Establishing Pathways for a Cyber Security Learning Culture

CompTIA certifications are vendor neutral, have global recognition, and are aligned to key job roles. Hence it is recommended that organisations implement a pathways- based approach that would contribute to a Learning Culture and instill continuous professional development.

For example, a pathway for a Cyber Security Specialist would be as follows:

BeginnerIntermediateAdvancedExpert
CompTIA A+

CompTIA Network+

CompTIA Security+

CompTIA CySA+

CompTIA Pentest+

CompTIA Cloud+

CompTIA CASP+

 

NIS2 Minimum Measures & Linkages to CompTIA Solutions

NIS2 Minimum Measures
 
Decision Maker (non-
technical)
IT Operations Team (ITOps)Security Operations Team (SecOps)Technical & Security Leadership
Risk assessments and security policies for information systemsCloud Essentials+

A+

Network+

Cloud+

TestOut Routing & Switching Pro

Security+CASP+
A plan for handling security incidentsCloud Essentials+

A+

Network+

Cloud+

Security+

CySA+

CASP+

A plan for managing business operations during and after a security incident. This means that backups must be up to date. There must also be a plan for ensuring access to IT systems and their operating functions during and after a security incident.ITF+

A+

Network+

Cloud+

DataSys+

Server+

Linux+

TestOut Hybrid Server Pro: Advanced

TestOut Routing & Switching Pro

Security+

CySA+

CASP+
Security around supply chains and the relationship between the company and direct supplier. Companies must choose security measures that fit the vulnerabilities of each direct supplier. And then companies must assess the overall security level for all suppliers.  

Security+

PenTest+

CASP+
Policies and procedures for evaluating the effectiveness of security measures.  Cloud Essentials+

Network+

Cloud+

TestOut Hybrid Server Pro: Advanced

Security+

PenTest+

CASP+
Security around the procurement of systems and the development and operation of systems. This means having policies for handling and reporting vulnerabilities.  

Security+

CySA+

CASP+
Cybersecurity training and a practice for basic computer hygiene.

ITF+

Cloud Essentials+

A+

Network+

Cloud+

DataSys+

Server+

Linux+

TestOut Client Pro

TestOut Hybrid Server Pro: Core

TestOut Routing & Switching Pro

Security+

CySA+

PenTest+

CASP+
Policies and procedures for the use of cryptography and, when relevant, encryption.ITF+

A+

Network+

Cloud+

DataSys+

Server+

Linux+

TestOut Client Pro

TestOut Hybrid Server Pro: Core

TestOut Hybrid Server Pro: Advanced

TestOut Routing & Switching Pro

Security+CASP+
Security procedures for employees with access to sensitive or important data, including policies for data access. The company must also have an overview of all relevant assets and ensure that they are properly utilized and handled.ITF+

A+

Network+

Cloud+

DataSys+

Server+

Linux+

TestOut Client Pro

TestOut Hybrid Server Pro: Core

TestOut Hybrid Server Pro: Advanced

TestOut Routing & Switching Pro

Security+

CySA+

CASP+
The use of multi-factor authentication, continuous authentication solutions, voice, video, and text encryption, and encrypted internal emergency communication, when appropriate.ITF+

A+

Network+

Cloud+

Server+

Linux+

TestOut Client Pro

TestOut Routing & Switching Pro

Security+

CySA+

CASP+

 

Download the Full Mapping

Fill out the form for access to this detailed NIS2 mapping with CompTIA certifications.