CompTIA has begun the process to refresh the content of the CompTIA Security+ exam. The goal of the content refresh is to make the technology covered in the exam more current to more accurately reflect security issues faced by the IT industry today.
CompTIA Security+ validates knowledge of communication security, infrastructure security, cryptography, operational security and general security concepts. The refresh will include changes to the test questions only; the exam objectives will not change. CompTIA Security+ is still a relevant and even vital certification for those looking to work in any aspect of IT security.
According to Security+ Product Manager, Carol Balkcom, the refreshed exam should be live by the end of 2006. This is very similar to what ISC2 does for the CISSP exam. There will be no new exam released, but as the security landscape changes, new questions will eventually make their way into the exam.
Being a Security+ SME (Subject Matter Expert), I helped write a number of the new questions. This prevents me from providing any information on specific questions, but rest assured that many of the new malware scurges hitting us on a daily basis will now be covered on this entry level IT security exam. As with any certification, Security+ will not make you an expert, but I highly recommend this credential to those just getting into security. It's a great overview and introduction to the field.
If you're interested in my experience as an SME for CompTIA, take a look at My Week as a Smee on our sister site, CSP Magazine.