Expert-level certification for senior security practitioners. Interactive study guides for all 4 domains, plus a SecurityX vs CISSP decision tool.
CompTIA SecurityX (CAS-005) launched December 17, 2024 as the rebrand of CASP+ (CAS-004, retired June 2025). It's CompTIA's expert-level security certification โ part of the new Xpert Series alongside DataX and CloudNetX.
Security Engineering is the largest domain at 31% โ and it has the most new content (post-quantum crypto, AI/ML security, CI/CD). Start with GRC for conceptual grounding, then work up by weight.
Secure DevOps/CI/CD, modern + post-quantum cryptography, AI/ML security, legacy system hardening.
Zero trust, SASE, cloud security models, network microsegmentation, PKI, and identity federation.
SIEM/SOAR, vulnerability management, incident response & forensics, threat hunting with MITRE ATT&CK.
NIST CSF/RMF, ISO 27001, compliance-as-code, STRIDE threat modeling, third-party & supply chain risk.
Answer 5 questions and get a personalized recommendation, side-by-side comparison table, interactive decision matrix, and study plans for both paths.
CompTIA recommends starting with GRC (Domain 4) to build conceptual grounding, then working through the larger domains. Each page follows a 4-tab structure:
