CompTIA CySA+
CompTIA Cybersecurity Analyst (CySA+) is an IT workforce certification that applies behavioral analytics to networks and devices to prevent, detect and combat cybersecurity threats.
Why is it different?
CySA+ is the only intermediate high-stakes cybersecurity analyst certification with performance-based questions covering security analytics, intrusion detection and response. High-stakes exams are proctored at a Pearson VUE testing center in a highly secure environment. CySA+ is the most up-to-date security analyst certification that covers advanced persistent threats in a post-2014 cybersecurity environment.
About the exam
As attackers have learned to evade traditional signature-based solutions, such as firewalls, an analytics-based approach within the IT security industry is increasingly important for most organizations. The behavioral analytics skills covered by CySA+ identify and combat malware, and advanced persistent threats (APTs), resulting in enhanced threat visibility across a broad attack surface.
CompTIA CySA+ is for IT professionals looking to gain the following security analyst skills:
- Perform data analysis and interpret the results to identify vulnerabilities, threats and risks to an organization.
- Configure and use threat-detection tools.
- Secure and protect applications and systems within an organization.
CompTIA CySA+ meets the ISO 17024 standard and is approved by U.S. Department of Defense to fulfill Directive 8570.01-M requirements. It is compliant with government regulations under the Federal Information Security Management Act (FISMA).
CompTIA Certification Pathway
CompTIA Cybersecurity Analyst (CySA+) focuses on defense through incident detection and response at the intermediate-skills level of the cybersecurity career pathway. Enter where appropriate for you. Consider your experience and existing certifications or course of study.
What Skills Will You Learn?

SECURITY ARCHITECTURE & TOOL SETS
Use data to recommend remediation of security issues related to identity and access management and recommend implementation strategy while participating in the Software Development Life Cycle (SDLC).

CYBER-INCIDENT RESPONSE
Distinguish threat data to determine incident impact and prepare a toolkit with appropriate forensics tools, communication strategy, and best practices as a response

INFRASTRUCTURVULNERABILITY MANAGEMENT
Implement vulnerability management process and analyze results of the scan

THREAT MANAGEMENT
Apply environmental reconnaissance techniques using appropriate tools, analyzing results, and implementing recommended response
Organizations that have contributed to the development of CySA+
Jobs that use CompTIA CySA+
IT Security Analyst |
Security Operations Center (SOC) Analyst |
Vulnerability Analyst |
Cybersecurity Specialist |
Threat Intelligence Analyst |
Security Engineer |
Cybersecurity Analyst |