What’s New: CompTIA Security+

The latest version of CompTIA Security+ is available today (English only, initially).  As part of the ISO/ANSI accreditation for CompTIA Security+, we update the exam every three years and there was a lot of new information to cover. The exam is still aimed at an IT security professional who has a minimum of 2 years experience in IT administration with a focus on security, day to day technical information security experience, and broad knowledge of security concerns and implementation, but there is a new emphasis on operational risk.

 

The new exam covers more of the approach that organizations need to take to proactively address security risk control and mitigation. Things like security policies and procedures and training staff to comply with these policies is becoming much more important for today’s security professional. Sound familiar? This is what we have also seen in our 8th Annual Trends in Information Security

 

The new exam also includes current technologies like cloud computing and virtualization. Again, the focus is on the proactive elements like designing your network security to accommodate cloud and the potential threats associated with it. Plus, the exam includes more details on forensics. The table below lists topics covered or click here for a breakdown of exactly what is covered on the new exam.

 

Topic	% of Exam
Network Security	21%
Compliance & Operational Security	18%
Threats & Vulnerabilites	21%
Application, Data & Host Security	16%
Access Control & Identity Management	13%
Cryptography	11%
Total	100%

 

The new exam, CompTIA Security+ SY0-301, is now available at Pearson Vue and Prometric test centers worldwide.  (Study materials for the new exam will be available in the next few weeks. Watch for announcements or check our website.) Click here to find a testing center near you. Vouchers can be purchased from the CompTIA ​Store. The current version of the exam, CompTIA Security+ SY0-201, retires December 31, 2011.