As attackers have learned to evade traditional signature-based solutions, such as firewalls and anti-virus software, an analytics-based approach within the IT security industry is increasingly important for organizations. CompTIA CySA+ applies behavioral analytics to networks to improve the overall state of security through identifying and combating malware and advanced persistent threats (APTs), resulting in an enhanced threat visibility across a broad attack surface. It will validate an IT professional’s ability to proactively defend and continuously improve the security of an organization. CySA+ will verify the successful candidate has the knowledge and skills required to:
Utilize and apply proactive threat intelligence to support organizational security and perform vulnerability management activities
Apply security solutions for infrastructure management and explain software & hardware assurance best practices
Apply security concepts in support of organizational risk mitigation and understand the importance of frameworks, policies, procedures, and controls
Analyze data as part of continuous security monitoring activities and implement configuration changes to existing controls to improve security
Apply the appropriate incident response procedure, analyze potential indicators of compromise, and utilize basic digital forensics techniques
-Tier II SOC analyst
Threat intelligence analyst
Application security analyst
Incident response or handler
|Launch Date||February 15, 2017||April 21, 2020|
|Exam Description||The CompTIA Cybersecurity Analyst (CySA+) certification verifies that successful candidates have the knowledge and skills required to configure and use threat detection tools, perform data analysis and interpret the results to identify vulnerabilities, threats and risks to an organization, with the end goal of securing and protecting applications and systems within an organization.||The CompTIA Cybersecurity Analyst (CySA+) certification verifies that successful candidates have the knowledge and skills required to leverage intelligence and threat detection techniques, analyze and interpret data, identify and address vulnerabilities, suggest preventative measures, and effectively respond to and recover from incidents.|
|Number of Questions||Maximum of 85 questions|
|Type of Questions||Multiple choice and performance-based|
|Length of Test||165 minutes|
|Passing Score||750 (on a scale of 100-900)|
|Recommended Experience||Network+, Security+ or equivalent knowledge. Minimum of 3-4 years of hands-on information security or related experience. While there is no required prerequisite, CySA+ is intended to follow CompTIA Security+ or equivalent experience and has a technical, hands-on focus.||Network+, Security+ or equivalent knowledge. Minimum of 4 years of hands-on information security or related experience.|
|Languages||English, Japanese, and Simplified Chinese||English, Japanese, TBD - others|
|Retirement||English Retired: October 21, 2020
Simple Chinese Retirement: April 23, 2021
Japanese Retirement: July 26, 2021
|TBD – Usually three years after launch|
|Testing Provider||Pearson VUE
|Price||$370 USD (See all pricing)|
The new exam has been updated to address industry changes, as well as the need for security analysts to focus on software security and be more proactive with their defense and threat intelligence. Security Analysts must also ensure their tasks comply to IT regulatory standards that affect their daily work. With the end goal of proactively defending and continuously improving the security of an organization, CySA+ will verify the successful candidate has the knowledge and skills required to:
|EC-Council Certified Security Analyst (ECSA)||GIAC Continuous Monitoring Certification (GMON)||Certified Information Systems Auditor (CISA)|
|Performance Based Questions||✔|
|Exam Focus||Security analytics, intrusion detection and response||Pentesting Methodology||Defensible security and continuous security monitoring||Auditing and vulnerability assessment|
CompTIA offers a wealth of certification training that is designed for exam success. Find out more and explore all training options.
Train anywhere, anytime. Master all exam objectives through learning content that is enhanced with videos, flash cards and performance-based questions. Confirm your learning progress with an included practice test.
Supercharge your certification training with hands-on, browser-based virtual lab environments. Jump into the role of an administrator, complete basic to advanced tasks and quickly understand the impact of the system changes you make.
Go into your CySA+ certification exam with confidence. Adaptive exam preparation in this intelligent online training companion will reinforce what you already know and fill the gaps in areas you need to improve.
Developed by CompTIA for the CompTIA certification candidate, Study Guides are available in print or eBook format and packed with informative and engaging content tied to exam objectives.
Together with our partner ITProTV, CompTIA offers videos moderated by CySA+ experts who explain the exam objectives of CySA+ in a talk show format that is easy to follow.
Whether you’re looking for in-classroom or live online training, CompTIA offers best-in-class instructor-led training for both individuals and teams. You can also find training among CompTIA’s vast network of Authorized Training Partners.
Training for You Training for Your Groups CompTIA Training Partners
Keep your certification up to date with CompTIA’s Continuing Education (CE) program. It’s designed to be a continued validation of your expertise and a tool to expand your skillset. It’s also the ace up your sleeve when you’re ready to take the next step in your career.
Get the most out of your certification
Information technology is an incredibly dynamic field, creating new opportunities and challenges every day. Participating in our Continuing Education program will enable you to stay current with new and evolving technologies and remain a sought-after IT and security expert.
The CompTIA Continuing Education program
Your CompTIA CySA+ certification is good for three years from the date of your exam. The CE program allows you to extend your certification in three-year intervals through activities and training that relate to the content of your certification.
It’s easy to renew
You can participate in a number of activities and training programs, including higher certifications, to renew your CompTIA CySA+ certification. Collect at least 60 Continuing Education Units (CEUs) in three years and upload them to your certification account, and your CompTIA CySA+ certification will automatically renew.
Want more details? Learn more about the CompTIA Continuing Education program.
CEUs needed for renewal