📊 Save 20% on Corporate Finance Institute with code COURSEING20. FMVA, financial modeling & more. Claim the deal →

CompTIA SecurityX (CASP+) Certification 2026: CAS-005 Cost, Exam & How to Pass

Last updated: June 2026. Written by Josh Hutcheson, OnlineCourseing editor. See our review methodology.

QUICK VERDICT

Bottom line: If you’re researching “CASP+,” note that CompTIA renamed it — the certification is now CompTIA SecurityX, taken via the CAS-005 exam. It’s CompTIA’s master-level, hands-on cybersecurity credential for security architects and senior engineers. There’s no formal prerequisite, but it genuinely expects years of security experience. For the right senior practitioner it’s a strong, vendor-neutral, technical alternative to the more managerial CISSP.

  • Best for: experienced security engineers and architects who want a hands-on advanced cert
  • Cost: ~$509 for the CAS-005 exam voucher
  • Skip if: you’re early-career — earn Security+ and a few years of experience first.

See our top-rated SecurityX prep course →

CompTIA SecurityX is the credential most people still call “CASP+.” It sits at the top of CompTIA’s cybersecurity track as a master-level, vendor-neutral certification aimed at people who design and implement security solutions, not just operate them. Unlike the management-focused CISSP, SecurityX stays technical and hands-on — the exam includes performance-based questions where you actually solve problems. This guide explains the rename, the CAS-005 exam, what it costs, where it fits in a security career, how it compares to CISSP, and how to prepare.

CASP+ is now CompTIA SecurityX

Before you spend money on the wrong online course, read this.

I've taken hundreds of online courses and certs. Get my honest Tuesday picks — plus reader-only deal alerts.

No spam. Unsubscribe anytime.

Here’s the part that confuses people. The certification long known as CASP+ (CompTIA Advanced Security Practitioner) has been rebranded as CompTIA SecurityX, part of CompTIA’s newer “Xpert Series” of advanced certifications. The current exam is CAS-005, which replaced the older CAS-004 CASP+ exam. It’s the same lineage and the same advanced level — just a new name and an updated exam. If you already hold CASP+ (CAS-004), it remains valid; if you’re certifying now, you take SecurityX via CAS-005, and any study materials you buy should target CAS-005, not CAS-004.

The CAS-005 exam and cost at a glance

Detail CompTIA SecurityX (CAS-005)
Questions Up to 90 — multiple-choice + performance-based
Time 165 minutes
Scoring Pass/fail (no scaled score)
Recommended experience ~10 years IT, incl. ~5 years hands-on security
Prerequisites None formally required
Exam cost ~$509 (voucher); confirm current CompTIA pricing
Validity 3 years; renew with continuing-education units (CEUs)

The CAS-005 exam is organized into four domains, weighted roughly evenly toward the technical end:

  • Governance, Risk & Compliance — about 20%
  • Security Architecture — about 27%
  • Security Engineering — about 31%
  • Security Operations — about 22%

The performance-based questions are what make SecurityX feel different from a multiple-choice-only exam — you’re expected to apply knowledge, not just recall it, which is why hands-on experience matters so much here.

What changed in CAS-005

CAS-005 isn’t just a renamed CAS-004 — CompTIA refreshed the content to match how enterprise security actually works now. The exam leans harder into security architecture and engineering (together they’re nearly 60% of the objectives), and modernizes coverage of cloud and hybrid environments, automation, zero-trust principles, and governance/risk/compliance. If you studied for or held the older CAS-004 CASP+, expect a meaningfully updated emphasis: less legacy on-prem, more cloud-native and automation-driven security design. The practical implication is simple — buy CAS-005 study materials, and treat older CASP+ resources as out of date.

Where SecurityX fits in a security career

SecurityX sits at the top of CompTIA’s cybersecurity pathway. The usual progression is: Security+ (foundational) → an intermediate cert like CySA+ (analyst) or PenTest+ (offensive) → SecurityX (advanced architect/engineer). There’s no rule forcing that order, and no formal prerequisite, but the exam is built on the assumption that you’ve already mastered the lower tiers and worked in the field. It maps to roles like security architect, senior security engineer, security consultant, and technical security lead — positions where you’re designing and integrating security across an enterprise.

A practical note: SecurityX is also approved under the U.S. Department of Defense’s workforce framework for certain advanced security roles, which keeps it relevant for government and defense-contractor positions.

SecurityX (CASP+) vs CISSP

This is the comparison most people weigh, and the distinction is real. CISSP (from ISC2) is broad and management-leaning — it’s the credential of choice for security leadership and requires five years of experience to certify. SecurityX stays technical and hands-on, with performance-based questions and no formal experience requirement to sit the exam. If your career is heading toward security management, CISSP is usually the stronger signal; if you want to stay an engineer or architect who actually builds and breaks things, SecurityX fits better. Plenty of senior practitioners eventually hold both. They’re complementary credentials, not substitutes — choose based on whether your path is technical depth or management breadth.

Is SecurityX worth it?

For experienced security professionals, yes. It’s one of the few advanced, vendor-neutral certs that stays genuinely technical, it’s recognized across enterprise and government hiring, and its hands-on format means it actually reflects capability rather than memorization. For senior engineers and architects, it tends to justify its cost through the roles and pay bands it helps you reach.

The honest caveat is the same as for any advanced cert: it delivers little without the experience behind it. The absence of a formal prerequisite doesn’t mean it’s an entry point — the exam assumes years of hands-on security work, and earning it early (if you could pass at all) wouldn’t carry the same weight in interviews. Treat it as a milestone that validates a senior technical track, not a shortcut into one.

How to prepare and pass

Because CAS-005 is heavy on application and performance-based questions, passive reading isn’t enough — you need structured coverage of all four domains plus realistic practice. The most efficient path for most candidates is a strong video course with built-in practice exams, supplemented by CompTIA’s own materials if your employer is paying.

BEST VALUE COURSE + PRACTICE

Jason Dion’s CompTIA SecurityX (CAS-005) Complete Course & Practice Exam is our pick. Dion is one of the most-enrolled security-certification instructors anywhere, and this course pairs full coverage of all four CAS-005 domains with practice questions in one package — aligned to the current exam, not the retired CAS-004. It’s rated 4.6 out of 5 across 5,600+ ratings with 34,000+ students, and was updated in June 2026. At Udemy’s usual sale price it’s a fraction of the exam voucher, making it an easy companion to your exam booking.

RECOMMENDED PARTNER — UDEMY

Udemy logo

CompTIA SecurityX (CAS-005) Complete Course & Practice Exam (Jason Dion)

Full coverage of all four CAS-005 domains plus practice exams, aligned to the current exam — 4.6★ from 5,600+ ratings, updated June 2026.

View the course

Affiliate partnership — we may earn a commission when you enroll via this link. We only recommend courses we’d send a friend to.

Two more resources worth knowing, on merit: CompTIA CertMaster Learn + Practice is the official self-study option — thorough and exam-matched, though pricier and most worthwhile when an employer covers it. And don’t skip hands-on labs: because CAS-005 is performance-based, time spent actually configuring and securing systems pays off more than extra reading. Drill practice questions until you’re comfortably passing before you book.

Booking and retakes. You schedule CAS-005 through Pearson VUE — either at a test center or online-proctored from home with a webcam and a clear workspace. If you don’t pass, CompTIA lets you retake the second attempt with no mandatory waiting period, but a third (and beyond) requires a 14-day wait between tries. Each attempt needs its own voucher, so the cheapest path to a pass is to be genuinely ready the first time — another reason the performance-based practice matters. As for timeline, most experienced security professionals study for two to three months; budget more if you’re thinner on hands-on architecture and engineering work.

Frequently asked questions

Is CASP+ the same as CompTIA SecurityX?

Yes. CompTIA rebranded CASP+ as CompTIA SecurityX, part of its Xpert Series of advanced certifications. The current exam is CAS-005, which replaced the older CAS-004 CASP+ exam. Same advanced level, new name.

How much does the SecurityX (CAS-005) exam cost?

The exam voucher is around $509 USD. CompTIA also sells bundles that add official training and practice materials for more. Confirm current pricing on CompTIA’s site, as it changes periodically.

Do I need prerequisites or experience?

No formal prerequisite, but CompTIA recommends roughly 10 years of IT experience including about 5 years of hands-on security. The exam’s performance-based questions assume real experience, so it’s not a beginner certification.

SecurityX or CISSP — which should I get?

Choose by direction. CISSP suits security management and leadership tracks; SecurityX suits technical, hands-on engineer and architect roles. Many senior professionals eventually hold both, as they signal different strengths.

Does SecurityX expire?

Yes — like other CompTIA certifications it’s valid for three years and renewed through continuing-education units (CEUs) or by earning a qualifying higher certification.

Related guides

Bottom line: CompTIA SecurityX (formerly CASP+) is a genuinely worthwhile advanced credential — for experienced security engineers and architects who want a hands-on, vendor-neutral cert. Study all four CAS-005 domains with a current course, get real lab time given the performance-based questions, and book the exam once you’re consistently passing practice tests.

Start SecurityX (CAS-005) prep →

SecurityX is one of the advanced certs in our guide to the best cybersecurity certifications.

Leave a Comment

Your email address will not be published. Required fields are marked *