Security+ certification from CompTIA is an associate-level exam with a syllabus covering Threat intelligence, Vulnerability Assessment, and Risk mitigations to Physical and Endpoint device security.
Why one must pursue it?
What I really liked about this cert is, that it doesn’t require any pre-requisites and despite being categorized as part of the Cyber Security knowledge track, it doesn’t really cover only those aspects. For freshers or people new to the technical domain, it gives you bits and pieces of almost everything related to day-to-day work in data centers, cloud-based platforms, and end-user devices. So whoever you are or whatever part of the workforce you are in, you will certainly take away something after this.
Topics covered in the Exam
Now like I said exam covers almost everything, hence same goes for subjects one must learn to get certified.
|Domain||% of Exam|
|Domain 1: Threats, Attacks, and Vulnerabilities||24%|
|Domain 2: Architecture and Design||21%|
|Domain 3: Implementation||25%|
|Domain 4: Operations and Incident Response||16%|
|Domain 5: Governance, Risk, and Compliance||14%|
Domain 1: Threats, Attacks, and Vulnerabilities
- Social Engineering Techniques, Type of Attack Indicators (Application and Network)
- Threat Actors, Vectors, and Intelligence Sources
- Vulnerabilities and Security Assessments
- Penetration Testing
Domain 2: Architecture and Design
- Enterprise Security Architecture
- Virtualization and Cloud Security, Secure Application Coding and Automation
- AAA, Physical Security Controls and Cryptographic Concepts
- Cybersecurity Resilience
Domain 3: Implementation
- Secure Protocols, Host and Application Security
- Wireless Security, Implementing Cloud Security
- IAM and Implement AAA
- PKI, Public Key Infrastructure
Domain 4: Operations and Incident Response
- Tools for Organizational Security
- Incident Response Policies, Processes, and Procedure
- Risk Mitigation and Controls
- Digital Forensics
Domain 5: Governance, Risk, and Compliance
- Regulation and Frameworks
- Risk Management
- Organizational Policies
The exam consists of a maximum of 90 questions to be completed in 90
minutes. A minimum passing score is considered 750 out of a possible 900 points.
In Part 2, We will cover Domain 1 for this exam and key points.