CompTIA Cybersecurity Analyst (CySA+) is an IT workforce certification that
applies behavioral analytics to networks and devices to prevent, detect and
combat cybersecurity threats through continuous security monitoring.
Why is it different?
CompTIA CySA+ is the only intermediate high-stakes cybersecurity analyst
certification with both hands-on, performance-based questions and
multiple-choice questions.
CySA+ focuses on the candidates ability to not only proactively capture,
monitor, and respond to network traffic findings, but also emphasizes
software and application security, automation, threat hunting, and IT
regulatory compliance, which affects the daily work of security analysts.
CySA+ covers the most up-to-date core security analyst skills and upcoming
job skills used by threat intelligence analysts, application security
analysts, compliance analysts, incident responders/handlers, and threat
hunters, bringing new techniques for combating threats inside and outside of
the Security Operations Center (SOC).
About the exam
As attackers have learned to evade traditional signature-based solutions,
such as firewalls and anti-virus software, an analytics-based approach
within the IT security industry is increasingly important for organisations.
CompTIA CySA+ applies behavioral analytics to networks to improve the
overall state of security through identifying and combating malware and
advanced persistent threats (APTs), resulting in an enhanced threat
visibility across a broad attack surface. It will validate an IT
professional’s ability to proactively defend and continuously improve the
security of an organization. CySA+ will verify the successful candidate has
the knowledge and skills required to:
- Leverage intelligence and threat detection techniques
- Analyze and interpret data
- Identify and address vulnerabilities
- Suggest preventative measures
- Effectively respond to and recover from incidents
CompTIA CySA+ meets the ISO 17024 standard and is approved by U.S.
Department of Defense to fulfill Directive 8570.01-M requirements. It is
compliant with government regulations under the Federal Information Security
Management Act (FISMA). Regulators and government rely on ANSI accreditation
because it provides confidence and trust in the outputs of an accredited
program. Over 2.3 million CompTIA ISO/ANSI-accredited exams have been
delivered since January 1, 2011.