Study Guide · SY0-701

CompTIA Security+ Study Guide

5 domains · 30 subtopics · weighted by the official SY0-701 exam guide

This is the written companion to the practice exams, a complete walk through everything SY0-701 covers, gathered in one place. If you have been working through questions and want the reasoning behind the answers, this is where it lives.

Security+ is the broad foundational security exam, and it rewards recognizing concepts and picking the right control or response for a scenario across a very wide surface. Expect a lot of acronyms and look-alike distinctions. The material spans general security concepts (the CIA triad, control types, zero trust, cryptography and PKI, change management), threats and vulnerabilities and the ways you mitigate them (threat actors, attack vectors, malware, indicators of compromise), security architecture (models, infrastructure, data protection, resilience, secure communication), security operations (hardening, monitoring, vulnerability and identity management, incident response), and program management (governance, risk, third-party risk, compliance, audits, awareness). Much of the difficulty is telling apart the things that sound alike. Does this scenario call for an IDS that watches and alerts, or an IPS that blocks inline? Is the question asking for a qualitative risk rating or a quantitative one with real numbers? Those small calls decide whole questions.

The guide follows the official domains at the real exam weighting, builds each mental model in plain language, and separates the look-alike options with comparison tables and decision trees, then closes every chapter with a cheat sheet. Start at the top, or pick a domain from the list beside the page.