CompTIASY0-701Intermediate

CompTIA Security+

Independent, adaptive preparation aligned to the published SY0-701 exam blueprint. Learn to explain and apply the technology, not just memorize enough to pass.

See plans from $59

Take the official exam through CompTIA or its authorized delivery partner. SkillsTech Certified does not administer the exam or issue the CompTIA credential.

Track at a glance

Exam code
SY0-701
Version
SY0-701
Level
Intermediate
Blueprint domains
5
Lessons
0
Original practice questions
10
Flashcards
0
Last reviewed
2026-07-07
Next scheduled review
2026-08-07
Blueprint facts are re-verified against the official exam guide on the review schedule above.
Exam blueprint

Domains & weights

Every lesson and question is mapped to a domain and objective below, and every attempt records the exam version it was answered under.

Domain 1: General Security Concepts

12% of exam

Security controls, fundamental concepts (CIA, AAA, zero trust), change management, and cryptographic solutions.

  • Compare and contrast types of security controls
  • Summarize fundamental security concepts (CIA triad, AAA, zero trust)
  • Explain the importance of change management for security
  • Explain the purpose of cryptographic solutions (PKI, encryption, hashing, certificates)

Domain 2: Threats, Vulnerabilities, and Mitigations

22% of exam

Threat actors and vectors, vulnerability types, indicators of malicious activity, and mitigation techniques.

  • Compare and contrast common threat actors and motivations
  • Explain common threat vectors and attack surfaces
  • Explain types of vulnerabilities (application, cloud, hardware, supply chain)
  • Analyze indicators of malicious activity (malware, network, application attacks)
  • Explain mitigation techniques used to secure the enterprise

Domain 3: Security Architecture

18% of exam

Security implications of architecture models, securing infrastructure, protecting data, and resilience/recovery.

  • Compare security implications of architecture models (cloud, on-prem, IoT, ICS/SCADA)
  • Apply security principles to secure enterprise infrastructure
  • Compare strategies to protect data (classification, encryption, DLP)
  • Explain the importance of resilience and recovery (backups, high availability)

Domain 4: Security Operations

28% of exam

Hardening resources, asset management, vulnerability and identity management, monitoring, and incident response.

  • Apply security techniques to computing resources (hardening, secure baselines)
  • Explain security implications of asset management
  • Explain vulnerability management activities
  • Explain security alerting and monitoring concepts and tools (SIEM)
  • Implement and maintain identity and access management (MFA, privileged access)
  • Explain appropriate incident response activities

Domain 5: Security Program Management and Oversight

20% of exam

Security governance, risk management, third-party risk, compliance, audits, and security awareness.

  • Summarize elements of effective security governance
  • Explain elements of the risk management process
  • Explain third-party risk assessment and management
  • Summarize elements of effective security compliance
  • Explain types and purposes of audits and assessments
  • Implement security awareness practices (phishing, training, reporting)

Source & provenance

SkillsTech Certified is an independent certification-training and exam-preparation platform. Certification exams and official credentials are administered and issued by their respective providers. SkillsTech Certified is not affiliated with, endorsed by, or sponsored by AWS, Microsoft, Google, or any certification provider. Product names, certification names, and trademarks belong to their respective owners.