0-701 Study Guide

This section covers Exam Objective 1 of the CompTIA Security+ SY0-701 exam. It focuses on the foundational principles of cybersecurity, including security control types, the CIA triad, AAA, and security frameworks.

🧱 Security Control Types

Security controls are measures implemented to protect systems, data, and users. They are categorized into six types:

🔐 CIA Triad & AAA

The CIA triad is a fundamental model in cybersecurity, representing the three core principles:

AAA: Authentication, Authorization, and Accounting are essential for access control:

🏗️ Frameworks and Models

Security frameworks provide guidelines for implementing and managing cybersecurity programs. Key frameworks include:

Zero Trust Architecture: A security model that assumes no user or device is trusted by default, even if inside the network perimeter.

🔒 Roles & Responsibilities

Understanding roles and responsibilities is critical for implementing effective security measures:

🏢 Physical Security & Deception

Physical security measures protect facilities and equipment from unauthorized access. Examples include:

📚 Additional Resources

Explore more resources to prepare for the Security+ exam: