What tools should candidates be familiar with in order to take the exam?
Candidates should know Wireshark, Bro and/or Snort at the very least.
Do I need to know a programming language for this exam, and if so, which one(s)?
It depends on your situation. XML is used to create the drivers in the AlienVault security information and event management (SIEM) platform, for example, and can be customized. However, your primary job is to identify vulnerabilities introduced on the network as a result of poor programming in languages like C and C++, which are harder to secure.
I have CompTIA A+ and CompTIA Network+. Can I go straight to CySA+ instead of getting CompTIA Security+?
You can, but it’s not recommended. Each CompTIA certification builds on the previous one, and skipping Security+ could leave a gap in your baseline cybersecurity skills. We recommend having a minimum of three to four years of hands-on information security or related experience before taking the CySA+ exam.
Why is CySA+ a separate certification rather than an enhancement of Security+?
CySA+ includes more analytics with a different focus to address the growing specialization in cybersecurity. Security+ is a baseline of general cybersecurity knowledge and skills.
How much does CySA+ overlap with CASP?
About 25 to 30 percent of the content overlaps, mainly under the topics of intrusion detection and vulnerability management.
How does CySA+ compare to other popular cybersecurity certifications?
CySA+ differs from others on the market because it’s a mid-level certification that focuses on security analytics for the security analyst job role. Many other certifications out there don't go into as much detail with analytics. CySA+ also focuses on defense, or “blue team,” cybersecurity skills rather than offense, or “red team,” skills.
I need to renew my Security+ certification. If I pass CySA+ or CompTIA Advanced Security Practitioner (CASP), will that renew it?
Yes, CySA+ and CASP both renew Security+, since they are considered higher-level certifications.