Loading page
Security+ and CySA+ are both CompTIA cybersecurity certifications, but Security+ is the broad, foundational credential and CySA+ is the next step up: a hands-on analyst cert focused on detection and response. Most people earn Security+ first.
Last updated June 2026
| Aspect | Security+ | CySA+ |
|---|---|---|
| Vendor | CompTIA | CompTIA |
| Level | Foundational | Intermediate (analyst) |
| Focus | Broad baseline security across five domains | Detection, analysis, and response: security operations, vulnerability management, incident response |
| Recommended first | Network+ and about two years of experience | Security+ and 3 to 4 years of security experience (recommended) |
| Exam | One exam, up to 90 questions, 90 minutes | One exam, up to 85 questions, 165 minutes |
| Passing score | 750 on a 100 to 900 scale | 750 on a 100 to 900 scale |
| Cost (US, approx) | About $425 | About $425 |
| Valid for | 3 years | 3 years |
| Best for | Breaking into security, DoD 8140 baseline | SOC analyst, threat and vulnerability analyst, blue team |
Exam prices are approximate US list prices and change over time and by region and reseller. Check the certifying body for the current figure before you buy.
Start with Security+. It is the entry credential that proves you understand security broadly. CySA+ comes next, once you want to specialize as a SOC or security analyst: it goes deeper on monitoring, detection, and incident response. They stack well, Security+ then CySA+.
Reading the difference is a start. SecPlus Mastery drills it with over 1,000 practice questions, timed mock exams, and spaced review across all five SY0-701 domains, so it sticks for exam day.
Written to the CompTIA Security+ SY0-701 objectives. CompTIA and Security+ are trademarks of CompTIA, used here for identification only.