All Episodes

Episode 63 — Perform Root Cause and Recovery Analysis: Metadata, Volatile Data, Host, and Network

Episode 62 — Analyze Incident Artifacts: Sandboxing, IoC Extraction, Stylometry, Reverse Engineering

Episode 61 — Turn Intelligence Into Action: TIPs, IoC Sharing, STIX/TAXII, Sigma, YARA, Snort

Episode 60 — Apply Threat Hunting and Intelligence: Internal Sources, OSINT, Dark Web, ISACs

Episode 59 — Recommend Attack Surface Reductions: Validation, Patching, Encryption, Defense-in-Depth

Episode 58 — Analyze Vulnerabilities and Attacks: Injection, XSS, SSRF, Misconfigurations, Secrets

Episode 57 — Incorporate Diverse Data Sources: Threat Feeds, Scans, Bounties, CSPM, Logs, DLP

Episode 56 — Make Alerts Actionable: Prioritization Factors, Failures, and False Positive Control

Episode 55 — Analyze Monitoring Data Like a Defender: SIEM Parsing, Retention, Baselines, Correlation

Episode 54 — Apply Cryptography Correctly: Use Cases, Key Management Models, and Practical Techniques

Episode 53 — Explain Advanced Cryptography: PQC, Forward Secrecy, AEAD, Homomorphic Encryption

Episode 52 — Use Automation to Secure the Enterprise: IaC, Triggers, Patching, SOAR, SCAP

Episode 51 — Secure Specialized and Legacy Systems: Constraints, Obsolescence, Unsupported Reality

Episode 50 — Secure OT and IoT Systems: SCADA, ICS, Embedded, RF, Segmentation, Monitoring

Episode 49 — Defend Against Firmware and Physical TTPs: Shimming, USB Attacks, BIOS/UEFI, Memory

Episode 48 — Implement Hardware Security: TPM, HSM, vTPM, Secure Boot, Measured Boot, Enclaves

Episode 47 — Fix IPS/IDS and Observability Gaps: Rule Quality, Placement, False Positives, Coverage

Episode 46 — Troubleshoot Network Infrastructure Issues: DNSSEC, DKIM/SPF/DMARC, TLS, Cipher Mismatch

Episode 45 — Reduce Endpoint Attack Surface: Application Control, Configuration Management, Isolation

Episode 43 — Harden Secrets Management: Tokens, Certificates, Passwords, Keys, Rotation, Deletion

Episode 42 — Troubleshoot Enterprise IAM Failures: Conditional Access, Federation, SAML, OAuth, MFA

Episode 41 — Deperimeterize Safely: SASE, SD-WAN, Software-Defined Networking, and Segmentation

Episode 40 — Integrate Zero Trust Into Architecture: Subjects, Objects, Zones, Perimeters, Reauth

Episode 39 — Securely Implement Cloud Capabilities: CASB, CI/CD, Containers, Serverless, API Security

Episode 38 — Secure Physical and Logical Access Control Systems With Auditable Decisions

Episode 37 — Build PKI Architecture That Works: CA/RA, Templates, OCSP Stapling, Certificate Types

Episode 36 — Apply Access Control Models Precisely: RBAC, ABAC, MAC, DAC, and Enforcement Points

Episode 35 — Design Secure Access Systems: Provisioning, Deprovisioning, Federation, and SSO

Episode 34 — Measure Control Effectiveness: Assessments, Scanning, and Metrics That Drive Action

Episode 33 — Secure Hybrid Architectures and Third-Party Integrations Without Weak Trust Boundaries

Episode 32 — Operationalize DLP Architecture: At Rest, In Transit, and Data Discovery

Episode 31 — Design Data Security Controls: Classification Models, Labeling, and Tagging Strategies

Episode 30 — Enable Detection by Design: Central Logging, Monitoring, Alerting, and Sensor Placement

Episode 29 — Integrate Controls Into Secure Architecture: Defense-in-Depth, Hardening, Legacy Reality

Episode 28 — Handle Supply Chain Risk in the SDLC: Software, Hardware, Assurance, and EOL

Episode 27 — Build Security Through the SDLC: Coding Practices, Reviews, Testing, and Retesting

Episode 26 — Define Security Requirements Early: Functional, Non-Functional, and Usability Tradeoffs

Episode 25 — Engineer Availability and Integrity: Scaling, Recoverability, Persistence, Geography

Episode 24 — Design Resilient Systems: Component Placement for Firewalls, IDS/IPS, WAF, VPN, NAC

Episode 23 — Reduce AI Risk: Guardrails, DLP, Permissions, Disclosure, and Overreliance Traps

Episode 22 — Secure AI Adoption: Prompt Injection, Data Poisoning, Model Theft, and Model DoS

Episode 21 — Model Threat Applicability: Control Selection With and Without Existing Systems

Episode 20 — Determine Attack Surface Fast: Trust Boundaries, Data Flows, Code Reviews, Discovery

Episode 19 — Threat Modeling Frameworks in Practice: ATT&CK, CAPEC, STRIDE, Kill Chain, OWASP

Episode 18 — Threat Modeling Like You Mean It: Actors, Motivations, Resources, Capabilities

Episode 17 — Map Standards and Frameworks: PCI DSS, ISO/IEC 27000, SOC 2, NIST CSF, CIS, CSA

Episode 16 — Explain Compliance Impacts: Industry Requirements and Cross-Jurisdiction Realities

Episode 15 — Build Privacy Into Risk Decisions: Sovereignty, Biometrics, and Data Subject Rights

Episode 14 — Protect Integrity: Hashing, Remote Journaling, Anti-Tampering, Interference Controls

Episode 13 — Protect Confidentiality: Leak Response, Privileged Data Breach, Reporting, Encryption

Episode 12 — Protect Availability: BC/DR Testing, Connected Backups, Disconnected Backups, Recovery

Episode 11 — Manage Third-Party Risk: Supply Chain, Vendors, and Subprocessors Without Blind Spots

Episode 10 — Execute Risk Assessments: Quantitative vs Qualitative, Appetite, Tolerance, Prioritization

Episode 9 — Perform Impact Analysis Using Extreme-but-Plausible Scenarios That Actually Matter

Episode 8 — Govern Data Across Staging Environments: Dev, Test, QA, and Production

Episode 7 — Use GRC Tools for Mapping, Automation, Continuous Monitoring, and Evidence

Episode 6 — Control Change and Configuration Management Without Creating Security Drift

Episode 5 — Apply Governance Frameworks Wisely: COBIT, ITIL, and Practical Control Mapping

Episode 4 — Run Security Program Management Like a Pro: Training, RACI, Reporting

Episode 3 — Operationalize Security Program Documentation: Policies, Standards, Procedures, Guidelines

Episode 2 — Build a Spoken Study Plan and Exam-Day Mental Models for SecurityX Success

Episode 1 — Master the SecurityX Exam Format, Policies, Scoring, and PBQ Time Tactics

Welcome to Certified: The CompTIA SecurityX Audio Course