Learning objectives, key topics, and related labs for every chapter.
The cybersecurity landscape, security team structure (SOC tiers, IR team, GRC), the CIA triad, NIST CSF, ISO 27001, CIS Controls, and incident response workflow phases.
Security policies and procedures, regulatory compliance frameworks, professional ethics, data governance, and organizational security responsibilities.
Windows security architecture (UAC, ACLs, Defender), Active Directory fundamentals, Group Policy hardening, Event Logs & auditing, and PowerShell for security.
Linux distros for security, command-line essentials, file system & permissions, user/group management, and Linux hardening best practices.
System monitoring tools, log analysis, authentication log parsing, brute-force detection, and system hardening best practices.
TCP/IP protocol stack, IP addressing & subnetting, DNS, DHCP, and network troubleshooting tools.
SOHO router configuration, NAT, port forwarding, DHCP configuration, wireless security, and router hardening.
Secure web browsing (HTTPS, TLS), browser security settings, client application hardening, VPN types & protocols.
Structured cabling standards, cable types (copper/fiber), patch panels, MDF/IDF, and physical network design.
Managed switches & VLANs, routing fundamentals, firewall types & ACLs, and network segmentation.
Type 1/2 hypervisors, virtual networking, containers, cloud service models (IaaS/PaaS/SaaS), and cloud security basics.
IDS/IPS fundamentals, Snort configuration, signature vs. anomaly-based detection, and SIEM integration.
NIST incident response phases, IR team roles, evidence collection, containment strategies, and post-incident review.
Vulnerability scanning tools, CVSS scoring, patch management, remediation strategies, and vulnerability assessment workflows.
Bash scripting basics, variables, loops, conditionals, functions, input/output, and script debugging.
Automating security audits, SSH brute-force detection scripts, cron scheduling, and scripting best practices for security operations.
Data classification & handling, symmetric/asymmetric encryption, hashing algorithms, PKI, and GPG encryption.
Backup types (full/incremental/differential), 3-2-1 rule, disaster recovery planning, RPO/RTO, and business continuity.
Database security fundamentals, access control models, SQL injection prevention, and compliance frameworks (HIPAA, GDPR, PCI DSS).
Threat intelligence (strategic/tactical/operational), IoCs, MITRE ATT&CK framework, malware types & analysis, and Wireshark.
Risk assessment formulas (SLE, ARO, ALE), qualitative vs. quantitative risk analysis, risk mitigation strategies, and risk registers.
Digital forensics procedures, chain of custody, forensic imaging, memory analysis, and NIST IR phase simulation.
Defense in depth, zero trust architecture, network segmentation, secure design patterns, and security architecture frameworks.
Career pathways (CompTIA, ISCΒ², GIAC), building a home lab, CompCert assessment strategies, A+ Cyber β Security+ domain mapping, and continuous learning resources.
Full-length 110-question practice assessment covering all nine A+ Cyber domains with scenario-based questions.
Detailed answer explanations for all 110 practice questions with domain cross-references.
Comprehensive glossary of all key cybersecurity terms used throughout the study guide.
Port tables, risk formulas, CVSS ranges, NIST IR phases, Linux permissions, Windows Event IDs, and command references.
10 structured lab exercises with step-by-step instructions, command examples, and reflection questions.
The A+ Cyber is designed as a direct pathway to Security+. Here’s how the domains align.
β οΈ Security+ Objective Update Notice: CompTIA refreshed the SY0-701 exam objectives in July 2026, adding coverage of generative AI security risks, CMMC 2.0 compliance, and expanded supply chain security content. The domain weights and objective details in Chapter 24 of this study guide reflect the pre-July 2026 framework. Before starting your Security+ preparation, visit comptia.org to download the current exam objectives and confirm any changes.
| A+ Cyber Domain | Study Guide Chapters | Security+ Domain(s) |
|---|---|---|
| 1 β Cybersecurity Support Roles | Chapters 1β2 | 5.0 Security Program Management |
| 2 β Managing Systems | Chapters 3β5 | 4.0 Security Operations |
| 3 β Secure Network Clients | Chapters 6β8 | 3.0 Security Architecture |
| 4 β Enterprise Campus Networks | Chapters 9β11 | 3.0 Security Architecture |
| 5 β Cybersecurity Controls | Chapters 12β14 | 1.0 General Security Concepts, 4.0 Security Operations |
| 6 β Automation Scripting | Chapters 15β16 | 4.0 Security Operations |
| 7 β Protecting Data | Chapters 17β19 | 1.0 General Security Concepts, 5.0 Security Program Management |
| 8 β Analyzing & Responding to Threats | Chapters 20β22 | 2.0 Threats, Vulnerabilities & Mitigations, 4.0 Security Operations |
| 9 β Building a Cybersecurity Foundation | Chapters 23β24 | 3.0 Security Architecture, 5.0 Security Program Management |