CompTIA Security +

Security Plus Domains

1. General Security Concepts (12%): Covers the "basics" like the CIA triad (Confidentiality, Integrity, Availability) and fundamental security controls.

2. Threats, Vulnerabilities, & Mitigations (22%): Focuses on identifying threat actors, analyzing common attack types (social engineering, malware), and finding ways to stop them.

3. Security Architecture (18%): Deals with the design of secure networks, data protection, and implementing Zero Trust principles.

4. Security Operations (28%): The largest section, focusing on hands-on tasks like incident response, monitoring, and using automation tools (SIEM/SOAR).

5. Program Management & Oversight (20%): Covers the "big picture," including risk management, compliance with frameworks like NIST, and governing security policies.