Browse Definitions :
Definition

CompTIA Security+

CompTIA Security+ is a certification for basic security practices and functions. The Computing Technology Industry Association (CompTIA) advertises this security certification as one of the first security-based certifications information technology professionals should earn.

This certification exam can be taken online or in person at a designated test center. The test takes 90 minutes to complete and requires a passing score of 750 out of 900.

The CompTIA Security+ certification is good for three years and covers subject areas such as:

Recommended prerequisites

CompTIA does not set prerequisites for the Security+ certification. There are no age or educational requirements, but CompTIA does recommend that a candidate has at least two years of IT administration experience with a focus on security.

It is important to note that CompTIA Security+ gets updated every three years to meet any changes to industry needs. Certification renewals help ensure that IT pros have the skills needed for modern cybersecurity jobs.

Skills covered on the CompTIA Security+ exam

The CompTIA Security+ exam focuses on best practices for risk management and mitigation. Exam questions span subject matters such as threats and vulnerabilities, incident response, architecture design and implementation, compliance and governance. The exam focuses on these subjects because they relate to the typical responsibilities of a security or systems administrator. Certified individuals should be able to troubleshoot security issues, understand wired and wireless network architecture concepts and be able to install and deploy network components and configure identity and access services.

As an example, test takers should be familiar with:

Upon certification, successful candidates will be able to demonstrate working knowledge of security concepts, tools and procedures; respond to security threats, participate in risk mitigation activities, respond to threat analysis and work within the constraints of applicable policies and regulations.

How to prepare for the CompTIA Security+ exam

Candidates can expect a mix of 90 multiple choice, drag-and-drop and performance-based questions. Performance-based questions focus on practical ability questions to identify and address security threats, attacks and vulnerabilities.

CompTIA offers a range of prep tools that includes study guides, eLearning and online courses. For example, they offer an Official CompTIA Security+ Study Guide, a CertMaster eLearning and test prep, live online training and CompTIA Labs -- a virtual lab environment.

Test takers should study for:

  • Threats, attacks and vulnerabilities. Be able to identify and analyze any indicators of compromise.
  • Identity and Access Management (IAM). Be able to implement IAM controls and account management controls.
  • Cryptography. Be able to identify and implement basic concepts of cryptography.
  • Risk management. Be able to identify the importance of policies, plans and procedures in security.
  • Technologies and tools. Be able to troubleshoot common security issues with software tools.
  • Architecture and design. Be able to summarize the concepts behind secure application development and deployment, as well as concepts behind securing clouds and virtualization.

How much does the CompTIA Security+ exam cost?

The CompTIA Security+ exam voucher is priced at $349, with three other options available. These options include:

  • Basic Bundle. $499 -- includes the exam voucher, one test retake and The Official CompTIA Security+ Study Guide e-book.
  • Exam Prep Bundle. $649 -- includes everything in the previous bundle, plus a 12-month individual license for CertMaster Practice for Security+, a knowledge assessment and certification training companion tool.
  • eLearning Bundle. $999 -- includes exam voucher, one test retake, a 12-month individual license for CertMaster Learn for Security+, which is a collection of interactive and self-paced instructional lessons with assessments, and a 12-month individual license for CertMaster Labs for Security+.

Who should take CompTIA Security+?

Anyone looking to start their path in the security field should consider beginning their journey with the CompTIA Security+ certification. CompTIA Security+ demonstrates a person's competency with core knowledge required of any infosec role, including IAM. IT support technicians, and admins or other positions such as security practitioners, should consider this certification. Security practitioners, for example, can pursue this certification prior to Certified Information Systems and Security Professional (CISSP). The CompTIA Security+ credential also counts as one year toward the four years' experience prerequisite of CISSP.

What job roles need the CompTIA Security+ certification?

CompTIA advertises the certification by calling it a "springboard into intermediate-level cybersecurity jobs." Positions that CompTIA Security+ holders hold may include IT and security professional job titles such as:

  • security administrator
  • systems administrator
  • help desk manager/analyst
  • network/cloud engineer
  • security engineer/analyst
  • DevOps/software developer
  • IT auditor
  • IT project manager
  • information security manager
  • security architect
This was last updated in March 2021

Continue Reading About CompTIA Security+

Networking
  • firewall as a service (FWaaS)

    Firewall as a service (FWaaS), also known as a cloud firewall, is a service that provides cloud-based network traffic analysis ...

  • private 5G

    Private 5G is a wireless network technology that delivers 5G cellular connectivity for private network use cases.

  • NFVi (network functions virtualization infrastructure)

    NFVi (network functions virtualization infrastructure) encompasses all of the networking hardware and software needed to support ...

Security
  • cybersecurity

    Cybersecurity is the practice of protecting internet-connected systems such as hardware, software and data from cyberthreats.

  • Advanced Encryption Standard (AES)

    The Advanced Encryption Standard (AES) is a symmetric block cipher chosen by the U.S. government to protect classified ...

  • operational risk

    Operational risk is the risk of losses caused by flawed or failed processes, policies, systems or events that disrupt business ...

CIO
  • Risk Management Framework (RMF)

    The Risk Management Framework (RMF) is a template and guideline used by companies to identify, eliminate and minimize risks.

  • robotic process automation (RPA)

    Robotic process automation (RPA) is a technology that mimics the way humans interact with software to perform high-volume, ...

  • spatial computing

    Spatial computing broadly characterizes the processes and tools used to capture, process and interact with three-dimensional (3D)...

HRSoftware
  • OKRs (Objectives and Key Results)

    OKRs (Objectives and Key Results) encourage companies to set, communicate and monitor organizational goals and results in an ...

  • cognitive diversity

    Cognitive diversity is the inclusion of people who have different styles of problem-solving and can offer unique perspectives ...

  • reference checking software

    Reference checking software is programming that automates the process of contacting and questioning the references of job ...

Customer Experience
  • martech (marketing technology)

    Martech (marketing technology) refers to the integration of software tools, platforms, and applications designed to streamline ...

  • transactional marketing

    Transactional marketing is a business strategy that focuses on single, point-of-sale transactions.

  • customer profiling

    Customer profiling is the detailed and systematic process of constructing a clear portrait of a company's ideal customer by ...

Close