CompTIA Security+ Sy-601 Certification [Part 1]


Security+ certification from CompTIA is an associate-level exam with a syllabus covering Threat intelligence, Vulnerability Assessment, and Risk mitigations to Physical and Endpoint device security.

Why one must pursue it?

What I really liked about this cert is, that it doesn’t require any pre-requisites and despite being categorized as part of the Cyber Security knowledge track, it doesn’t really cover only those aspects. For freshers or people new to the technical domain, it gives you bits and pieces of almost everything related to day-to-day work in data centers, cloud-based platforms, and end-user devices. So whoever you are or whatever part of the workforce you are in, you will certainly take away something after this.

Topics covered in the Exam

Now like I said exam covers almost everything, hence same goes for subjects one must learn to get certified.

Domain% of Exam
Domain 1: Threats, Attacks, and Vulnerabilities24%
Domain 2: Architecture and Design21%
Domain 3: Implementation25%
Domain 4: Operations and Incident Response16%
Domain 5: Governance, Risk, and Compliance14%

Domain 1: Threats, Attacks, and Vulnerabilities

  • Social Engineering Techniques, Type of Attack Indicators (Application and Network)
  • Threat Actors, Vectors, and Intelligence Sources
  • Vulnerabilities and Security Assessments
  • Penetration Testing

Domain 2: Architecture and Design

  • Enterprise Security Architecture
  • Virtualization and Cloud Security, Secure Application Coding and Automation
  • AAA, Physical Security Controls and Cryptographic Concepts
  • Cybersecurity Resilience

Domain 3: Implementation

  • Secure Protocols, Host and Application Security
  • Wireless Security, Implementing Cloud Security
  • IAM and Implement AAA
  • PKI, Public Key Infrastructure

Domain 4: Operations and Incident Response

  • Tools for Organizational Security
  • Incident Response Policies, Processes, and Procedure
  • Risk Mitigation and Controls
  • Digital Forensics

Domain 5: Governance, Risk, and Compliance

  • Regulation and Frameworks
  • Risk Management
  • Organizational Policies

Exam Format

The exam consists of a maximum of 90 questions to be completed in 90
minutes. A minimum passing score is considered 750 out of a possible 900 points.

In Part 2, We will cover Domain 1 for this exam and key points.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s