
Explore four domains of governance, risk and compliance; security architecture; security engineering; and security operations in CompTIA SecurityX Certification Training and align study with exam objectives.
Master security program management and documentation by aligning policies, procedures, standards, and guidelines with regulatory requirements, while enhancing awareness and training and the RACI framework.
Learn how governance frameworks like COBIT and ITIL align security with business and regulatory requirements, and leverage GRC tools for mapping, automation, compliance tracking, documentation, and continuous monitoring.
Learn how change and configuration management keep IT environments secure and compliant through formal change control, CMDB tracking, baselines, automated enforcement, and asset lifecycle practices.
Explore data governance across production, staging, development, and testing environments, applying encryption, access controls, data masking and synthetic data, and lifecycle management to ensure confidentiality, integrity, and availability.
Identify and assess risks through quantitative and qualitative analyses, implement mitigation with controls, and perform impact analysis, focusing on third-party risk using NIST SP 830, FAIR, ISO 27001, OCTAVE.
Explore risk considerations across confidentiality, integrity, availability, and privacy, and apply practical mitigations like encryption, access controls, privileged access management, backups, and incident response per global frameworks.
Learn how industry information security standards like PCI DSS, ISO/IEC 27000 series, and the Digital Markets Act shape secure system design through data protection, access controls, and risk-based governance.
Explore benchmarks, foundational best practices, and key reporting frameworks such as SOC 2, NIST CSF, CIS controls, and CSA to strengthen security governance and cloud risk management.
Explore global privacy regulations, including GDPR, CCPA, LGPD, and Coppa; learn their data protection requirements and security implications such as data minimization, access controls, breach notification, and privacy by design.
Explore cross jurisdictional compliance requirements for security and privacy, including eDiscovery, legal holds, due diligence, due care, export controls, contractual obligations, and GDPR across regions.
Categorize threat actor types and analyze their characteristics to assess risk and tailor defences. Explore nation states, cyber criminals, hacktivists, insiders, script kiddies, terrorists, and their motivations, resources, and capabilities.
Identify six major attack frameworks and models—Mitre attack, capec, cyber kill chain, diamond model, stride, and owasp—and learn how threat modeling informs defense design and risk assessment.
Explore attack surface determination through architecture reviews, data flows, and enumeration to map vulnerabilities. Model threats with abuse cases, anti-patterns, and attack trees to prioritize mitigations.
Explore legal and privacy implications, regulatory challenges, and threats to AI models, including AI-enabled attacks and risks of AI utilization, plus guardrails for AI-enabled assistants and digital workers.
Design resilient systems by strategically placing components to maximize uptime and data integrity, using firewalls, ips, ids, nac, vpn, wafs, proxies, api gateway, cdn, taps, and load balancing.
apply software and hardware assurance through testing, sbom, sca, and formal methods; analyze vulnerabilities with sast, dast, iast, and rasp, and verify hardware via attestation, certification, and health checks.
Master continuous integration and deployment with a secure ci/cd pipeline, including unit testing, linting, branch protection, and automated testing across canary, integration, and regression testing.
Explore secure architecture design through attack surface management, hardening, and defense in depth, with continuous visibility, data security design, DLP, data discovery, and hybrid and third-party integrations.
Explore access control technologies, provisioning and deprovisioning, federation, identity providers and service providers, single sign-on, conditional access, attestation, and Pdps and PEPs.
Explore foundational access control models such as RBAC, rule-based, ABAC, MAC, and DAC, and learn how they enforce identity-based rules and support data governance.
Master the public key infrastructure and its role in authentication, confidentiality, and non-repudiation, including certificate authorities, registration authorities, certificate revocation lists, ocsp stapling, templates, extensions, and deployment approaches.
Explore secure cloud capabilities by examining casb types, shadow it detection, ci/cd security, and Terraform and Ansible for config management, plus container, serverless, and api security.
Learn cloud data security across public, private, and hybrid environments, addressing exposure, leakage, remnants, and insecure storage; implement least privilege, encryption, DLP, CASB, and secure disposal.
Explore the shared responsibility model in cloud security across SaaS, PaaS, and IaaS, detailing provider versus customer duties. Highlight cross-cutting tasks such as IAM, data protection, encryption, and monitoring.
Discover how proactive, detective, and preventative cloud control strategies form a layered defense that reduces risk and supports continuous protection in dynamic cloud environments.
Integrate zero trust into secure architecture through continuous authorization, context-based authentication, and real-time risk checks. Learn asset identification and attestation, API validation, network segmentation, and de-perimeterisation to enforce security boundaries.
Master subject access control for users, processes, devices, and services—covering RBAC and MFA—and use identity management and device registration to troubleshoot access.
Explore conditional access as dynamic, context-aware security that uses user identity, device state, location, and time to grant or deny access, with device binding and compliance in cloud environments.
Explore secrets management in security engineering, including tokens, certificates, passwords, and keys, and learn rotation, deletion, and troubleshooting for exposure and expiration.
Explore identity and access management components, including biometrics, cloud IAM, and trust policies. Analyze authentication and authorization technologies such as SAML, OpenID Connect, OAuth, MFA, SSO, Kerberos, and 802.1X.
Master endpoint and server security through host-based controls, monitoring, and privilege management, covering EDR, ASR, SELinux, firewalls, and threat actor techniques to prevent data loss.
Explore network infrastructure security issues, including observability, TLS cipher mismatches, PKI challenges, DoS and DDoS, resource exhaustion, and ACL troubleshooting for secure, reliable networks.
Network misconfigurations cause outages and risks, from configuration drift and routing or switching errors to VPN failures; apply change management, infrastructure as code, and baselines with observability to resolve them.
Examine IDS and IPS issues, including rule misconfigurations, false positives/negatives, and placement; tune rules, test configurations, analyze baseline traffic, and correlate with Sims and EDR platforms for effective security.
Learn to secure the domain name system with dnssec, rr sig, dns key, and tsig. Defend against dns poisoning, spoofing, sinkholes, and secure zone transfers.
Explore how DKIM, SPF, and DMARC validate sender identity and prevent spoofing, and learn S/MIME to encrypt content and sign messages with troubleshooting guidance.
Explore hardware security foundations, including roots of trust, TPM, HSM, virtual TPM, secure and measured boot, secure enclaves, and tamper detection with self-healing hardware.
Protect specialized and legacy systems by applying OT security practices to SCADA, ICS, IoT, and embedded devices, using air gaps, network segmentation, firmware integrity checks, and anomaly detection.
Automate enterprise security across hybrid environments with scripting, infrastructure as code, containerization, auto containment, and security orchestration, automation and response, plus patching, vulnerability scanning, and workflow automation.
This lecture introduces the security content automation protocol (SCAP) and its core components (Oval, Xccdf, ECS, CPE, CVSS) and their use in automated vulnerability assessment and compliance.
Explore advanced cryptographic concepts, including post-quantum cryptography, key stretching and splitting, homomorphic encryption, forward secrecy, envelope encryption, secure multi-party computation, authenticated encryption with associated data, and mutual authentication.
Explore cryptographic use cases across data at rest, in transit, and in use, including secure email, blockchain, non-repudiation, data sanitization, anonymization, certificate based authentication and passwordless authentication, and key management.
Explore tokenization, code signing, cryptographic erase, obfuscation, and hashing to secure data across transit, at rest, and in use, while understanding digital signatures, serialization, and lightweight cryptography.
Explore security information and event management systems that provide real-time visibility, correlation, and analysis, then master event parsing, deduplication, retention, and false positives and negatives.
Analyze data aggregation to turn raw telemetry into detection and response indicators with static and dynamic correlation, audit log reduction, and prioritization.
Establish network, system, user, and application behavior baselines to detect anomalies and drive continuous monitoring, enabling rapid threat identification and reduced risk.
Integrate data sources, including third-party reports and logs, threat intelligence feeds, vulnerability scans, CVE details, and cloud security posture management data to enable timely threat detection and informed incident response.
Optimize alert fidelity and prioritization through effective alerting, reporting, and metrics, using visualization and dashboards to guide decision making and operational improvement.
Explore attacks and vulnerabilities in enterprise systems, including injection, cross-site scripting, unsafe memory use, race conditions, forgery, insecure configurations, embedded secrets, outdated software, poisoning, deserialization, weak ciphers, and implants.
Mitigate attacks by applying input validation, output encoding, and safe functions, then implement defense in depth with least privilege, least functionality, patching, code signing, encryption and indexing, and allow listing.
Adopt a proactive threat hunting and threat intelligence approach to detect stealthy adversaries and reduce dwell time, using STIX/TAXII, TIPs, and Sigma, Yara, Rita, Snort to share indicators of attack.
Explore threat intelligence sources from internal simulations to external feeds, including OSINT, dark web monitoring, and information sharing centers, while evaluating reliability and counterintelligence considerations.
Analyze data and artifacts through reverse engineering, volatile and non-volatile storage, network and host analysis, and metadata review to support evidence-based incident response, recovery, and cloud workload protection.
Explore malware analysis with static and dynamic analysis, safe detonation in isolated sandboxes, and IOC extraction to inform containment, detection, and threat intelligence, plus code stylometry, variant matching, and attribution.
Review the CompTIA Security (CAS-005) exam details, including format, timing, passing criteria, and objectives, then explore testing options and official resources on the CompTIA site.
Step into the highest levels of cybersecurity expertise with the all-new CompTIA SecurityX certification, previously known as CASP+ (CompTIA Advanced Security Practitioner). This comprehensive training course prepares you for the SecurityX CAS-005 exam, launching December 17, 2024 — and represents the pinnacle of technical cybersecurity certifications.
Why Enroll in This Course?
SecurityX isn’t just another certification — it’s a declaration of your readiness to tackle the most complex security challenges in modern enterprise environments. Designed for hands-on, technical professionals (not managers), SecurityX validates your ability to design, implement, and manage advanced cybersecurity solutions across cloud, on-premises, and hybrid infrastructures.
What You'll Learn:
How to assess an organization’s cybersecurity posture and lead implementation of enterprise-wide solutions
Design and engineer secure enterprise environments that meet both compliance and security objectives
Implement advanced threat detection, response strategies, and incident handling
Apply principles of governance, risk, and compliance (GRC) in real-world enterprise scenarios
Lead technical teams through the execution of security architecture and engineering initiatives
Align your expertise with the U.S. DoD 8140.03M work roles and ISO/ANSI 17024 standards
Who Is This Course For?
Senior security professionals with at least 10 years of IT experience and 5 years in cybersecurity
Cybersecurity engineers, analysts, and architects looking to validate their advanced skills
Individuals who have earned Security+ and are ready for the next step in their career
Government, defense, or regulated industry professionals seeking ANSI-accredited, DoD-compliant certification
Why SecurityX Stands Out
The only advanced-level, hands-on, performance-based cybersecurity certification
Covers both security architecture and engineering, bridging the gap between frameworks and implementation
Recognized by employers, regulators, and government agencies for its rigor and real-world applicability
CertMetrics auto-upgrades active CASP+ holders to SecurityX — no retesting required
Stay Ahead of the Threat Curve
As cyber threats evolve, so must your skills. SecurityX ensures you’re not just following security frameworks — you’re building and leading the solutions that protect critical systems and sensitive data.
Get ready to take on tomorrow’s security challenges — enroll now and begin your journey to becoming a certified SecurityX professional.