CompTIA, a leading provider of IT training and certifications, today announced CompTIA SecAI+, a new professional certification focused on securing artificial intelligence (AI) systems and applying AI to cybersecurity. The launch, , addresses a growing need for skilled professionals capable of navigating the rapidly evolving landscape of AI-driven security threats.
The SecAI+ certification isn’t intended to replace existing cybersecurity credentials, but rather to complement them. According to CompTIA, it builds upon foundational skills validated by certifications like CompTIA Security+, CySA+, and PenTest+, providing a pathway for professionals to demonstrate advanced expertise in AI security.
The Cybersecurity-AI Trifecta
Dr. James Stanger, chief technology evangelist at CompTIA, describes SecAI+ as addressing a “cybersecurity-AI trifecta.” This encompasses three key areas: securing AI platforms themselves, leveraging AI to enhance existing security processes, and automating compliance and risk management with AI assistance.
The first element focuses on best practices, processes, systems, and tools to ensure the security of AI platforms and their functionality. This is critical as AI systems become increasingly integrated into core business operations, creating new attack surfaces, and vulnerabilities. The second element explores how AI can improve and streamline security tasks such as incident response, security analytics, threat intelligence, and penetration testing. Finally, the certification covers the responsible and ethical application of AI to automate critical compliance and risk management procedures, guided by human oversight.
Addressing the Urgent Need for AI Security Skills
The development of SecAI+ involved over 400 industry subject matter experts from around the globe, representing a diverse range of occupations and industries. This collaborative approach underscores the broad recognition of the need for specialized AI security skills. Katie Hoenicke, chief product officer at CompTIA, emphasized that as AI becomes more pervasive, securing these systems, managing related risks, and ensuring responsible AI governance are becoming “defining capabilities” for modern cybersecurity roles.
The certification’s vendor-neutral approach is a key differentiator. CompTIA states that SecAI+ applies across various cloud providers, AI platforms, development frameworks, and deployment environments. This focus on fundamental security principles, operational techniques, and governance models ensures relevance regardless of the specific tools or vendors used. This is a deliberate choice, reflecting the need for professionals who can adapt to a rapidly changing technological landscape.
What SecAI+ Validates
The SecAI+ certification validates a range of practical skills, including the ability to apply AI concepts to strengthen an organization’s cybersecurity posture. Professionals holding the certification will be equipped to secure AI systems using advanced controls and protections, safeguarding data, models, and infrastructure. They will also be able to leverage AI technologies to automate workflows, accelerate incident response, and scale security operations.
the certification covers navigating global governance, risk, and compliance (GRC) frameworks to ensure ethical and compliant AI adoption across industries. A crucial aspect of the curriculum is defending against AI-driven threats, such as adversarial attacks, automated malware, and the malicious use of generative AI. The certification also prepares professionals to integrate AI securely into DevSecOps pipelines and enterprise security strategies.
Exam Details and Preparation
The SecAI+ exam (CY0-001) is a 60-minute assessment consisting of up to 60 multiple-choice and performance-based questions. A passing score is 600 on a scale of 100-900. The exam is currently available in English. CompTIA recommends 3-4 years of IT experience, including at least two years of hands-on cybersecurity experience, along with holding certifications like Security+, CySA+, or PenTest+ (or equivalent).
To support exam preparation, CompTIA has released a suite of learning products, including CertMaster Study, CertMaster Labs, and CertMaster Perform. These resources are designed to provide practical, hands-on experience with AI security concepts and scenarios, building confidence in managing AI security responsibilities in real-world environments.
CompTIA anticipates the SecAI+ certification will be retired approximately three years after its launch, reflecting the rapid pace of innovation in the AI and cybersecurity fields. This planned retirement cycle underscores the importance of continuous learning and adaptation in this dynamic domain.
The introduction of CompTIA SecAI+ signals a significant step towards addressing the growing skills gap in AI security. By providing a vendor-neutral, practical certification, CompTIA aims to empower cybersecurity professionals to effectively defend against and leverage the power of AI in an increasingly complex threat landscape.
