Illustration of a teacup with tea leaves, drops, and a shield, symbolizing natural health protection.

IT Security 101

A collection of fundamental topics.

Gathered here are all of the articles related to IT security fundamentals.
As new posts are written, they will be archived here for quick access.
The site is new, so the collection is small. Check back for more.

  • Knights in armor with shields and swords standing in front of a glowing futuristic server or data center, symbolizing cybersecurity protection.

    The CIS Controls v8.1

    In this installment, the author provides an overview of the CIS Controls v8.1.

    Read More
  • Illustration of people surrounding and working on a castle rendered as a tech network. Participants with computers, ladders, and cables are connecting and interacting with the castle's turrets. The scene conveys a mix of medieval architecture and modern technology.

    Essential Cyber Hygiene

    In this installment, the author provides a closer look at Implementation Group 1 (IG1) of the CIS Controls v8.1.

    Read More
  • Illustration of a digital bug with binary code on its body over a colorful circuit board background.

    Vulnerabilities

    In this installment, the author provides an overview of vulnerabilities and the CVSS.

    Read More
  • Illustration of people working at desks and computers, surrounded by digital icons and tech symbols.

    Incident Response (IR)

    In this installment, the author provides an overview of IR, the IR Lifecycle and IRPs.

    Read More
  • Illustration of seven progressively larger and more complex robots standing in a line, each featuring detailed mechanical designs with armor and weapons.

    Threats and Threat Actors

    In this installment, the author provides an overview of threats and takes a look at threat actors.

    Read More
  • Cartoon ninjas attacking computer servers.

    APTs and their TTPs

    In this installment, the author provides an overview of Advanced Persistent Threats (APTs) and their Tactics, Techniques and Procedures (TTPs).

    Read More

  • Common Compliance Frameworks

    In this installment, the author provides an overview of security and privacy compliance frameworks.

    Read More

  • The Open Systems Interconnection (OSI) Model

    In this installment, the author provides an overview of the Open Systems Interconnection (OSI) Model.

    Read More

  • Malware

    In this installment, the author provides an overview of malware in its many forms, and common defense practices.

    Read More

  • Social Engineering

    In this installment, the author provides an overview of social engineering methods.

    Read More

  • Common Ports and Protocols

    In this installment, the author provides an overview of common network ports and protocols.

    Read More

  • The Structured Threat Information Expression (STIX) Standard

    In this installment, the author provides an overview of The Structured Threat Information Expression (STIX) standard.

    Read More

  • Data Loss Prevention (DLP)

    In this installment, the author provides an overview of data loss prevention (DLP).

    Read More

  • DKIM, SPF and DMARC

    In this installment, the author provides an overview of DKIM, SPF and DMARC.

    Read More

  • The OWASP Top 10 Web App Security Risks

    In this installment, the author provides an overview of the OWASP Top 10 Web App Security Risks and common controls for mitigation.

    Read More