CompTIA Certifications

CompTIA Security+

SecurityPlus-Logo-White

Overview

CompTIA Security+ (SY0-501) English language exam will retire on July 31, 2021.
The new Security+ (SY0-601) is now available.

CompTIA Security+ is a global certification that validates the baseline skills necessary to perform core security functions and pursue an IT security career.

Why is Security+ different?

  • More choose Security+ – chosen by more corporations and defense organizations than any other certification on the market to validate baseline security skills and for fulfilling the DoD 8570 compliance.
  • Security+ proves hands-on skills – the only baseline cybersecurity certification emphasizing hands-on practical skills, ensuring the security professional is better prepared to problem solve a wider variety of today’s complex issues.
  • More job roles turn to Security+ to supplement skills – baseline cybersecurity skills are applicable across more of today’s job roles to secure systems, software and hardware.
  • Security+ is aligned to the latest trends and techniques – covering the most core technical skills in risk assessment and management, incident response, forensics, enterprise networks, hybrid/cloud operations, and security controls, ensuring high-performance on the job.

Key Benefits

CompTIA Security+ is the first security certification your candidate should earn. It establishes the core knowledge required of any cybersecurity role and provides a springboard to intermediate-level cybersecurity jobs. Security+ incorporates best practices in hands-on troubleshooting, ensuring candidates have practical security problem-solving skills required to:

  • Assess the security posture of an enterprise environment and recommend and implement appropriate security solutions
  • Monitor and secure hybrid environments, including cloud, mobile, and IoT
  • Operate with an awareness of applicable laws and policies, including principles of governance, risk, and compliance
  • Identify, analyze, and respond to security events and incidents

Security+ is compliant with ISO 17024 standards and approved by the US DoD to meet directive 8140/8570.01-M requirements. Regulators and government rely on ANSI accreditation, because it provides confidence and trust in the outputs of an accredited program. Over 2.3 million CompTIA ISO/ANSI-accredited exams have been delivered since January 1, 2011.

Exam Domains

Security+ SY0-501

Domain
% of Exam
Threats, Attacks and Vulnerabilities
21%
Technologies and Tools
22%
Architecture and Design
15%
Identity and Access Management
16%
Risk Management
14%
Cryptography and PKI
12%

Security+ SY0-601

Domain
% of Exam
1.0 Attacks, Threats, and Vulnerabilities
24%
2.0 Architecture and Design
21%
3.0 Implementation
25%
4.0 Operations and Incident Response
16%
5.0 Governance, Risk, and Compliance
14%

What’s New

Cybersecurity attacks continue to grow. Increasingly, more job roles are tasked with baseline security readiness and response to address today’s threats. Updates to Security+ reflect skills relevant to these job roles and prepare candidates to be more proactive in preventing the next attack. The updated version of Security+ 601 ensures organizations have talent with the latest skills and competencies needed to improve baseline security readiness and incident response by applying today’s current best practices for addressing the latest attacks, threats, and vulnerabilities.

Top Security+ Job Roles

  • Security Administrator
  • Systems Administrator
  • Helpdesk Manager / Analyst
  • Network / Cloud Engineer
  • Security Engineer / Analyst
  • DevOps / Software Developer
  • IT Auditors
  • IT Project Manager

Organizations that have contributed to the development of Security+

  • Target Corporation
  • General Dynamics IT (GDIT)
  • Netflix
  • Splunk
  • U.S. Navy Center for Information Dominance
  • Johns Hopkins University Applied Physics Laboratory

Exam Details

Exam Codes SY0-501 SY0-601
Launch Date October 4, 2017 November 12, 2020
Exam Description The CompTIA Security+ exam will certify the successful candidate has the knowledge and skills required to install and configure systems to secure applications, networks, and devices; perform threat analysis and respond with appropriate mitigation techniques; participate in risk mitigation activities; and operate with an awareness of applicable policies, laws, and regulations. The successful candidate will perform these tasks to support the principles of confidentiality, integrity, and availability. The CompTIA Security+ certification exam will verify the successful candidate has the knowledge and skills required to assess the security posture of an enterprise environment and recommend and implement appropriate security solutions; monitor and secure hybrid environments, including cloud, mobile, and IoT; operate with an awareness of applicable laws and policies, including principles of governance, risk, and compliance; identify, analyze, and respond to security events and incidents
Number of Questions Maximum of 90 questions
Type of Questions Multiple choice and performance-based
Length of Test 90 minutes
Passing Score 750 (on a scale of 100-900)
Recommended Experience Candidates should have CompTIA Network+ or equivalent networking experience.
Languages English (Japanese, Portuguese and Simplified Chinese estimated Q2 2018)
Retirement Usually three years after launch.
Testing Provider Pearson VUE