Originally published 2023. Updated March 2026 to reflect current certification options, AI credentials, and market conditions.
Passing your CompTIA A+ is a real accomplishment, and it opens up several different directions depending on where you want to take your career. The challenge isn’t finding options. There are plenty. The challenge is figuring out which path actually fits your goals, because the wrong choice costs you time, money, and momentum. After years of developing curriculum and working with students across every experience level, here’s how I’d think through it.
One thing worth saying upfront: this list looks different in 2026 than it did a few years ago. AI credentials have entered the picture in a real way, and the cloud landscape has matured considerably. If you’ve seen an older version of this kind of article floating around, some of those recommendations are due for a fresh look.
The A+ proves you can do the work. What comes after it determines what kind of work you spend your career doing.
Networking: CompTIA Network+ and Cisco CCNA
If the connectivity and infrastructure side of A+ was what held your attention, Network+ is the natural next step. It covers network technologies, configuration, management, and troubleshooting at a level that builds real competence, not just exam knowledge. It’s vendor neutral, which matters because you’re learning how networking works rather than how one company’s product works.
Cisco’s CCNA is the other name that comes up constantly in this conversation. It’s more specific and more demanding than Network+, and enterprise employers in networking-heavy environments frequently list it as a requirement. Some people go Network+ first and then CCNA. Others skip straight to CCNA. If you’re newer to networking concepts, going in order makes the material land better. If you’ve got solid hands-on experience already, the CCNA alone is a reasonable move.
Cybersecurity: Security+ Is Still the Entry Point
Security+ remains the most common certification after A+ for people heading toward cybersecurity. It’s a DoD 8570 requirement, which means it appears on job descriptions for federal and defense-related roles constantly. CompTIA has kept it current: the SY0-701 version covers cloud security, identity management, and automation more substantively than earlier versions did. If SOC analyst, security administrator, or anything with “security” in the title is where you’re heading, Security+ belongs on your list.
Beyond Security+, the path splits based on what you actually want to do day to day. Security management and governance roles tend to lead toward CISM or CISSP further down the road. More technical roles lead toward penetration testing or cloud security credentials. Worth taking the time to think through which direction fits before committing, since the day-to-day work is genuinely different. This breakdown of entry-level cybersecurity paths is a useful read if you’re still working that out.
Cloud Computing: AWS, Azure, and Google Cloud
Cloud is where a significant portion of current IT job growth sits, and the three major providers each have foundational certifications designed specifically for people coming into the field. AWS Certified Cloud Practitioner, Microsoft Azure Fundamentals (AZ-900), and Google Cloud Digital Leader are all reasonable entry points. None of them are deeply technical, but they establish the vocabulary and conceptual framework you need before moving into the more specialized tiers.
Which provider to focus on usually comes down to what the employers in your area are running. Enterprise environments are often heavily Microsoft, which makes Azure credentials particularly practical. AWS has the largest overall market share in cloud infrastructure. If you’re genuinely undecided between cloud and cybersecurity as a direction, it’s worth reading through the tradeoffs before committing to a vendor track. The two fields overlap more than people expect, but the day to day work is different enough that it matters which one you prioritize first.
Virtualization credentials like VMware Certified Professional are still relevant in enterprise environments that run significant on-premises infrastructure alongside cloud. If you know your target employer runs a hybrid environment, it’s worth checking what they’re actually using before choosing a track.
Linux and Operating System Specialization
Linux runs a significant portion of the world’s servers, and knowing it well opens roles that are closed to Windows-only technicians. CompTIA Linux+ covers administration, scripting, security hardening, and troubleshooting across distributions. It’s also directly relevant to cloud work, since most cloud infrastructure runs on Linux underneath regardless of which provider you’re using.
On the Windows side, Microsoft shifted away from the older broad certification tracks toward role-based credentials tied to specific products. If your work environment is heavily Microsoft, the relevant credential now depends on what you’re actually supporting. Azure Administrator, Microsoft 365 Administrator, and similar role-based certs are where that path lives today.
What’s New Since 2023: AI Credentials
This section didn’t exist in the original version of this article because the credentials didn’t exist yet. AI tools are changing how IT work gets done, and the certification landscape has started catching up. CompTIA released the SecAI+ in early 2026, targeting security professionals who need to understand how AI systems are deployed, secured, and audited. ISACA launched its AAISM credential for AI security management at the enterprise level.
These aren’t first-step certifications after A+. They’re worth knowing exist because they signal where the field is heading and what skills employers will be looking for as AI becomes a standard part of IT infrastructure rather than a specialized topic. If you’re planning a multi-year certification roadmap, building toward AI literacy alongside your core technical credentials is worth factoring in now rather than catching up later.
IT Management and Project Roles
Not everyone wants to stay in a hands-on technical role long-term. If you’re drawn toward managing projects, teams, or IT programs, there’s a separate track worth knowing about. CompTIA Project+ is a reasonable starting point for IT project management. Certified ScrumMaster (CSM) is useful if your environment runs agile processes, which most software and product-adjacent teams do. Project Management Professional (PMP) is the more advanced credential for people serious about moving into project leadership.
For governance, risk, and compliance roles, ISACA’s CISA is the credential most associated with IT auditing and assurance. CISM covers information security management at the program level. These require work experience to obtain, so they’re longer-term targets rather than immediate next steps after A+, but knowing they exist helps you understand what roles you’re building toward and what experience you should be accumulating along the way.
What About a Degree?
A bachelor’s or master’s in computer science, information technology, or a related field is still a legitimate path, and for certain roles, particularly in larger organizations or government work, it carries weight that certifications alone don’t. That said, it’s a significantly larger time and money investment than a certification, and the job market has shifted enough in the past decade that many employers weigh demonstrated skills and relevant credentials heavily alongside or instead of degree requirements.
The honest answer is that certifications and degrees aren’t mutually exclusive, and many people pursue both over the course of their careers. If a degree is on your horizon, certifications still help you in the near term while you’re working toward it. If a degree isn’t realistic right now, a well-chosen certification stack can take you further than most people assume. A look at the best certifications for people starting out is worth your time if you’re mapping this out.