CASP+ Overview

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Time
8 hours 20 minutes
Difficulty
Advanced
CEU/CPE
9
Video Transcription
00:00
>> CASP+ overview. In this lesson,
00:00
we're going to define who
00:00
the CASP+ certification is for,
00:00
we're going to describe the level of
00:00
knowledge necessary for this certification,
00:00
we're going to explain the exam questions and scoring,
00:00
and finally, we will go over the CASP+ mindset.
00:00
Let's get started. The CASP+ level of
00:00
knowledge described by CompTIA is
00:00
a minimum of 10 years of general hands-on experience,
00:00
with at least five years of
00:00
broad hands-on security experience.
00:00
That covers quite a wide range
00:00
of things that you might need to know about.
00:00
For example, it'd be
00:00
a good idea to have a solid understanding
00:00
of the OSI model,
00:00
TCP/IP, and then common ports such as RDP,
00:00
SMB, DHCP, DNS, that type of thing.
00:00
You might see port numbers with services on the test.
00:00
You also need to be pretty good at
00:00
designing and maintaining corporate networks.
00:00
For example, switches, routers,
00:00
firewalls, and setting up servers and workstations.
00:00
You also need to have at least some experience or
00:00
understanding of disaster recovery and backup systems.
00:00
Also, having a knowledge of
00:00
firewalls is a very good start.
00:00
While the test doesn't go very
00:00
specifically into the configuration of firewalls,
00:00
having an understanding of their purpose,
00:00
at least at the basic level,
00:00
will give you a really good leg up
00:00
when you're going studying for the exam.
00:00
Finally, basic cybersecurity concepts.
00:00
While the whole exam is focused
00:00
on a wide range of cybersecurity concepts,
00:00
at least understanding the basics is a good start.
00:00
Who is the CASP+ actually for?
00:00
According to CompTIA,
00:00
it is for security architects,
00:00
security engineers, application security engineers,
00:00
SOC managers, or SOC analysts.
00:00
But a key point to remember is the CASP+ is the proof or
00:00
the US Department of Defense directive 8140/
00:00
8570.01-M for the technical and management tracks.
00:00
What salary can you expect by obtaining the CASP+?
00:00
According to payscale.com, the average base salary for
00:00
those with a CASP+ certification is $92,000 per year.
00:00
Some positions had salaries up to $155,000
00:00
while others were as low as $68, 000.
00:00
Getting the certification is a good way
00:00
to help you improve
00:00
your current salary conditions or perhaps move to
00:00
another position at another company
00:00
where you could get a higher salary.
00:00
Let's go over the exam.
00:00
The exam has a maximum of 90 questions.
00:00
The questions are both multiple-choice
00:00
and performance-based.
00:00
If you're not familiar with the performance-based,
00:00
they're usually a drag-and-drop type scenario.
00:00
This is where the port questions might come in.
00:00
You may have to match the service that runs on the port.
00:00
There is no grading, so you will
00:00
not see your score at the end,
00:00
like you may with other CompTIA test,
00:00
it's either a pass or fail.
00:00
The current version is CAS-004,
00:00
and this was released in October, 2021.
00:00
The exam can be taken online in
00:00
a controlled situation or in testing centers.
00:00
The CASP mindset.
00:00
The key point to remember is that
00:00
the CASP+ certification is
00:00
a hands-on app for IT technicians and not managers.
00:00
This is one thing that might
00:00
differentiate it a little bit from the CISSP.
00:00
The CISSP is more targeted
00:00
towards managers or dealing with
00:00
C-level executives on cybersecurity issues.
00:00
The CASP+ exam is more focused on those that will
00:00
be doing the actual cybersecurity work.
00:00
From the CompTIA website,
00:00
it says CASP+ is
00:00
the only hands-on performance-based certification
00:00
for advanced practitioners,
00:00
not managers at
00:00
the advanced skill level of cybersecurity.
00:00
You are expected to be able to assess a network,
00:00
design, and then implement
00:00
appropriate cybersecurity solutions.
00:00
This is a technical exam
00:00
and it deals with technical concepts.
00:00
If you focus on that and try not to
00:00
let your mind wander about what
00:00
is the question really asking me?
00:00
This sounds like it might be
00:00
management-related, it's probably not.
00:00
It's almost always going to be of a technical nature,
00:00
so find the best technical answer to give.
00:00
Think of each question in terms of what
00:00
is the best technical solution and what is
00:00
best for your customer or company. Let's summarize.
00:00
We reviewed the exam structure,
00:00
we also went over the level of
00:00
knowledge that you will need before taking the exam,
00:00
and then we reviewed the CASP+ mindset.
00:00
Hope this lesson was helpful for
00:00
you, and I'll see you in the next one.
Up Next