comptia advanced security practitioner (casp) it professionals prepared to safeguard organizations...
TRANSCRIPT
CompTIA Advanced Security Practitioner (CASP)IT Professionals prepared to safeguard organizations worldwide
2Copyright (c) 2014 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org
CASP is CompTIA’s first mastery level exam that proves an individual’s advanced skills in IT security. The exam validates competency in enterprise security; risk management, procedure and legal; research and analysis; integration of computing, communications and business disciplines.
Next step after foundational
security training
Vendor neutral certification
Advanced-level security knowledge
ISO 17024 compliant
3Copyright (c) 2014 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org
Government Mandates
U.S. Department of Defense Directive 8570.01-M includes CASP
4Copyright (c) 2014 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org
CASP: 8570.01-M Approved Job Roles
CASP addresses the need for enterprise security skills in the following U.S. Department of Defense (DoD) job roles: IA Technical Level III IA Manager Level II IA Architect & Engineer Level I IA Architect & Engineer Level II
5Copyright (c) 2014 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org
Career Advancement for IT Professionals
Experience
• Minimum 10 years experience in IT administration
• 5 years hands on technical security experience
• Security Architect• Security Consultant• Network Security
Engineer• Information
Systems Security Engineer
Job Roles
6Copyright (c) 2014 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org
CASP Exam Details
Exam Requirement • 1 certification exam
Exam Numbers • CAS-001
• Performance-based and multiple choice• 165 minutes• 80 questions maximum
Exam Format
• Minimum 10 years experience in IT administration
• 5 years hands on technical security experienceRecommended Exp.
Languages • English
7Copyright (c) 2014 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org
CASP Objective Domains
Enterprise Security
Risk Management, Policy/Procedure, Legal
Research and Analysis
Integration of Computing, Communications and Business Skills
40%
24%
14%
22%
8Copyright (c) 2014 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org
Certification Landscape
Organization/Certification
CompTIACASP
(ISC)2
CISSPISACACISM
GIAC (SANS)GSLC
GIAC (SANS)GCED
Employee Level
Enterprise level, 5 yrs. security
experience with 10 yrs. in IT.
(DoD Tech Level III expects 4+ yrs.
security experience)
Mid- and Senior-level
Managers with strategic and
policy responsibilities.
IAT Level III, IAM Levels II, III and several others.
For experienced IS managers and
leaders. Helps them manage
security practices by supporting
processes so that the IS strategy is
aligned with organizational
goals and objectives.
IAM Levels II and III
For security professionals
with managerial or supervisory
responsibility for IS staff, "to
empower them to get up to
speed quickly on information
security issues & terminology" In GIAC Adv.
Management track. It appears in DoD 8570 IAM levels I, II and III.
Assesses advanced,
technical skills needed to defend
the enterprise environment and
protect an organization as a
whole.Placed in GIAC
Advanced/Security Administration
track. In DoD IAT Level III with
CASP.
Pricing (U.S.) $390 $599 $650 non-member
$1,049; $599 w/SANS
training
$1,049; $599 w/SANS
training
9Copyright (c) 2014 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org
CASP vs. Other Vendor-Neutral Certifications
CISSP has more policy and managerial topics covered under its objectives whereas CASP is more hands-on, technical and task oriented. One way to look at it is that CISSP explains ‘Why?’ and CASP lets you know ‘How?’
CISM is only offered a few times a year, are longer and more costly. CASP can be scheduled for whenever the certification candidate feels ready for the exam.
CASP includes performance-based items that require the exam taker to demonstrate competency by completing tasks in a simulation of security situations.
GIAC is significantly more expensive and has limited training options.
CASP is regularly used by U.S. military and government contractors , and increasingly by government personnel in other countries. It is recognized by the U.S. Dept. of Defense as one of the certifications that information assurance personnel in advanced technical or management jobs can take, to fulfill their certification requirement.
10Copyright (c) 2014 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org
Advancing Careers and Business Worldwide
“CASP occupies a strongly-needed niche”…“I feel that it’s one of (the) most important certifications that I hold.”
Weylin Piegorsch, Computer Sciences Corporation
“In my environment, military defense, the CASP is what they (service members and defense contractors) need for their highest level IA-III security admin privileges.”
Nadean Tanner, Ironhorse University