What Is on the CASP+ Exam?

CompTIA Advanced Security Practitioner (CASP+) is an IT certification for technical professionals who wish to remain immersed in technology as opposed to strictly managing cybersecurity programs.

CASP+ validates the following advanced-level competencies:

  • Risk management
  • Enterprise security operations and architecture
  • Research and collaboration
  • Integration of enterprise security

Successful candidates will have the knowledge around the following:

  • Operations and architecture concepts, techniques and requirements
  • Analyzing risk through interpreting trend data and anticipating cyber-defense needs to meet business goals
  • Security control topics to include mobile and small-form factor devices, as well as software vulnerability
  • Integrating cloud and virtualization technologies into a secure enterprise architecture
  • Implementing cryptographic techniques, such as blockchain, cryptocurrency and mobile device encryption

CASP+ is compliant with ISO 17024 standards and approved by the U.S. Department of Defense (DoD) to meet directive 8140/8570.01-M requirements.

How Many Questions Are on the CASP+ Exam?

The CASP+ exam has no more than 90 questions.

After completing the exam, you will be asked to fill out some optional exit survey information about your study practices and why you decided to get certified. This will consist of about 12 multiple choice questions.

What Types of Questions Are on the CASP+ Exam?

The CASP+ exam includes a combination of multiple-choice questions, drag-and-drop activities and performance-based items. The multiple-choice questions are single-and multiple-response. Performance-based items test your ability to solve problems in a simulated environment.

Remember to manage your time wisely when solving these problems on your exam. Most of the performance-based questions will appear at the beginning of the exam, and you won’t be able to see a clock when working on them.

Click here to learn more about performance-based questions or to try a sample of a performance-based question.

What Are the CASP+ Exam Domains and What Do They Cover?

The CASP+ exam includes the following domains and topics:

  • Risk Management: Summarize business and industry influences and associated security risks
  • Technical integration of Enterprise Security: Integrate cloud and virtualization technologies into a secure enterprise architecture
  • Enterprise Security Architecture: Analyze a scenario and integrate network and security components, concepts and architectures to meet security requirements
  • Research, Development and Collaboration: Given a scenario, apply research methods to determine industry trends and their impact to the enterprise
  • Enterprise Security Operations: Analyze a scenario or output, and select the appropriate tool for a security assessment

Click here to review the detailed exam objectives.

Ready to Advance Your Skill Level in Cybersecurity?

CompTIA now offers a number of exam training options for CASP+ to fit your particular learning style and schedule, many of which may be used in combination with each other as you prepare for your exam.

There’s a wealth of information to take you from deciding if CompTIA CASP+ is right for you, all the way to taking your exam. We’re with you every step of the way!