Cybersecurity Fundamentals Cheat Sheet_v2_tables

Next Topic: Data Loss Prevention (DLP) Cheat Sheet

Cybersecurity is the practice of protecting systems, networks, data, and programs from digital attacks, unauthorized access, and damage. Built on core principles like the CIA triad (Confidentiality, Integrity, Availability), cybersecurity encompasses threat identification, vulnerability management, control implementation, and incident response to maintain organizational resilience. In 2026, with AI-powered attacks, zero-trust architectures, and increasingly sophisticated threats, understanding these fundamentals is no longer optional — it's the baseline for operating securely in a hyper-connected world. Keep in mind that cybersecurity is fundamentally about risk management, not absolute prevention; the goal is to reduce risk to acceptable levels while maintaining business functionality.

What This Cheat Sheet Covers

This topic spans 10 focused tables and 75 indexed concepts. Below is a complete table-by-table outline of this topic, spanning foundational concepts through advanced details.

Table 1: CIA Triad — Core Security PrinciplesTable 2: Security Threat CategoriesTable 3: Social Engineering Attack TypesTable 4: Malware TypesTable 5: Vulnerability and Risk ConceptsTable 6: Security Controls — By TypeTable 7: Security Controls — By FunctionTable 8: Defense-in-Depth LayersTable 9: Authentication Factors and MethodsTable 10: Access Control Models

Table 1: CIA Triad — Core Security Principles

The CIA triad is the cornerstone of every security program — every control you deploy ultimately protects one or more of these three properties. Understanding where each property can fail, and which controls address which property, is the starting point for reasoning about any security decision.

Principle	Example	Description
Confidentiality	`Encrypt customer PII with AES-256` `Implement access controls (RBAC)`	• Ensures sensitive information is accessible only to authorized users • prevents unauthorized disclosure through encryption, access controls, and data classification.
Integrity	`Use SHA-256 hash to verify file integrity` `Digital signatures for email`	• Ensures data remains accurate and unaltered during storage and transmission • detects tampering through hashing, checksums, and version control.
Availability	`Deploy load balancers and failover systems` `DDoS mitigation (rate limiting)`	• Ensures systems and data are accessible when needed • maintained through redundancy, disaster recovery, and business continuity planning. RTO/RPO targets define acceptable downtime.

Table 1: CIA Triad — Core Security Principles

Principle	Example	Description
Confidentiality	`Encrypt customer PII with AES-256` `Implement access controls (RBAC)`	• Ensures sensitive information is accessible only to authorized users • prevents unauthorized disclosure through encryption, access controls, and data classification.
Integrity	`Use SHA-256 hash to verify file integrity` `Digital signatures for email`	• Ensures data remains accurate and unaltered during storage and transmission • detects tampering through hashing, checksums, and version control.
Availability	`Deploy load balancers and failover systems` `DDoS mitigation (rate limiting)`	• Ensures systems and data are accessible when needed • maintained through redundancy, disaster recovery, and business continuity planning. RTO/RPO targets define acceptable downtime.