CompTIA SecurityX (CAS-005)

A comprehensive, interactive textbook designed to prepare you for the CAS-005 certification exam using modern pedagogical principles.

Practice Problems →

Scenario-based cloze exercises featuring the textbook's characters. One per chapter.

Part I: Foundations of Security Governance & Risk

Chapter 1: Security Governance, Compliance, and Ethics

Policies, procedures, awareness training, and cross-jurisdictional compliance.

Chapter 2: Risk Management and Threat Modeling

Quantitative risk analysis, third-party risk, BCDR, and MITRE ATT&CK.

Chapter 3: Navigating Emerging Threats: AI

Deepfakes, prompt injection, and enterprise AI guardrails.

Part II: Designing Secure Architectures

Chapter 4: Security Architecture and Zero Trust

Microsegmentation, SASE, DLP, and resilient design.

Chapter 5: Identity and Access Management

Federation, SSO, RBAC, PAM, and Secrets Management.

Chapter 6: Secure Systems and Hardware Assurance

SAST/DAST, TPMs, Secure Enclaves, and SBoMs.

Chapter 7: Enterprise Cloud and Hybrid Security

CASBs, container orchestration, serverless, and API security.

Part III: Engineering and Applied Cryptography

Chapter 8: Cryptography and PKI

Post-Quantum Cryptography, envelope encryption, and mutual TLS.

Chapter 9: Network and Endpoint Engineering

EDR, DNSSEC, email security (DMARC), and TLS troubleshooting.

Chapter 10: Specialized, OT, and Legacy Systems

SCADA/ICS, IoT devices, and compensating controls.

Part IV: Operations and Incident Response

Chapter 11: Security Operations and Threat Hunting

SIEM log aggregation, UEBA, honeypots, and STIX/TAXII.

Chapter 12: Automation and Incident Response

SOAR playbooks, reverse engineering, CVSS, and forensics.