Reach the height of your cybersecurity career.

Just as organizations must consider multiple layers in their cybersecurity strategy, there is a growing need to build multiple layers of cybersecurity expertise. The practice of relegating cybersecurity responsibilities to technology generalists is quickly fading. (CompTIA State of Cybersecurity 2025)

Ready to unlock what’s possible as an experienced tech professional in a senior level digital security role? The right training and certification can help get you there.

CompTIA’s Advanced Security Practitioner Certification (CASP+) is now the new CompTIA SecurityX, the latest addition to CompTIA’s Xpert series and is the capstone certification in CompTIA cybersecurity pathway – designed for experts in the field, like you, who are ready to advance in their career.

Overview

CompTIA SecurityX serves as the capstone certification in the CompTIA Cybersecurity Career Pathway, intended to be the final certification for those seeking to prove their mastery of advanced cybersecurity skills.

Targeted at professionals with 5 to 10 years of experience, SecurityX represents the pinnacle of cybersecurity certifications. It is specifically designed for senior security engineers and security architects tasked with leading and improving an enterprise’s cybersecurity readiness.

Cybersecurity is not optional. It’s Operational. Don’t wait for a breach. Build the skills. Earn the badge. Lead the defense. Explore our Top Cybersecurity Skills for Malaysia’s Digital Future campaign.

Be the reason your organization survives the next cyberattack.

Skills Covered

  • Individuals who have passed this exam have proven that they can design and implement effective cybersecurity solutions on complex enterprise networks that exist on premises and in the cloud.
  • SecurityX certification communicates that learners have the mastery-level skills of an enterprise-level Security Architect and Senior Security Engineer. They can design, assess, fix, automate, and operate a secure enterprise network while complying with various governance, risk, and compliance requirements.
  • Earning the SecurityX certification gives learners an internationally recognized, vendor-neutral credential. They can demonstrate their competency in technical integration of enterprise business goals, secure systems design, senior engineering, and security architecture.
  • Information security threats are rising around the world, leaving organizations increasingly concerned over lack of adequately trained IT security staff. A SecurityX certification qualifies learners to assess, manage, and protect their enterprise-wide cybersecurity needs using the latest techniques and best practices.

Prerequisites

Target audience:

Minimum 10 years general hands-on IT experience, 5 years being hands-on security. It is recommended that candidates for SecurityX have undergone the following or have equivalent knowledge:

Target Audience

This CompTIA certification course is designed for IT professionals in the cybersecurity industry whose primary job responsibility is to secure complex enterprise environments. The target student should have real-world experience with the technical administration of these enterprise environments.

Course Curriculum

Module 1: Pre-Assessment
Module 2: Summarizing Governance, Risk, and Compliance
Module 3: Implementing Architecture & Design
Module 4: Understanding Security Engineering
Module 5: Applying Security Operations & Incident Response
Module 6: CompTIA SecurityX CAS-005 Practice Materials
Module 7: Practice Exam Module

Dates & Locations

Let’s make it work for you

Can’t find a date that fits? Need to train your whole team? Looking for a discount?
Speak to one of our learning experts today.

x Clear all selections

August 3, 2026 - August 7, 2026

Location: Kuala Lumpur
Modal: ILT
Availability: TBC
Exam:
RM 2381
RM 5500

August 3, 2026 - August 7, 2026

Location: Kuala Lumpur
Modal: VILT
Availability: TBC
Exam:
RM 2381
RM 5500

November 2, 2026 - November 6, 2026

Location: Kuala Lumpur
Modal: ILT
Availability: TBC
Exam:
RM 2381
RM 5500

November 2, 2026 - November 6, 2026

Location: Kuala Lumpur
Modal: VILT
Availability: TBC
Exam:
RM 2381
RM 5500
Trainocate exam and cert

Exam & Certification

CompTIA SecurityX (CAS-005).

SecurityX (formerly CASP+) covers the technical knowledge and skills required to architect, engineer, integrate, and implement secure solutions across complex environments to support a resilient enterprise while considering the impact of governance, risk, and compliance requirements.

  • Number of questions: maximum of 90 questions
  • Type of questions: Multiple-choice and performance-based
  • Length of text: 165 minutes
  • Passing score: This test has no scaled score; it’s pass/fail only.
  • Recommended Experience: Minimum 10 years general hands on IT experience, 5 years being hands-on security, with Network+, Security+, CySA+, Cloud+ and PenTest+ or equivalent knowledge

 

Training & Certification Guide

  • Exam Codes: CAS-005
  • Exam Description: CompTIA SecurityX covers the technical knowledge and skills required to architect, engineer, integrate, and implement secure solutions across complex environments to support a resilient enterprise while considering the impact of governance, risk, and compliance requirements
  • Number of Questions: Maximum of 90 questions
  • Types of Questions: Multiple choice and performance-based
  • Length of Test: 165 Minutes
  • Passing Score: This test has no scaled score; it’s pass/fail only.
  • Recommended Experience: Minimum 10 years general hands-on IT experience, 5 years being hands-on security, with Network+, Security+, CySA+, Cloud+ and PenTest+ or equivalent knowledge.
  • Languages: English for release, translations TBD
  • Retirement: Generally 3 years after launch
  • Testing Provider: Pearson VUE, Testing Centers, Test Online

Governance, risk, and compliance (20%)

  • Security program documentationpolicies, procedures, standards, and guidelines.
  • Program managementtraining (phishing, security, privacy), communication, reporting, and RACI matrix.
  • FrameworksCOBIT, ITIL, etc.
  • Configuration managementasset life cycle, CMDB, and inventory.
  • GRC tools: mapping, automation, and compliance tracking.
  • Data governanceproduction, development, testing, and QA.
  • Risk managementimpact analysis, risk assessment (quantitative vs. qualitative), third-party risk, confidentiality, integrity, and availability.
  • Threat modelingactor characteristics, attack patterns, and frameworks (ATT&CK, CAPEC, STRIDE).
  • Attack surfacearchitecture reviews, data flows, and trust boundaries.
  • Compliance strategies: industry-specific standards (PCI DSS, ISO/IEC 27000).
  • Security frameworks: NIST, CSF, CSA, and others.

Security architecture (27%)

  • Cloud capabilitiesCASB (API-based, proxy-based), shadow IT detection, shared responsibility model, CI/CD pipeline, Terraform, Ansible, container security, orchestration, and serverless workloads.
  • Cloud data securitydata exposure, leakage, remanence, insecure storage, and encryption keys.
  • Cloud control strategiesproactive, detective, and preventative controls; customer-to-cloud connectivity, service integration, and continuous authorization.
  • Network architecturesegmentation, microsegmentation, VPN, always-on VPN, and API integration.
  • Security boundariesasset identification, management, attestation, data perimeters, and secure zones.
  • DeperimeterizationSASE, SD-WAN, and software-defined networking.
  • Zero trust conceptsdefining subject-object relationships.

Security engineering (31%)

  • Automationscripting (PowerShell, Bash, Python), event triggers, IaC, cloud APIs, generative AI, containerization, patching, SOAR, and workflow automation.
  • Vulnerability management: scanning, reporting, and SCAP (OVAL, XCCDF, CPE, CVE, CVSS).
  • Advanced cryptographyPQC, key stretching, homomorphic encryption, forward secrecy, and hardware acceleration.
  • Cryptographic use casesdata at rest, in transit, and in use; secure email, blockchain, privacy, compliance, and certificate-based authentication.
  • Cryptographic techniquestokenization, code signing, cryptographic erase, digital signatures, hashing, and symmetric/asymmetric cryptography.

Security operations (22%)

  • Monitoring and data analysisSIEM (event parsing, retention, false positives/negatives), aggregate analysis (correlation, prioritization, trends), and behavior baselines (network, systems, users).
  • Vulnerabilities and attack surface: injection, XSS, insecure configurations, outdated software, and weak ciphers; mitigations include input validation, patching, encryption, and defense-in-depth.
  • Threat hunting:  internal intelligence (honeypots, UBA), external intelligence (OSINT, dark web, ISACs), TIPs, IoC sharing (STIX, TAXII), and rule-based languages (Sigma, YARA, Snort).
  • Incident response: malware analysis (sandboxing, IoC extraction, code stylometry), reverse engineering, metadata analysis, data recovery, and root cause analysis.

Frequently Asked Questions

SecurityX, part of CompTIA’s Xpert series, is an advanced, hands-on certification designed for senior cybersecurity practitioners—specifically security architects and senior security engineers.

Unlike CASP+, which focuses on managerial aspects of cybersecurity, SecurityX emphasizes practical skills for implementing security solutions within defined policies and frameworks. It ensures your expertise keeps pace with advancements and helps you stay ahead in the cybersecurity landscape.

If you aim to advance your career, achieve a higher salary, and apply your expertise more effectively, the new SecurityX certification is for you. It equips you with the skills and knowledge to lead in the most advanced roles in cybersecurity, helping you stand out in a competitive field.

The following job roles are directly connected to the skills and knowledge you gain from the CompTIA SecurityX certification:

Primary roles for SecurityX CAS-005

  • Cybersecurity risk analyst: Design, execute, and maintain security protocols for systems and networks.
  • Chief information security officer (CISO): Oversee IT infrastructure security and implement secure protocols and disaster recovery plans.
  • Senior security engineer: Build and maintain secure systems, configure firewalls, and perform threat analysis.
  • Security architect: Develop and maintain network security, guide cybersecurity policies, and use cryptography to protect data.
  • Security operations center (SOC) manager: Lead and manage 24x7x365 SOC tasks, perform threat management, and ensure compliance.

Secondary Job Roles for SecurityX

  • Data Center Support Technician
  • Telecommunications Technician
  • IT Support Manager
  • Tier II Support Technician

The CompTIA SecurityX certification also lasts for three years from the date you pass the exam. You can renew it through CompTIA’s Continuing Education (CE) program by earning CEUs through approved activities. Alternatively, you can renew by earning a higher-level CompTIA certification or passing the latest release of the SecurityX exam.

Yes, SecurityX is respected globally by cybersecurity hiring managers and is valuable for professionals seeking advanced roles in various industries and countries.

SecurityX ensures you have the advanced technical skills to design, implement, and manage secure solutions in on-premises, cloud, and hybrid environments. It prepares you to lead technical tasks, assess enterprise cybersecurity readiness, and respond to emerging threats. Uncover further insights.

SecurityX is vendor-neutral and uniquely combines security architecture and engineering. It validates hands-on, performance-based skills, making it ideal for diverse environments, including on-premises, cloud, and hybrid systems.

CT-SECAI: CompTIA SecAI

This cybersecurity credential from CompTIA is the global IT industry’s first comprehensive “expansion” certification focused on the security of artificial intelligence systems and the secure application of AI in cybersecurity operations.

Speak to a Training Consultant

All courses are HRD Claimable.
Get in touch with our team via the form or WhatsApp us on +6011-5119 6631

Preferred mode of training
Checkboxes