CompTIA Advanced Security Practitioner (CASP+) is the ideal certification for technical professionals who wish to remain immersed in technology, as opposed to strictly managing.

Why is CASP+ Different?

CASP+ is the only hands-on, performance-based certification for practitioners — not managers — at the advanced skill level of cybersecurity. While cybersecurity managers help identify what cybersecurity policies and frameworks could be implemented, CASP+ certified professionals figure out how to implement solutions within those policies and frameworks.

About the Exam

The new CASP+ (CAS-004) exam will launch August, 2021!

The CASP+ certification validates advanced-level competency in risk management, enterprise security operations and architecture, research and collaboration, and integration of enterprise security. The CASP+ exam covers the following:

  • Enterprise security domain expanded to include operations and architecture concepts, techniques and requirements
  • More emphasis on analyzing risk through interpreting trend data and anticipating cyberdefense needs to meet business goals
  • Expanding security control topics to include mobile and small-form factor devices, as well as software vulnerability
  • Broader coverage of integrating cloud and virtualization technologies into a secure enterprise architecture
  • Inclusion of implementing cryptographic techniques, such as blockchain, cryptocurrency and mobile device encryption 

CASP+ is compliant with ISO 17024 standards and approved by the US DoD to meet directive 8140/8570.01-M requirements. Regulators and government rely on ANSI accreditation, because it provides confidence and trust in the outputs of an accredited program. Over 2.3 million CompTIA ISO/ANSI-accredited exams have been delivered since January 1, 2011.

Man working in a room full of computers.

What Skills Will You Learn?



Analyze security risks and frameworks that come along with specific industry threats and organizational requirements and execute risk mitigation strategies.



Integrate network and security components and implement security controls for host, mobile and small form factor devices.



Implement incident response and recovery procedures and conduct security assessments using appropriate tools.



Integrate hosts, storage, networks and applications into a secure enterprise architecture using on-premise, cloud, and virtualization technologies.



Apply research methods to determine industry trends and their impact to the enterprise.

Organizations That Use CASP+


Jobs That Use CASP+

Security Architect

Technical Lead Analyst

Application Security Engineer

Security Engineer

Exam Details

Exam Codes CAS-003 CAS-004
Launch Date April 2, 2018 August, 2021
Exam Description

CASP+ covers the technical knowledge and skills required to conceptualize, engineer, integrate and implement secure solutions across complex environments to support a resilient enterprise.

CASP+ covers the technical knowledge and skills required to architect, engineer, integrate, and implement secure solutions across complex environments to support a resilient enterprise while considering the impact of governance, risk, and compliance requirements. 
Number of Questions Maximum of 90 questions
Type of Questions Multiple-choice and performance-based
Length of Test 165 Minutes
Passing Score This test has no scaled score; it’s pass/fail only.
Recommended Experience A minimum of ten years of experience in IT administration, including at least five years of hands-on technical security experience.   A minimum of ten years of general hands-on IT experience, with at least five years of broad hands-on security experience.
Languages English and Japanese English, Japanese to follow
Retirement  February, 2022 Usually three years after launch 
Testing Provider  Pearson VUE
Price $466 USD (See all pricing)

Get Practice Questions and Exam Objectives
I'm interested in receiving:

CASP+ CAS-003:
What’s in this version

CompTIA updated CASP+ in 2018 to continue to address current risks and incident response scenarios inherent with cyber warfare, modern hacking techniques and cloud migration.

How does CASP+ Compare?



(ISC)2 Certified Information Systems Security Professional (CISSP)

GIAC Certified Enterprise Defender (GCED)ISACA Certified Information Security Manager (CISM)
Performance Based Questions
Experience LevelAdvancedAdvancedAdvancedAdvanced
Exam FocusCybersecurity Practitioner SkillsCybersecurity Management SkillsCybersecurity Practitioner SkillsCybersecurity Management Skills
Vendor NeutralYes YesYes Yes


Exam Preparation

CompTIA offers a wealth of certification training designed for exam success. Find out more and explore all training options.

Study Guides for CASP+

Developed by CompTIA for the CompTIA certification candidate, study guides are available in print or eBook format and packed with informative and engaging content tied to exam objectives.



Instructor-Led Training

Whether you’re looking for in-classroom or live online training, CompTIA offers best-in-class instructor-led training for both individuals and teams. You can also find training among CompTIA’s vast network of Authorized Training Partners.


Training for You   Training for Your Groups   CompTIA Training Partners 


Keep your certification up to date with CompTIA’s Continuing Education (CE) program. It’s designed to be a continued validation of your expertise and a tool to expand your skillset. It’s also the ace up your sleeve when you’re ready to take the next step in your career.

Get the most out of your certification
Information technology is an incredibly dynamic field, creating new opportunities and challenges every day. Participating in our Continuing Education program will enable you to stay current with new and evolving technologies, and remain a sought-after IT and security expert.

The CompTIA Continuing Education program
Your CompTIA Advanced Security Practitioner (CASP+) certification is good for three years from the date of your exam. The CE program allows you to extend your certification in three-year intervals, through activities and training that relate to the content of your certification. Like CASP+ itself, CASP+ CE also carries globally-recognized ISO/ANSI accreditation status. 

It’s easy to renew
You can participate in a number of activities and training programs — including higher certifications — to renew your CASP+ certification. Collect at least 75 Continuing Education Units (CEUs) in three years and upload them to your certification account. Your CASP+ will automatically renew when you do this!

Want more details? Learn more about the CompTIA Continuing Education program.

iconHowToRenew CASP can be renewed.


CEUs needed for renewal

Renew Now

CompTIA Advanced Security Practitioner (CASP+) (CAS-003) Purchase Options

CompTIA CASP+ Exam Voucher
CompTIA CASP+ Exam Retake
CompTIA Labs for CASP+ (CAS-003)
eBook – The Official CompTIA CASP+ Self-Paced Study Guide (CAS-003)



Basic Bundle



Deluxe Labs Bundle



CASP+ occupies a strongly-needed niche. I feel that it’s one of the most important certifications that I hold.

Weylin Piegorsh,
Computer Sciences Corporation

In my environment, military defense, CASP+ is what service members and defense contractors need for their highest level IA-III security admin privileges.

Nadean Tanner,
Ironhorse University

The person with the certification is the one who is going to get hired.

Robert Blanchard,
director of support services, Aspen Skiing Co.

I needed to establish my career. In this profession, a person who has certifications is more recognized in the market.

Wanderley Martins,
CASP-certified Senior Security Specialist, Capgemini-Brazil