Study Self-Assessment

Posted by in Security+ | 0 comments

Are your study habits setting you up for success? Or failure?

Over the years, I’ve answered many emails and queries from people after they’ve failed a certification exam. As a result, I’ve noticed several key behaviors that are common in many of these queries.

These are most often associated with the Security+ exam simply because that’s my current area of expertise. However, they do translate to just about any certification exam.

You can take this short self-assessment to see if you are repeating common mistakes that have caused others to fail.

self-assessment

Get Certified Get Ahead

Do You Read Explanations?

A common theme I’ve seen is that people don’t read the explanations that are included with practice test questions. The CompTIA Security+: Get Certified Get Ahead: SY0-401 Study Guide and packages on the premium site all include explanations for the practice test questions. However, they aren’t much use if you don’t read them.

Order of Volatility Example

As an example, I often receive a repeating question related to the order of volatility. This is discussed in the study guide, and in several blogs on this site.  In short, the order of volatility is:

The order of volatility from most volatile to least volatile is:

  1. Data in RAM, including CPU cache and recently used data and applications
  2. Data in RAM, including system and network processes
  3. Swap files (also known as paging files) stored on local disk drives
  4. Data stored on local disk drives
  5. Logs stored on remote systems
  6. Archive media

Which of the previous items is the least volatile?

That should be an easy question. It’s item 6 – Archive Media. Second to last is logs stored on remote systems.

How about this:

A database server is currently under attack and you want to ensure that you are able to preserve all the data for forensic analysis. What data on the server should you collect last?

A. Hard drive

B. CPU cache

C. Remote logs

D. RAM

What’s your answer now?

CompTIA Security+ Study Guide

The 401 Version of the Study Guide

SY0-401 Study GuideThe CompTIA Security+: Get Certified Get Ahead: SY0-401 Study Guide is an update to the top-selling SY0-201 and SY0-301 study guides, which have helped thousands of readers pass the exam the first time they took it.

CompTIA Authorized Quality Content (CAQC)After a comprehensive review by ProCert Labs, the SY0-401 version has been certified as CompTIA Approved Quality Content (CAQC) and covers every aspect of the SY0-401 exam.

It includes the same elements readers raved about in the previous two versions.

Each of the eleven chapters presents topics in an easy to understand manner and includes real-world examples of security principles in action.

You’ll understand the important and relevant security topics for the Security+ exam, without being overloaded with unnecessary details. Additionally, each chapter includes a comprehensive review section to help you focus on what’s important.


Click for Free Preview


Over 400 realistic practice test questions with in-depth explanations will help you test your comprehension and readiness for the exam. The book includes:

  • A 100 question pre-test
  • A 100 question post-test
  • Practice test questions at the end of every chapter.

Each practice test question includes a detailed explanation to help you understand the content and the reasoning behind the question. You’ll be ready to take and pass the exam the first time you take it.

If you plan to pursue any of the advanced security certifications, this guide will also help you lay a solid foundation of security knowledge. Learn this material, and you’ll be a step ahead for other exams. This SY0-401 study guide is for any IT or security professional interested in advancing in their field, and a must read for anyone striving to master the basics of IT security.

Kindle edition also available.

Are you looking for SYO-501 Study Guide?

The 501 Version of the Study Guide is Now Available. Click Here.

RTFQ

It’s always important to read the full question (RTFQ).  Admittedly, when I learned this acronym in the Navy, they spelled the acronym differently (in typical Sailor language). No matter how you remember the acronym though, it is still important to read the full and complete question.

If you memorized the preceding list, you might conclude that C. Remote logs is the correct answer because it is the least volatile.

However, that is incorrect. Why?

Well, because the question is asking for something different. Specifically, it is asking”

What data on the **server** should you collect last? (emphasis added)

The Answer is in the Explanation

The explanation includes this text:

“Remote logs (or logs stored on remote systems) are not stored on the server so they are not relevant to this question. This data is less volatile than data stored on the target system. For this reason, many servers send log data to a remote system for centralized collection. Even if the server is completely destroyed, the centralized logs still have key data.”

I’ve received several queries from people telling me that the answer is marked incorrect or asking me to reconfirm the correct answer.

My answer is typically something like: “What does the explanation say? Does the explanation answer your question?”

The easy answer I could give is:

“Yes. The correct answer is correct. Here’s a cut and paste from the explanation.

“Remote logs (or logs stored on remote systems) are not stored on the server so they are not relevant to this question. This data is less volatile than data stored on the target system. For this reason, many servers send log data to a remote system for centralized collection. Even if the server is completely destroyed, the centralized logs still have key data.”

However, experience has shown me that if the person doesn’t read the explanation in this question, that person is unlikely to read the explanation in other questions. My goal instead is to help them get to the correct answer on their own by reading the full question and the explanation.

Admittedly, I sometimes fail.

But that doesn’t deter my goal of helping people learn. That doesn’t deter my goal of helping people Get Certified and Get Ahead in their lives and careers.

So, how do you fare in the Study Self-Assessment?

Full Security+ (SY0-401) Course

Full Security+ Course Now Available

Helping you Pass the First Time

Online access includes all of the content from the

CompTIA Security+: Get Certified Get Ahead: SY0-401 Study Guide

  • Introduction
  • About the exam (including types of questions and strategies for performance-based questions)
  • 100 question pre-assessment exam
  • Mastering Security Basics (full content from Chapter 1 of the study guide including the exam topic review and 20 practice test questions)
  • Exploring Control Types and Methods (full content from Chapter 2 of the study guide including the exam topic review and 20 practice test questions)
  • Understanding Basic Network Security (full content from Chapter 3 of the study guide including the exam topic review and 20 practice test questions)
  • Securing Your Network (full content from Chapter 4 of the study guide including the exam topic review and 20 practice test questions)
  • Securing Hosts and Data (full content from Chapter 5 of the study guide including the exam topic review and 20 practice test questions)
  • Understanding Malware and Social Engineering (full content from Chapter 6 of the study guide including the exam topic review and 20 practice test questions)
  • Identifying Advanced Attacks (full content from Chapter 7 of the study guide including the exam topic review and 20 practice test questions)
  • Managing Risk (full content from Chapter 8 of the study guide including the exam topic review and 20 practice test questions)
  • Preparing for Business Continuity (full content from Chapter 9 of the study guide including the exam topic review and 20 practice test questions)
  • Understanding Cryptography (full content from Chapter 10 of the study guide including the exam topic review and 20 practice test questions)
  • Exploring Operational Security (full content from Chapter 11 of the study guide including the exam topic review and 20 practice test questions)
  • 100 question post-assessment exam
  • Security+ Acronyms

Get the Full Security+ Course Here

 Full Security+ Course Now Available


Test your readiness with these quality materials

Random 100-question tests

Random practice tests from the all of the practice test questions in the CompTIA Security+: Get Certified Get Ahead: SY0-401 Study Guide. All questions include explanations so you'll know why the correct answers are correct, and why the incorrect answers are incorrect.

34 Simulated Performance-based Questions

Eight sets of performance-based questions with multiple questions in each set. These questions help you understand and prepare for performance based questions.

22 Realistic Performance-based Questions

Two new sets of performance-based questions with a total of 22 questions. These new questions use a new testing engine that includes realistic drag and drop, matching, sorting, and fill in the blank questions.

Flashcard Set

  • 273 Security+ Flashcards to reinforce key testable concepts
  • 280 Security+ acronyms flashcards to help you master the required acronyms
  • 204 Security+ Remember This slides

Audio - SY0-401 Security+ Remember This Audio Files

Learn by Listening. Over one hour and 15 minutes of audio (MP3 downloads.)

Audio - SY0-401 Security+ Question and Answer Audio Files

Learn by Listening. Over three hours hour and 15 minutes of audio (MP3 downloads.)

Bonus #1

Audio from the end of chapter reviews from each of the chapters in the CompTIA Security+: Get Certified Get Ahead: SY0-401 Study Guide. Over one hour and 15 minutes of additional audio.

Bonus #2

Subnetting mini-tutorial that will help you answer two key question types:
  • Identify how many hosts a subnet supports
  • Identify valid IP addresses within a subnet

Bonus #3 

Access the study materials for a total of 60 days because sometimes life happens.

Get the Full Security+ Course Here

 

 

 

 

 

Leave a Comment

CompTIA Security+: Get Certified Get Ahead: SY0-401 Study Guide

Subscribe To Our Newsletter

Join our mailing list and get a free excerpt of the CompTIA Security+: Get Certified Get Ahead: SY0-401 Study Guide.  This excerpt includes the introduction and Chapter 1.

You have Successfully Subscribed!

Get Certified Get Ahead is a participant in the Amazon Services LLC Associates Program,
an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to amazon.com.

Copyright © 2015 Get Certified Get Ahead. All Rights Reserved.