CASP+ CompTIA Advanced Security Practitioner - CAS-004/005

About CASP+ CompTIA Advanced Security Practitioner - CAS-004/005

What is CompTIA CASP+ Certification?

The CompTIA Advanced Security Practitioner (CASP+) certification is a certification for technical professionals who wish to remain immersed in technology, as opposed to strictly managing.

CASP+ validates advanced-level competency in the following areas:

Risk management, enterprise security operations and architecture

Research and collaboration

Integration of enterprise security

CASP+ is the only hands-on, performance-based certification for practitioners—not managers—at an advanced skill level of cybersecurity. The difference is that while cybersecurity managers help identify what policies and frameworks could be implemented, CASP+-certified professionals figure out how to get the job done.

What Is on the Exam?

Skills covered in CASP+ address current risks and incident response scenarios inherent with cyber warfare, modern hacking techniques and cloud migration. CASP+ covers the technical knowledge and skills required to conceptualize, engineer, integrate and implement secure solutions across complex environments to support a resilient enterprise. Successful candidates will have the skills to do the following:

Support IT governance in the enterprise with an emphasis on managing risk

Leverage collaboration tools and technology to support enterprise security

Use research and analysis to secure the enterprise

Integrate advanced authentication and authorization techniques

Implement cryptographic techniques

Implement security controls for hosts

Implement security controls for mobile devices

Implement network security

Implement security in the systems and software development lifecycle

Integrate hosts, storage, networks, applications, virtual environments and cloud technologies in a secure enterprise architecture

Conduct security assessments

Respond to and recover from security incidents

The CASP+ exam covers the following domains and topics:

Risk Management: Summarize business and industry influences and associated security risks

Technical Integration of Enterprise Security: Integrate cloud and virtualization technologies into a secure enterprise architecture

Enterprise Security Architecture: Analyze a scenario and integrate network and security components, concepts and architectures to meet security requirements

Research, Development and Collaboration: Given a scenario, apply research methods to determine industry trends and their impact to the enterprise

Enterprise Security Operations: Analyze a scenario or output, and select the appropriate tool for a security assessment

CAS-004 AND CAS-005

Exam Codes: CAS-004Launch Date October 6, 2021

CASP+ covers the technical knowledge and skills required to architect, engineer, integrate, and implement secure solutions across complex environments to support a resilient enterprise while considering the impact of governance, risk, and compliance requirements.

Exam Codes: CAS-005

Launch Date December 17, 2024

SecurityX (formerly CASP+) covers the technical knowledge and skills required to architect, engineer, integrate, and implement secure solutions across complex environments to support a resilient enterprise while considering the impact of governance, risk, and compliance requirements.