WEBVTT 00:00.229 --> 00:04.260 >> CASP+ overview. In this lesson, 00:04.260 --> 00:05.700 we're going to define who 00:05.700 --> 00:07.920 the CASP+ certification is for, 00:07.920 --> 00:09.570 we're going to describe the level of 00:09.570 --> 00:12.540 knowledge necessary for this certification, 00:12.540 --> 00:15.675 we're going to explain the exam questions and scoring, 00:15.675 --> 00:18.600 and finally, we will go over the CASP+ mindset. 00:18.600 --> 00:23.040 Let's get started. The CASP+ level of 00:23.040 --> 00:25.170 knowledge described by CompTIA is 00:25.170 --> 00:28.425 a minimum of 10 years of general hands-on experience, 00:28.425 --> 00:30.030 with at least five years of 00:30.030 --> 00:32.280 broad hands-on security experience. 00:32.280 --> 00:34.380 That covers quite a wide range 00:34.380 --> 00:36.135 of things that you might need to know about. 00:36.135 --> 00:38.370 For example, it'd be 00:38.370 --> 00:40.320 a good idea to have a solid understanding 00:40.320 --> 00:42.030 of the OSI model, 00:42.030 --> 00:45.350 TCP/IP, and then common ports such as RDP, 00:45.350 --> 00:49.400 SMB, DHCP, DNS, that type of thing. 00:49.400 --> 00:53.330 You might see port numbers with services on the test. 00:53.330 --> 00:55.220 You also need to be pretty good at 00:55.220 --> 00:57.530 designing and maintaining corporate networks. 00:57.530 --> 00:59.825 For example, switches, routers, 00:59.825 --> 01:03.770 firewalls, and setting up servers and workstations. 01:03.770 --> 01:06.350 You also need to have at least some experience or 01:06.350 --> 01:09.800 understanding of disaster recovery and backup systems. 01:09.800 --> 01:11.720 Also, having a knowledge of 01:11.720 --> 01:13.850 firewalls is a very good start. 01:13.850 --> 01:15.620 While the test doesn't go very 01:15.620 --> 01:18.485 specifically into the configuration of firewalls, 01:18.485 --> 01:20.450 having an understanding of their purpose, 01:20.450 --> 01:22.055 at least at the basic level, 01:22.055 --> 01:23.540 will give you a really good leg up 01:23.540 --> 01:26.680 when you're going studying for the exam. 01:26.680 --> 01:29.295 Finally, basic cybersecurity concepts. 01:29.295 --> 01:31.130 While the whole exam is focused 01:31.130 --> 01:34.310 on a wide range of cybersecurity concepts, 01:34.310 --> 01:38.790 at least understanding the basics is a good start. 01:39.290 --> 01:42.675 Who is the CASP+ actually for? 01:42.675 --> 01:44.725 According to CompTIA, 01:44.725 --> 01:46.400 it is for security architects, 01:46.400 --> 01:49.700 security engineers, application security engineers, 01:49.700 --> 01:52.145 SOC managers, or SOC analysts. 01:52.145 --> 01:55.430 But a key point to remember is the CASP+ is the proof or 01:55.430 --> 01:59.105 the US Department of Defense directive 8140/ 01:59.105 --> 02:05.280 8570.01-M for the technical and management tracks. 02:06.770 --> 02:12.290 What salary can you expect by obtaining the CASP+? 02:12.290 --> 02:15.920 According to payscale.com, the average base salary for 02:15.920 --> 02:19.805 those with a CASP+ certification is $92,000 per year. 02:19.805 --> 02:23.375 Some positions had salaries up to $155,000 02:23.375 --> 02:26.865 while others were as low as $68, 000. 02:26.865 --> 02:28.730 Getting the certification is a good way 02:28.730 --> 02:31.340 to help you improve 02:31.340 --> 02:33.725 your current salary conditions or perhaps move to 02:33.725 --> 02:36.200 another position at another company 02:36.200 --> 02:38.450 where you could get a higher salary. 02:39.200 --> 02:41.630 Let's go over the exam. 02:41.630 --> 02:44.440 The exam has a maximum of 90 questions. 02:44.440 --> 02:46.435 The questions are both multiple-choice 02:46.435 --> 02:47.780 and performance-based. 02:47.780 --> 02:50.075 If you're not familiar with the performance-based, 02:50.075 --> 02:52.355 they're usually a drag-and-drop type scenario. 02:52.355 --> 02:54.485 This is where the port questions might come in. 02:54.485 --> 02:58.145 You may have to match the service that runs on the port. 02:58.145 --> 02:59.840 There is no grading, so you will 02:59.840 --> 03:01.295 not see your score at the end, 03:01.295 --> 03:02.885 like you may with other CompTIA test, 03:02.885 --> 03:04.400 it's either a pass or fail. 03:04.400 --> 03:07.515 The current version is CAS-004, 03:07.515 --> 03:10.300 and this was released in October, 2021. 03:10.300 --> 03:12.620 The exam can be taken online in 03:12.620 --> 03:15.870 a controlled situation or in testing centers. 03:17.120 --> 03:19.740 The CASP mindset. 03:19.740 --> 03:22.220 The key point to remember is that 03:22.220 --> 03:24.990 the CASP+ certification is 03:24.990 --> 03:28.955 a hands-on app for IT technicians and not managers. 03:28.955 --> 03:30.620 This is one thing that might 03:30.620 --> 03:33.275 differentiate it a little bit from the CISSP. 03:33.275 --> 03:35.090 The CISSP is more targeted 03:35.090 --> 03:36.890 towards managers or dealing with 03:36.890 --> 03:40.760 C-level executives on cybersecurity issues. 03:40.760 --> 03:43.400 The CASP+ exam is more focused on those that will 03:43.400 --> 03:46.450 be doing the actual cybersecurity work. 03:46.450 --> 03:48.000 From the CompTIA website, 03:48.000 --> 03:49.190 it says CASP+ is 03:49.190 --> 03:51.770 the only hands-on performance-based certification 03:51.770 --> 03:53.135 for advanced practitioners, 03:53.135 --> 03:54.950 not managers at 03:54.950 --> 03:57.325 the advanced skill level of cybersecurity. 03:57.325 --> 04:00.245 You are expected to be able to assess a network, 04:00.245 --> 04:01.895 design, and then implement 04:01.895 --> 04:04.860 appropriate cybersecurity solutions. 04:05.650 --> 04:08.105 This is a technical exam 04:08.105 --> 04:10.000 and it deals with technical concepts. 04:10.000 --> 04:12.920 If you focus on that and try not to 04:12.920 --> 04:14.400 let your mind wander about what 04:14.400 --> 04:16.310 is the question really asking me? 04:16.310 --> 04:17.720 This sounds like it might be 04:17.720 --> 04:19.700 management-related, it's probably not. 04:19.700 --> 04:22.140 It's almost always going to be of a technical nature, 04:22.140 --> 04:24.740 so find the best technical answer to give. 04:24.740 --> 04:27.290 Think of each question in terms of what 04:27.290 --> 04:29.570 is the best technical solution and what is 04:29.570 --> 04:34.545 best for your customer or company. Let's summarize. 04:34.545 --> 04:36.690 We reviewed the exam structure, 04:36.690 --> 04:38.240 we also went over the level of 04:38.240 --> 04:41.875 knowledge that you will need before taking the exam, 04:41.875 --> 04:44.495 and then we reviewed the CASP+ mindset. 04:44.495 --> 04:46.130 Hope this lesson was helpful for 04:46.130 --> 04:48.480 you, and I'll see you in the next one.