analysts. The CASP+ certification is designed for security analysts and engineers as well as security operations center (SOC) staff, vulnerability analysts, and threat intelligence analysts. It focuses on security analytics and practical use of security tools in real-world scenarios.
The CASP+ exam is conducted in a format that CompTIA calls performance-based assessment. This means the exam uses hands-on simulations using actual security tools and scenarios to perform tasks that match those found in the daily work of a security practitioner. Exam questions may include many types of questions such as multiple-choice, fill-in-the-blank, multiple-response, drag-and-drop, and image-based problems.
CompTIA recommends that test takers have 10 years of information security–related experience before taking this exam. The exam costs $439 in the United States, with roughly equivalent prices in other locations around the globe. You can find more details about the CASP+ exam and how to take it at certification.comptia.org/certifications/comptia-advanced-security-practitioner
.
Study and Exam Preparation Tips
We recommend you use this book in conjunction with CompTIA Advanced Security Practitioner+ (CASP+) Study Guide. Read through chapters in the study guide and then try your hand at the practice questions associated with each domain in this book.
You should also keep in mind that the CASP+ certification is designed to test practical experience, so you should also make sure you get some hands-on time with the security tools covered on the exam. CompTIA recommends the use of NetWars-style simulations, penetration testing and defensive cybersecurity simulations, and incident response training to prepare for the CASP+.
Additional resources for hands-on exercises include the following:
Exploit-Exercises.com provides virtual machines, documentation, and challenges covering a wide range of security issues at exploit-exercises.com/.
Hacking-Lab provides capture-the-flag (CTF) exercises in a variety of fields at www.hacking-lab.com/index.html.
The OWASP Hacking Lab provides excellent web application–focused exercises at www.owasp.org/index.php/OWASP_Hacking_Lab.
PentesterLab provides subscription-based access to penetration testing exercises at www.pentesterlab.com/exercises/.
Because the exam uses scenario-based learning, expect the questions to involve analysis and thought, rather than relying on simple memorization. The questions in this book are intended to help you be confident that you know the topic well enough to think through hands-on exercises.
Taking the Exam
Once you are fully prepared to take the exam, you can visit the CompTIA website to purchase your exam voucher.
www.comptiastore.com/Articles.asp?ID=265&category=vouchers
CompTIA partners with Pearson VUE's testing centers, so your next step will be to locate a testing center near you. In the United States, you can do this based on your address or your ZIP code, while non-U.S. test takers may find it easier to enter their city and country. You can search for a test center near you at the Pearson Vue website, where you will need to navigate to “Find a test center.”
www.pearsonvue.com/comptia/
Now that you know where you'd like to take the exam, simply set up a Pearson VUE testing account and schedule an exam.
certification.comptia.org/testing/schedule-exam
On the day of the test, bring two forms of identification, and make sure to show up with plenty of time before the exam starts. Remember that you will not be able to take your notes, electronic devices (including smartphones and watches), or other materials in with you.
After the CompTIA Advanced Security Practitioner+ Exam
Once you have taken the exam, you will be notified of your score immediately, so you'll know if you passed the test right away. You should keep track of your score report with your exam registration records and the email address you used to register for the exam.
Maintaining Your Certification
CompTIA certifications must be renewed on a periodic basis. To renew your certification, you can either pass the most current version of the exam, earn a qualifying higher-level CompTIA or industry certification, or complete sufficient continuing education activities to earn enough continuing education units (CEUs) to renew it. CompTIA provides information on renewals via its website.
certification.comptia.org/continuing-education/how-to-renew
When you sign up to renew your certification, you will be asked to agree to the CE program's Code of Ethics, to pay a renewal fee, and to submit the materials required for your chosen renewal method.
You can find a full list of the industry certifications you can use to acquire CEUs toward renewing the CASP+ here:
certification.comptia.org/continuing-education/renewothers/renewing-casp
Using This Book to Practice
This book is composed of five domain-based chapters and two randomized test chapters to emulate the real test experience.
As you work through questions in this book, you will encounter tools and technology that you may not be familiar with. If you find that you are facing a consistent gap or that a domain is particularly challenging, we recommend spending some time with books and materials that tackle that domain in depth. This can help you fill in gaps and help you be more prepared for the exam.
CASP+ Domains
The following table shows how much weight is given to an objective on the exam.
Domain | Percentage of Exam |
1.0 Risk Management | 19% |
2.0 Enterprise Security Architecture | 25% |
3.0 Enterprise Security Operations | 20% |
4.0 Technical Integration of Enterprise Security | 23% |
5.0 Research, Development, and Collaboration | 13% |
Total | 100% |
Objectives Map
The following table shows where you can find an objective covered in this book.
Objective | Chapter |
1.0 Risk Management | |
1.1 Summarize business and industry influences and associated security risks. |
Chapter
|