One of the first things that I learned from class is the CIA triad. After reading the Chai Article in class, he states that Confidentiality, integrity and availability, also known as the CIA triad, is a model designed to guide policies for information security within an organization. In this context, confidentiality is a set of rules that limits access to information, integrity is the assurance that the information is trustworthy and accurate, and availability is a guarantee of reliable access to the information by authorized people.

Second thing that I learned from class was what the NIST cybersecurity framework is and what benefits can organizations use from this framework. One of the benefits that was stated in the classroom reading was the framework provides a common language for understanding, managing, and expressing cybersecurity risk to internal and external stakeholders. It can be used to help identify and prioritize actions for reducing cybersecurity risk, and it is a tool for aligning policy, business, and technological approaches to managing that risk.

Next thing that I learned from the class is the difference between identification and authentication. Identification is asserting your identity to a system. Authentication is confirming your identification that you are indeed who you claim to be. 

The next thing that I learned in class was what a hacktivist is. Hacktivist combines the terms hacking and political activism and it is hacking for political reasons. One of the biggest groups that fit this description would be anonymous. 

Finally one of the most important things that I learned in the class is tips for developing a cybersecurity policy. This is something that I might be in charge of later in my career. First it has to be easy to understand. Second is there has to be regular reviews. Third is it must include business units. Next is it has to be enforced and taken seriously. Finally, it must include training and practice.