CompTIA SecurityX (formerly CASP+)
CompTIA
Expires: 2027-10-02
SecurityX (formerly CASP+) is an advanced cybersecurity certification for security architects and senior security engineers. It proves you have the skills to design, build, and implement secure solutions across complex environments. You’ll also show you can support a resilient enterprise while addressing governance, risk, and compliance needs.
The CASP+ certification is approved by the U.S. DoD, meets the directive 8140/8570.01-M requirements, and complies with ISO 17024 standards.
Four Knowledge Domains
The CompTIA SecurityX exam covers four major domains:
- Security Architecture (29%) - Cloud capabilities, network architecture, security boundaries, zero trust concepts
- Security Operations (30%) - Monitoring, data analysis, vulnerabilities, attack surface management, threat hunting
- Security Engineering and Cryptography (26%) - Cryptographic use cases and techniques, secure protocols
- Governance, Risk, and Compliance (15%) - Risk management, compliance frameworks, security policies
Key Topics
- Cloud security (CASB, shadow IT detection, shared responsibility model, CI/CD pipeline, container security)
- Network architecture (segmentation, VPN, API integration)
- Deperimeterization (SASE, SD-WAN)
- Zero trust implementation
- Cryptographic techniques (tokenization, code signing, digital signatures, hashing)
- SIEM and behavioral analysis
- Threat hunting methodologies
Exam Details
- Exam Code: CAS-004
- Questions: Maximum of 90 questions (multiple-choice and performance-based)
- Duration: 165 minutes
- Passing Score: 750 points (pass/fail)
- Cost: $466
Recommended Experience
- Minimum of ten years of general hands-on IT experience
- At least five years of broad hands-on IT security experience
- CASP+ is designed for practitioners, not managers
Certification Renewal
- Collect at least 75 Continuing Education Units (CEUs) in three years
- Or pass the most current version of the SecurityX exam
- Or earn a higher-level certification