Hello CINners,

We know that some of the factors that can/will cause email to be sent
to the Spam or Junk folder are:
- Spam trigger words:
- Suspicious links or attachments:
- Poor sender reputation:
- Incorrect email authentication:
- High volume of emails:
- Unusual email formatting:
- Low engagement rate:

Do you know of any other factors that contribute to this behavior?


Thanks CINners

Happy 2025

Maintaining privacy and safeguarding security frequently require striking a careful balance. Is privacy unassailable in the digital age, or should we put security above everything else in a world where surveillance is growing?

I'm helping a client develop some training materials for the Tech+ course, so I took and passed the exam to see what the questions would be like.

I only had 60 questions, with no PBQs. It was the shortest CompTIA certification exam I've taken in 25 years. Mostly, it consisted of understanding the vocabulary terms and being able to pick information from an example. In my opinion, it was much easier than the previous IT Fundamentals+ certification that preceded it.

It provides the learning with very basic digital literacy but the exam is very surface-oriented. It does not go deep on any topic at all.

Although zero trust architecture is frequently hailed as the cybersecurity of the future, can most organizations actually implement it?

In your experience, which cybersecurity framework do you feel has the most practical relevance for organizations today—NIST or CIS?

Hello CINners,

I'd like to inquire about your email client of choice - Gmail, Yahoo, Outlook, whatever!!!!
Let me know what you use, and why, please!!!

By the way, is Hotmail the same app as Outlook????



Thanks CINners

Hello CINners,

What exactly is the target of a DNS attack? Is it the DNS server, or the
DNS client? Or, is it something else?


Thanks CINners

Hello CINners,

When I launch some PowerPoint slides using Microsoft PowerPoint, there are
multiple processes named "Microsoft Edge WebView2" that are launched
along with it. Why is this? What connection does this Microsoft Edge WebView2
thingy have with PowerPoint?

Thanks CINners

IT professionals need to match corporate goals with their technical expertise. How do you instruct students to consider business impact while dealing with IT problems such as security breaches or network optimization?

How do you simulate real-world cybersecurity threats in your classroom?

Hello CINners,

What tool, or technique(s), do you use to detect a compromised
user account? A tool, indigenous in the operating system,
would be nice, if one exist. I'm always looking to save a buck!!!

Thanks CINners

IT concepts can be abstract and difficult to remember. What techniques do you use to help students retain key concepts like subnetting, IP addressing, and security protocols?

1. How do you create a welcoming and inclusive learning environment for your IT students?
2. How do you ensure that everyone feels welcomed and supported?

One of the most important—and often overlooked—aspects of hiring is aligning job requirements with the skills and experience necessary for success. Unfortunately, job postings are often misaligned, especially at the entry level. For example, it's not uncommon to see postings for "entry-level" cybersecurity analysts that require advanced certifications like the CISSP—certifications that typically take five or more years of industry experience to achieve and cost thousands of dollars.

Resource: Business Insider

This disconnect creates a ripple effect. It discourages qualified candidates from applying, perpetuates the talent gap, and makes it harder for companies to attract fresh talent. Worse yet, it sends a message that the employer may not truly understand what the role requires.

Why This Happens​

Hiring managers often default to "gold standard" certifications like CISSP or CISM because they’re widely recognized. But they don’t always take the time to assess whether these certifications are appropriate for the role in question. For example, the CISSP isn’t designed for someone just starting out in cybersecurity. It’s tailored for experienced professionals managing security strategies. Requiring it for an entry-level role is like asking someone applying for a learner’s permit to prove they can navigate rush hour in a semi-truck.



Read more about here:
https://www.linkedin.com/comm/pulse...2OTFkZThkOTRmYjhhZDY1OTgyZTA3ZWU3Njg0NSwxLDE=

With certifications like Security+, CySA+, Pentest+, and SecurityX, is it enough to have a cert and be considered ‘secure’ in a role, or do you think hands-on experience plays much bigger role in cybersecurity jobs?

Hello fellow instructors,

I’m thrilled to announce that I’ve officially passed the Cloud+ CV0-004 exam!

Am grateful for the resources-Cert Master labs, and the support from this incredible community!

Big thanks to @Stephen Schneiter

Which of your students' accomplishments has inspired you the most? Let's honor their accomplishments and talk about the factors that made them successful!

Let's go down the road of Zero Trust and Zero Trust Network Access (ZTNA) for a moment.

Let's begin with Zero Trust. Zero Trust is a broad security model!
Zero Trust assumes that no one, or nothing, should be trusted by default, which will require continuous verification before granting access to resources.

Zero Trust Network Access (ZTNA) on the other hand, is a specific implementation of the Zero Trust security model, with its focus primarily on securing remote access to applications and data, by strictly controlling user and device authentication before granting access - essentially acting as a more secure alternative to traditional VPNs.

Zero Trust -> the overall security philosophy.

Zero Trust Network Access (ZTNA) -> a technology, used to achieve the security philosophy in the context of network access.

Some key differences:

Scope:
- Zero Trust applies to all aspects of security across an organization.
- ZTNA specifically focuses on managing access to applications and data from anywhere, especially for
remote users.

Implementation:
- Zero Trust is a broader framework, that can be implemented through various technologies and
strategies
- ZTNA is a specific technology, used to enforce zero trust principles for network access

Focus:
- Zero trust emphasizes continuous verification, and least privilege access, across all systems
- ZTNA focuses on user identity and device posture, before granting access to application, often
bypassing the traditional network perimeter.

My Summary:

Zero Trust
- a framework
- a security philosophy

Zero Trust Network Access (ZTNA)
- a technology
- the item used to enforce the security philosophy


Okay, all this is nice to know, but that's not why I stopped by. What I wanted to ask,
is Zero Trust Network Access (ZTNA) covered in any of the CompTIA courses?


Thanks CINners

Hello CINners,

Network Segmentation - is this covered in any of the CompTIA courses?

Thanks CINners

Subnetting can feel overwhelming for students. What’s your secret to making it simpler and even enjoyable? Any favorite methods, tools, or analogies to share?

Hello CINners,

Identity and Access Management - is it covered in any CompTIA course?
If so, which one?

Thanks CINners

Hello CINners,

How do you explain to students the importance of certifications like Security+ or CySA+ or Pentest+ when competing for cybersecurity roles?

Many students ask whether they should pursue certifications or a degree. How do you guide them when it comes to balancing these paths in IT?

The UnixGuy ranks the best and worst Cyber Security certifications. He bases his rankings on several factors, including pricing, type of examination questions, relevance in the job market, practical skills learned, and quality of training.

At the bottom, he ranked bootcamps. No one in particular, just bootcamps in general. Just above that was EC-Council and Udemy.

At the top, he ranked INE Security, Let's Defend, Cyberdefenders, TryHackMe, HackTheBox, Security Blue Team, TCM Security, Zero Point Security, GRC Mastery, and the Google Cybersecurity Certificate.

He lists CompTIA in the middle. Above Cisco's Cybersecurity certs and ISACA's CISM but below ISC2's CISSP, SANS, OffSec's OSCP, MS Azure Security, and AWS Security.

Your thoughts?

Login to view embedded media

Hello CINners,

Is there any coverage of Dark Web concepts in any CompTIA courses?


Thanks CINners - who don't feel that they're wasting their time!!!!