The CompTIA Security+ (SY0-601) exam now covers five major domains instead of six, guided by a maturing industry job role.
Attacks, Threats and Vulnerabilities (24%)
Architecture and Design (21%)
Operations and Incident Response (16%)
Governance, Risk and Compliance (14%)
Now focuses on the most up-to-date and current skills needed for the following tasks:
Assess the cybersecurity posture of an enterprise environment
Recommend and implement appropriate cybersecurity solutions
Monitor and secure hybrid environments
Operate with an awareness of applicable laws and policies
Identify, analyse and respond to cybersecurity events and incidents
How CompTIA Security+ Evolves with the Industry
Exam Domain 1 | Attacks, Threats and Vulnerabilities
Includes attacks, threats and vulnerabilities from IoT and embedded devices, newer DDoS attacks and social engineering.
According to Accenture, 68% of business leaders feel their cybersecurity risks are increasing. To combat these emerging threats, IT pros must help identify cyberattacks and vulnerabilities to mitigate them before they infiltrate information systems.
Exam Domain 2 | Architecture and Design
Includes coverage of enterprise environments and reliance on the cloud, which is growing quickly as organizations transition to hybrid networks (on-premises and cloud).
To maintain a strong cybersecurity posture and to support hybrid environments, IT pros must understand secure virtualization, secure application deployment and automation concepts.
Exam Domain 3 | Implementation
Includes a focus on administering identity, access management, basic cryptography, PKI, wireless and end-to-end security.
To support organizational cybersecurity, IT pros must identify and implement the best protocols and encryption for a particular network/cloud design, mobile solution or wireless setting, for example.
Exam Domain 4 | Operations and Incident Response
Includes organizational security assessments and incident response procedures, such as detection, mitigation and basic digital forensics of incidents.
To support operations and the influx of recent cyberattacks, IT pros are called upon to perform incident response earlier in their careers. They must be able to apply basic mitigation techniques and security controls to protect systems.
Exam Domain 5 | Governance, Risk and Compliance
Includes how to support basic organizational risk management, security controls and teamwork to support regulations such as PCI-DSS, SOX, HIPAA, GDPR, NIST and CCPA.
In a recent survey of CompTIA certification holders, nearly 60% reported an increase in compliance tasks. To support governance, risk and compliance, IT pros must understand compliance security controls, how they reduce risk and how to implement them to improve cybersecurity posture.
Who is it for?
The primary job roles remain the same, as the core of those jobs have not largely changed over time:
But the following IT job roles can also benefit from a CompTIA Security+ cybersecurity certification:
Help Desk Manager/Analyst
Information Security Manager
IT Project Manager
Our next CompTIA Security+ SYO-601 is scheduled for 14 Dec 2020 at a special price of £1500 inc VAT. To book, contact firstname.lastname@example.org or call 01752 724000
Find out more about the delivery here