AI Essentials and AI+ expansions

I did not attend the CompTIA conference in Atlanta because I was busy teaching a virtual Cloud+ class for US military members stationed in Germany.
That would have been cooler in Germany!
It doesn't make sense to fragment AI/ML courses and present specific use cases for them unless you have a solid general foundational course that covers the basics of AI/ML first. People need a foundation in data science and Python if they're going to work with AI/ML, and I don't see how they will be able to adequately cover that in a specific use case option such as AI PenTesting or AI SysOps.
Yes, that's why I'm so eager to see what they come up with. My feeling in Atlanta after I asked the panelists was that they are still figuring out how to do it. Maybe they are realizing that all those tiny add ons are not the right answer

CEU's for other certifications earned

In most places, you'd expect to focus on a specific role, but in Puerto Rico, it's different. You have to be prepared to handle much more than what the job description outlines. It’s a cultural thing here—you’re hired for one position, but you often end up managing multiple responsibilities. For example, I’ve had to do hands-on work, manage projects, collaborate with senior leadership, and lead a team, all at the same time. If you look at job ads here, people often complain that companies want to pay for one role but expect you to perform the work of three. That’s just how things tend to be.
It's like that here, but mostly with smaller companies. Larger organizations tend to have more specialized roles.

CEU's for other certifications earned

I've done the hands-on work. I was doing BC/DR during the lead-up to Y2K. I've built relational databases from scratch. I've built and maintained network infrastructures. I've built websites and maintained web servers. I've deployed software and done patching. I've configured various servers. And now I teach others how to do it. While helpful, none of those skills are required for management. Management requires skills to manage the people and the work. Project management, service management frameworks, time management, budgeting, forecasting, conflict resolution, collaboration with stakeholders, and communication become much more important than scripting in Bash.
In most places, you'd expect to focus on a specific role, but in Puerto Rico, it's different. You have to be prepared to handle much more than what the job description outlines. It’s a cultural thing here—you’re hired for one position, but you often end up managing multiple responsibilities. For example, I’ve had to do hands-on work, manage projects, collaborate with senior leadership, and lead a team, all at the same time. If you look at job ads here, people often complain that companies want to pay for one role but expect you to perform the work of three. That’s just how things tend to be.

CEU's for other certifications earned

I took the regular exam. People speculate on the grading of exam questions and make unsupported assumptions. I didn't even read the scenario and I passed the exam. It was not a make-or-break question. The same is true for PBQs on the other exams. If you do well on the multiple-choice questions, you can easily pass every CompTIA exam without answering a single PBQ.
That's good to know, as a matter of fact the CASP+ I think I did pretty well, from all the tests taken it had the shortest list of failed objectives, 5 to be exact and objective 4 - GRC wasn't even there.

AI Essentials and AI+ expansions

That is a great move. I don't know if you were in Atlanta. They explained the multi domain model, but I honestly don't remember much, other than they were thinking of being cert specific, like a course for AI directed at a Pentester, another directed as a Cyber Security Analyst and so on. I've seen two interview with James Stanger related to AI. But he just comments on the add ons and don't give a lot of information regarding what CompTIA will do.
I did not attend the CompTIA conference in Atlanta because I was busy teaching a virtual Cloud+ class for US military members stationed in Germany.

It doesn't make sense to fragment AI/ML courses and present specific use cases for them unless you have a solid general foundational course that covers the basics of AI/ML first. People need a foundation in data science and Python if they're going to work with AI/ML, and I don't see how they will be able to adequately cover that in a specific use case option such as AI PenTesting or AI SysOps.

CEU's for other certifications earned

I supervise people, but I’ve maintained hands-on involvement, just like many others I know. In my experience, I’m often the one the CISSP or CISM call on to do the heavy lifting, even though we work on the same floor and are seen as part of the top-level IT/cybersecurity chain, where managerial duties are typically expected. We’re clearly coming from different perspectives, and that’s normal—no two IT professionals take the same path. Regardless of how many letters are after my name, I’m on the side that knows how to do the work and actually gets it done.
It's not required that managers be able to do the work. If they're doing the work, they're not managing. It's two different skill sets. The further a person goes up the management chain, the less technical they have to be. Most CISOs are completely non-technical and would be a liability in a production environment. CISSPs/CISMs very rarely touch the technology hands-on because they're managing people who do.

I've done the hands-on work. I was doing BC/DR during the lead-up to Y2K. I've built relational databases from scratch. I've built and maintained network infrastructures. I've built websites and maintained web servers. I've deployed software and done patching. I've configured various servers. And now I teach others how to do it. While helpful, none of those skills are required for management. Management requires skills to manage the people and the work. Project management, service management frameworks, time management, budgeting, forecasting, conflict resolution, collaboration with stakeholders, and communication become much more important than scripting in Bash.

To pass CySA+, a solid understanding of Linux+ is crucial. Once again, you're focusing on the test-taking aspect, which some people on platforms like YouTube claim they can pass in just two weeks without any prior experience, relying on memorization rather than actual knowledge even though CompTIA says the test is for a 10 year old veteran. And if they pass it they can use the credential because you don't have to prove those 10 years of experience. My point is simple: if you're genuinely working in IT on a 9-5, any additional knowledge you acquire and validate through certification should be recognized, regardless of the certification level, as it complements your practical experience. The CompTIA model is good, but there is always room for improvement.

A solid understanding of Linux is only required if you're using Linux hands-on in your on-premise environment on a regular basis. If you're not, then you don't have to know anything about Linux. Same with Cisco. Same with Palo Alto. Same with VMWare. Same with Splunk. Same with every other vendor-specific technology.

The great thing about CompTIA is that it is vendor-neutral or vendor-agnostic. You don't have to know any vendor's technology. You get a deep and broad fundamental understanding of how the technology works and how it relates to other technologies. Knowing a specific command line tool or knowing a specific configuration setting on a router is not the focus. Knowing how things work is relevant. If you want to know the specifics of a single vendor tool or service, get that training as well. The different vendors do not cover the fundamental theory of how anything works even remotely as well as CompTIA does. Microsoft gives an extremely rushed and abridged explanation of cloud computing concepts in their MS Azure course, and then they do nothing but focus on specific technical skills with their technology.

CEU's for other certifications earned

Interesting, you're the first person I've heard of who passed that exam while skipping that section entirely. Most stories point to that as a significant part, especially in the simulation. Did you take the regular exam or the beta version?
I took the regular exam. People speculate on the grading of exam questions and make unsupported assumptions. I didn't even read the scenario and I passed the exam. It was not a make-or-break question. The same is true for PBQs on the other exams. If you do well on the multiple-choice questions, you can easily pass every CompTIA exam without answering a single PBQ.

AI Essentials and AI+ expansions

Wouldn't it be more efficient to develop a single AI/ML course, and include those subtopics as part of the certification?

I know ISACA has an AI Fundamentals certification, and CertNexus has a Certified Artificial Intelligence Practitioner certification.
That is a great move. I don't know if you were in Atlanta. They explained the multi domain model, but I honestly don't remember much, other than they were thinking of being cert specific, like a course for AI directed at a Pentester, another directed as a Cyber Security Analyst and so on. I've seen two interview with James Stanger related to AI. But he just comments on the add ons and don't give a lot of information regarding what CompTIA will do.
  • Like
Reactions: TIEN TRAN

CEU's for other certifications earned

CASP+ was intended for professionals with 10+ years of experience. At that point, hands-on work tends to decrease, and managerial work tends to increase. It's considered above traditional SOC work. Those skills can be developed with CySA.
I supervise people, but I’ve maintained hands-on involvement, just like many others I know. In my experience, I’m often the one the CISSP or CISM call on to do the heavy lifting, even though we work on the same floor and are seen as part of the top-level IT/cybersecurity chain, where managerial duties are typically expected. We’re clearly coming from different perspectives, and that’s normal—no two IT professionals take the same path. Regardless of how many letters are after my name, I’m on the side that knows how to do the work and actually gets it done.

To pass CySA+, a solid understanding of Linux+ is crucial. Once again, you're focusing on the test-taking aspect, which some people on platforms like YouTube claim they can pass in just two weeks without any prior experience, relying on memorization rather than actual knowledge even though CompTIA says the test is for a 10 year old veteran. And if they pass it they can use the credential because you don't have to prove those 10 years of experience. My point is simple: if you're genuinely working in IT on a 9-5, any additional knowledge you acquire and validate through certification should be recognized, regardless of the certification level, as it complements your practical experience. The CompTIA model is good, but there is always room for improvement.
  • Like
Reactions: precious

CEU's for other certifications earned

I skipped the question entirely because I didn't realize that I wouldn't be able to review it later. I never even read the scenario.

It didn't matter because I passed the exam without even reading it. It must have not been that essential.
Interesting, you're the first person I've heard of who passed that exam while skipping that section entirely. Most stories point to that as a significant part, especially in the simulation. Did you take the regular exam or the beta version?
  • Like
Reactions: precious

Throwback from CompTIA Partner Summit at Atlanta

I had the distinct pleasure of meeting @Stephen Schneiter and @Rick Butler , the dynamic duo behind CIN!!.
It was an exhilarating experience to connect with them in person. There's truly something special about face-to-face interactions that rocks and can not be replicated virtually.

View attachment 1938View attachment 1939
That was great! @Kwabena Fred

CIN TTT Series: Cloud+ CV0-004

That's what I thought, thanks. I think I'll wait a bit to watch the recordings so I don't inadvertently get an exam voucher that I can't use. Looking forward to the series, though!
I'm waiting on the results for the CloudNetX beta. I just finished the DataX TTT and am waiting on a voucher.. Then I've got Linux+ and I complete the entire set.

CEU's for other certifications earned

Maybe we’re approaching this exchange of ideas from two different perspectives—you’re focusing on what’s required to pass the exam, while I’m looking at it from the viewpoint of actual fieldwork and practical responsibilities of the certified person. So it's good to mention that one of the biggest challenges during the CASP+ exam was the Linux virtual machine task. It was a real "giant killer" for many candidates because without a decent Linux experience, navigating that portion of the exam was extremely difficult. That task really underscored how essential Linux skills are for CASP+ practitioners working in the field. I know a few people that took the exam 3 times and they claimed their "wall" was that VM. I heard they got it out of the exam to make it easier to pass. For me that VM was an easy task on the test.
I skipped the question entirely because I didn't realize that I wouldn't be able to review it later. I never even read the scenario.

It didn't matter because I passed the exam without even reading it. It must have not been that essential.

Like you explained, CISSP and CISM, focus more on managerial responsibilities, but CASP+ often requires practical technical skills to implement and troubleshoot security solutions. In my day-to-day work, many cybersecurity tasks—especially in SOC environments or during vulnerability assessments—require Linux skills. Unfortunately, I became Linux+ certified after I earned my CASP+, so due to CompTIA’s CEU structure, it’s a bit harder to use CEUs from Linux+ to count toward my CASP+ renewal. But reading the information you provided is helping me clear the water regarding how I can get the CEU's without hurting my pocket too much.

CASP+ was intended for professionals with 10+ years of experience. At that point, hands-on work tends to decrease, and managerial work tends to increase. It's considered above traditional SOC work. Those skills can be developed with CySA.
  • Like
Reactions: precious

CIN TTT Series: Cloud+ CV0-004

That is correct. You cannot retake an exam that you've already passed, even if you passed the beta version.
That's what I thought, thanks. I think I'll wait a bit to watch the recordings so I don't inadvertently get an exam voucher that I can't use. Looking forward to the series, though!

CEU's for other certifications earned

Maybe we’re approaching this exchange of ideas from two different perspectives—you’re focusing on what’s required to pass the exam, while I’m looking at it from the viewpoint of actual fieldwork and practical responsibilities of the certified person. So it's good to mention that one of the biggest challenges during the CASP+ exam was the Linux virtual machine task. It was a real "giant killer" for many candidates because without a decent Linux experience, navigating that portion of the exam was extremely difficult. That task really underscored how essential Linux skills are for CASP+ practitioners working in the field. I know a few people that took the exam 3 times and they claimed their "wall" was that VM. I heard they got it out of the exam to make it easier to pass. For me that VM was an easy task on the test.

Like you explained, CISSP and CISM, focus more on managerial responsibilities, but CASP+ often requires practical technical skills to implement and troubleshoot security solutions. In my day-to-day work, many cybersecurity tasks—especially in SOC environments or during vulnerability assessments—require Linux skills. Unfortunately, I became Linux+ certified after I earned my CASP+, so due to CompTIA’s CEU structure, it’s a bit harder to use CEUs from Linux+ to count toward my CASP+ renewal. But reading the information you provided is helping me clear the water regarding how I can get the CEU's without hurting my pocket too much.
  • Like
Reactions: precious

Filter