According to CompTIA, this Security+ certification exam is meant to verify that you have the knowledge and the skills required to:
- Assess the security posture of an enterprise environment and recommend as well as implement appropriate security solutions
- Monitor and secure hybrid environments, including cloud, mobile, and IoT
- Operating with an awareness of applicable laws and policies, including principles of governance, risk, and compliance
- Identify, analyze, and respond to security events and incidents
Which, to them, means you have the equivalence of two years of hands-on experience working in a security/systems administrator job role.
Look, I’m not going to argue with CompTIA and what they’re saying, and frankly, I’m not entirely sure how they came up with that, but, that’s what they’re saying.
What I’m saying is, I have seen people go from zero prior IT knowledge to getting certified with a few months’ worth of studying.
I’m not necessarily recommending that, I’m just telling you what I’ve seen first-hand.
So technically speaking, the pre-requisites for this exam are that you have 2-years worth of experience.
Practically speaking, no one is going to verify that you have that experience…no one is going to check your resume or references, or any of that. You can go take the exam with zero years of prior experience, and if you pass it, then you get it. That’s all there is to it.
Don’t overthink this part. If you’re here and you’re interested in getting the certification, just keep in mind that you will need more time to study the less experience you have.
Now that I’ve said that, let’s get to it!