The CompTIA Advanced Security Practitioner (CASP) certification designates IT professionals with advanced-level security skills and knowledge.
The CASP certification is an international, vendor-neutral exam that proves competency in enterprise security; risk management; research and analysis; and integration of computing, communications, and business disciplines.
The exam covers the technical knowledge and skills required to conceptualize, design, and engineer secure solutions across complex enterprise environments. It involves applying critical thinking and judgment across a broad spectrum of security disciplines to propose and implement solutions that map to enterprise drivers. For more detailed information, view the exam objectives.
While there is no required prerequisite, the CASP certification is intended to follow CompTIA Security+ or equivalent experience and has a technical, hands-on focus at the enterprise level.
CompTIA is an ANSI accredited Certifier - 0731. The CASP program is included in the scope of this accreditation. The CASP certification may be kept current through the CompTIA Continuing Education program.
The lists of examples provided in bulleted format below each objective are not exhaustive lists. Other examples of technologies, processes or tasks pertaining to each objective may also be included on the exam although not listed or covered in this objectives document.
1.1 Distinguish which cryptographic tools and techniques are appropriate for a givensituation.
1.2 Distinguish and select among different types of virtualized, distributed and shared computing
1.3 Explain the security implications of enterprise storage
1.4 Integrate hosts, networks, infrastructures, applications and storage into secure comprehensive solutions
1.5 Distinguish among security controls for hosts
1.6 Explain the importance of application security
1.7 Given a scenario, distinguish and select the method or tool that is appropriate to conduct an assessment
2.1 Analyze the security risk implications associated with business decisions
2.2 Execute and implement risk mitigation strategies and controls
2.3 Explain the importance of preparing for and supporting the incident response and recovery process
2.4 Implement security and privacy policies and procedures based on organizational requirements.
3.1 Analyze industry trends and outline potential impact to the enterprise
3.2 Carry out relevant analysis for the purpose of securing the enterprise
4.1 Integrate enterprise disciplines to achieve secure solutions
4.2 Explain the security impact of inter-organizational change
4.3 Select and distinguish the appropriate security controls with regard to communications and collaboration
4.4 Explain advanced authentication tools, techniques and concepts
4.5 Carry out security activities across the technology life cycle
Click here to get more information about this class!
Click Here for Live Online Network+ Boot Camp
Live, Online, Self-Paced, Classroom - contact us for details on each.
Base Course. Best for refresher courses
Most popular self-pace option.
Our top rated trainign experience
As close to the classroom from home
I had a terrific instructor. His depth of knowledge was clearly evident. He approached each question raised by the students not only to answer, but to be sure the student understood the answer.
- John Hollan - AEH
Awesome! I couldn't have asked for a better teacher.
- Sergio Silva
Exceptional instructor and course, I would recommend it to anyone.
- Joaquin Fuentes
There are many of us entering these classes that are managers and not programmers. The step-by-step is very helpful for those that don't know Linux or C as well.
- Brant Bertrand - AEH
The course couldn't have been any better. Our instructor was very knowledgeable about the various topics discussed during the training and was able to provide various examples in order to help solidify course concepts.
- Richard Valdez
BNSF Railway Company
Instructor did a fantastic job of delivering a large set of very dense course material cogently to the class. She obviously had the material down cold and could easily break down elements of the different knowledge domains in clear explanations.
- Byron Caswell
Incredible instructor. The coursework covered 300 topics in 10 domains, and he was able to speak intelligently on all of them. Better, his teaching style was relaxed and informal, which lessened the feelings of impending doom about the exam we were about to undertake. He knew exactly which sections of the material to emphasize, when we needed a break, and in many cases was speaking ahead of the slides (he knew exactly what was coming up before turning the slides). Rare gem.
- Thomas Dunn
Georgia Tech Research Institute
The instructor was very knowledgeable about the pen testing and ethical hacking. He was great in delivering the lectures, lab and was very helpful in having us complete the capture the flag exercises. In addition, he provided valuable insight about security in general and pen testing in particular.
- Tijan Drammeh
University of Maryland University College
The instructor had an excellent demeanor and candor, very knowledgable about IT industry in general and many different fields in specific.
- Jose Rengel
**Candidates should have basic knowledge of vendor specific tools and technologies, as this knowledge may be required for the CompTIA CASP Certification Exam.
CASP Proposed Hardware and Software List