CompTIA Security +

CompTIA Security+ is the first security certification a candidate should earn. It establishes the core knowledge required of any cybersecurity role and provides a springboard to intermediate-level cybersecurity jobs.

  • Launch a successful cybersecurity career – Develop a core foundation of essential skills, paving the way for a fulfilling career. More job roles use Security+ for baseline cybersecurity skills than any other certification in the industry.
  • Assess on-the-job skills – Security+ is the most widely adopted ISO/ANSI-accredited early career cybersecurity certification on the market with hands-on, performance-based questions on the certification exam. These practical questions assess your ability to effectively problem-solve in real-life situations and demonstrate your expertise to potential employers immediately.
  • Embrace the latest trends – Understand and use the most recent advancements in cybersecurity technology, terms, techniques, and tools. By acquiring early career skills in the latest trends such as automation, zero trust, risk analysis, operational technology, and IoT, you will be well-equipped to excel in the ever-evolving cybersecurity landscape.
Category:

After completing this course, you will be able to:

  • Assess the security posture of an enterprise environment and recommend and implement appropriate security solutions
  • Monitor and secure hybrid environments, including cloud, mobile, and IoT, and operational technology
  • Operate with an awareness of applicable laws and policies, including principles of governance, risk, and compliance
  • Identify, analyze, and respond to security events and incidents
  • CompTIA Network+ and two years of experience in IT administration with a security focus.
  • Cloud Penetration Tester
  • Network Security Operations
  • Penetration Tester
  • Network Security Analyst
  • Web App Penetration Tester
  • Security Architect
1.1 Compare and contrast various types of security controls.
1.2 Summarize fundamental security concepts.
1.3 Explain the importance of change management processes and the impact to security.
1.4 Explain the importance of using appropriate cryptographic solutions.
2.1 Compare and contrast common threat actors and motivations
2.2 Explain common threat vectors and attack surfaces.
2.3 Explain various types of vulnerabilities.
2.4 Given a scenario, analyze indicators of malicious activity.
2.5 Explain the purpose of mitigation techniques used to secure the enterprise.
3.1 Compare and contrast security implications of different architecture models
3.2 Given a scenario, apply security principles to secure enterprise infrastructure.
3.3 Compare and contrast concepts and strategies to protect data.
3.4 The importance of resilience and recovery in security architecture.
4.1 Given a scenario, apply common security techniques to computing resources.
4.2 Explain the security implications of proper hardware, software, and data asset management.
4.3 Explain various activities associated with vulnerability management.
4.4 Explain security alerting and monitoring concepts and tools.
4.5 Given a scenario, modify enterprise capabilities to enhance security.
4.6 Given a scenario, implement and maintain identity and access management.
4.7 Explain the importance of automation and orchestration related to secure operations.
4.8 Explain appropriate incident response activities.
4.9 Given a scenario, use data sources to support an investigation
5.1 Summarize elements of effective security governance.
5.2 Explain elements of the risk management process.
5.3 Explain the processes associated with third-party risk assessment and management.
5.4 Summarize elements of effective security compliance.
5.5 Explain types and purposes of audits and assessments.
5.6 Given a scenario, implement security awareness practices.
Length of exam 90 minutes
Number of questions Maximum of 90 questions
Question format Multiple choice and performance-based
Passing grade 750 (on a scale of 100-900)
Exam availability English, Japanese, Vietnamese, Thai, Portuguese
Testing center Pearson VUE Testing Center