Chapter 20

Security Assessments and Audits

CERTIFICATION OBJECTIVES

20.01   Understanding Types of Assessments

20.02   Performing a Security Assessment

20.03   Performing a Penetration Test

20.04   Tools Used to Assess Security

✓     Two-Minute Drill

Q&A     Self Test

An important task of security professionals is to assess the security of the organization. Organizational security assessment involves not only assessing the technical aspects, such as server and firewall configuration, but also assessing physical security controls and employee awareness with regard to social engineering attacks.

In this chapter you will learn about the different types of assessments that should be performed within the organization and the tools used for the ...

Get CompTIA Security+ Certification Study Guide, Fourth Edition (Exam SY0-601), 4th Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial