Governance, Controls, Physical Security & Resilience
Hands-on hacking teaches you how attacks work — but certification exams (Security+, Network+, CySA+, ISC² CC, and the ISACA governance certs) also test the foundational, conceptual half of security: the taxonomy of controls and frameworks, physical security and deception, change management, cryptographic solutions, identity and access management, data protection, resilience and disaster recovery, and security awareness. This epoch rounds out the curriculum with the concepts every security professional must know — the exam-objective bedrock beneath the exploits.
NIST Headquarters
Security Controls & Frameworks
A Secure Data Center
Physical Security & Deception
A Network Operations Center
Change Management
OVHcloud Data Center
Resilience & Recovery (BC/DR)
A Certificate Authority
Cryptographic Solutions
An Identity Provider
Identity & Access Management
A Data Governance Office
Data Protection & Classification
The Human Firewall
Security Awareness & Operational Security
A Network Wiring Closet
Network Media, Cabling & Topologies
A Help Desk at 3 A.M.
Network Troubleshooting Methodology & Tools
The Boardroom & the SOC
Security Operations Reporting & Metrics
The Risk Register
Risk Assessment & Management
A CI/CD Pipeline
Secure Development Lifecycle (SDLC)