CySA+: Other certifications (Security+, PenTest+, CASP+)
Introduction
For anyone looking to become a cybersecurity analyst, CompTIA’s vendor-neutral CySA+ certification offers a pathway to gain the skills and knowledge needed to lead security operations in various enterprises. The intermediate/mid-career certification program lasts for three years and validates a person’s competency in using data analysis to identify threats, risks and vulnerabilities. In addition, the certification holder is also expected to be skilled in configuring and leverage threat-detection solutions, as well as securing companies’ applications and systems.
With that said, not everyone looking to break into the cybersecurity field need to start with CySA+. Depending on your level of experience, you can start with a lower level certification like Security+, take up an equivalent program like PenTest+ or aim for a higher-level exam like CASP+. Below is a detailed breakdown of each.
Lower level: Security+
CompTIA introduced this lower level vendor-neutral certification back in 2002. For more than a decade, the certification has validated the capabilities required to oversee and manage core security tasks involved in the information security profession. Individuals holding the Security+ certification are expected to be competent in:
- Application, data and host security
- Compliance and operational security
- Network security
- Threat and vulnerabilities
- Cryptography
- Identity management and access control
The exam for this certification is performance-based and comprises 90 multiple-choice questions. Candidates need to score a minimum of 750 points within an hour and a half to pass the exam. Although they aren’t required to fulfill any prerequisites to undertake this exam, CompTIA does offer first-time exam takers a few suggestions.
For example, gaining other core certifications like A+ and Network before taking the Security+ exam may provide candidates with the confidence needed to pass the test. Also, candidates are recommended to have at least two years of experience in IT administration, as well as some day-to-day (Read more...)
*** This is a Security Bloggers Network syndicated blog from Infosec Resources authored by Dan Virgillito. Read the original post at: http://feedproxy.google.com/~r/infosecResources/~3/cR3IO3Iu3mE/
