CISSP Domain 4: NAC, Fiber, Firewalls & Endpoint Security

On the CISSP, secure-network-component questions come down to one move: name the component’s layer and job, then match it to the requirement. This Domain 4 deep-dive builds network access control, then compares copper, fiber, and wireless, places the network devices by OSI layer, and stacks the endpoint defenses from anti-malware up to EDR. With Kai, Erica, Grace, and Lewis, we cover the secure-network-component foundations behind 13% of the current exam, and the question-reading habits that turn ‘BEST’ and ‘MOST’ scenarios into quick, defensible picks.

In this video:

• NAC: device posture checks, 802.1X port-based access, and the supplicant, authenticator, and authentication server roles
• Quarantine and the remediation VLAN, plus agent-based versus agentless NAC
• Transmission media security: why fiber-optic is the most secure and EMI-immune medium versus copper and wireless
• Network devices by layer: switches at Layer 2, routers at Layer 3, VLAN segmentation, and stateful versus next-gen firewalls
• IDS versus IPS: detect-and-alert versus inline detect-and-block, plus proxies and load balancers
• Endpoint security: anti-malware, host-based firewall, full-disk encryption, and behavior-based EDR

The next video in the series moves into network attacks and the defenses that counter them. Anchored to the (ISC)2 CISSP Detailed Content Outline effective April 15, 2024.

▶ Watch next: CISSP Domain 4: Secure Channels, VoIP & Remote Access https://www.youtube.com/watch?v=Tedm0fnexOM

📺 Full playlist: CISSP (2026) v2 https://www.youtube.com/playlist?list=PLlIAFxS2964_K3g6WysWnLpifoxilduGi