CompTIA Advanced Security Practitioner (CASP+)
Credential: CompTIA Advanced Security Practitioner (CASP+)
Credentialing Agency: Computing Technology Industry Association (CompTIA)
Renewal Period: 3 years
The Computing Technology Industry Association (CompTIA), CompTIA Advanced Security Practitioner (CASP+) certification is for professionals with advanced-level cybersecurity skills and knowledge. CASP+ practitioners demonstrate skills in risk management, enterprise security architecture, research, development and collaboration, technical integration of enterprise security and enterprise security operations. Candidates must pass an exam that includes written and performance-based questions.
More information can be found on the certifying agency's website.
CompTIA Advanced Security Practitioner (CASP+)
MINIMUM REQUIREMENTS
Attainability:
Eligibility Requirements (View Details)
- Credential Prerequisite
- Experience: 10 years recommended
- Education
- Training
- Membership
- Other
- Fee
Note: This credential may have multiple options for a Service member to meet eligibility requirements. Requirements listed here are based on the minimum degree required.
Exam Requirements (View Details)
- Exam
- Written Exam
- Oral Exam
- Practical Exam
- Performance Assessment
Exam Administration (View Details)
- In-person exam
- Remote proctored on-line exam
- Third-party test vendor
RECERTIFICATION SUMMARY
Renewal Period: 3 years
AGENCY CONTACT INFORMATION
Computing Technology Industry Association (CompTIA)
3500 Lacey Road
Suite 100
Downers Grove, IL 60515
Phone: 866.835.8020
Fax: 630.678.8300
Contact Page
Written Exam CAS-003
-
Risk Management (19%)
- Summarize business and industry influences and associated security risks.
- Compare and contrast security, privacy policies and procedures based on organizational requirements.
- Given a scenario, execute risk mitigation strategies and controls.
- Analyze risk metric scenarios to secure the enterprise.
-
Enterprise Security Architecture (25%)
- Analyze a scenario and integrate network and security components, concepts and architectures to meet security requirements.
- Analyze a scenario to integrate security controls for host devices to meet security requirements.
- Analyze a scenario to integrate security controls for mobile and small form factor devices to meet security requirements.
- Given software vulnerability scenarios, select appropriate security controls.
-
Enterprise Security Operations (20%)
- Given a scenario, conduct a security assessment using the appropriate methods.
- Analyze a scenario or output, and select the appropriate tool for a security assessment.
- Given a scenario, implement incident response and recovery procedures.
-
Technical Integration of Enterprise Security (23%)
- Given a scenario, integrate hosts, storage, networks and applications into a secure enterprise architecture.
- Given a scenario, integrate cloud and virtualization technologies into a secure enterprise architecture.
- Given a scenario, integrate and troubleshoot advanced authentication and authorization technologies to support enterprise security objectives.
- Given a scenario, implement cryptographic techniques.
- Given a scenario, select the appropriate control to secure communications and collaboration solutions.
-
Research, Development and Collaboration (13%)
- Given a scenario, apply research methods to determine industry trends and their impact to the enterprise.
- Given a scenario, implement security activities across the technology life cycle.
- Explain the importance of interaction across diverse business units to achieve security goals.
Exam Preparation Resources
There are a number of resources available to help you prepare for the CompTIA Advanced Security Practitioner (CASP+) examination:
- Best Sources
- Related Training
An additional resource is O'Reilly Learning Safari Books Online, a searchable digital library that provides online access to thousands of books, training videos and conference sessions. See the Educational Resources section on the Related Sites page here on COOL to learn how to get free access.
Testing Information
-
Exam Administration
Credential exams may be administered in-person at a testing site, proctored on-line remotely, or have options for both. If an exam is administered through a test vendor, the third-party test vendor box will be checked. The following test administration options apply to the CompTIA Advanced Security Practitioner (CASP+) credential where checked:
- In-person exam
- Remote proctored on-line exam
- Third-party test vendor
For more information on the Computing Technology Industry Association (CompTIA) testing process, visit the agency website.
-
Third-Party Test Vendor Information
Testing for this credential is handled by the following vendor:
Pearson VUE
The test centers are located in the U.S. They also have some test centers on military bases.
To find out more, use the following links on the Pearson VUE website:
- Search for Testing Program
- Learn About Testing for Military Communities
- Agency/Certification Specific Testing Information
- Contact Pearson VUE
RECERTIFICATION
CompTIA Advanced Security Practitioner (CASP+)
Renewal Period: 3 years
Additional considerations for the CompTIA Advanced Security Practitioner (CASP+) include:
It is recommended that CompTIA CASP+ candidate meet the following criteria:
- Have a minimum of ten years of experience in IT administration including at least five years of hands-on technical security experience
- Hold the CompTIA Security+ certification