SecAI+
CompTIA Security AI+
SecAI+ is CompTIA's answer to the need for certified professionals who combine classic cybersecurity skills with AI-specific security knowledge – officially launched in February 2026. As an 'Expansion Cert,' it is explicitly designed as a complement to existing credentials such as Security+, CySA+, or PenTest+ and targets practitioners who must secure AI systems and defend against AI-enabled attacks. Its strength lies in the practice-oriented domain structure (40% Securing AI Systems) and strong regulatory alignment story around EU AI Act and US Executive Order on AI. Weakness: The certification is only a few weeks old; job postings rarely demand it explicitly, and the market for learning materials is still thin. No hands-on labs in the exam – adversarial ML topics are tested conceptually, not practically.
› Quality score
Four-axis SecProve rubric, each 0–10. SecProve editorial assessment — each axis carries a written justification so you can push back on any single call without dismissing the whole score.
› Built for these roles
› Exam format
CY0-001; max. 60; 60 minutes; Multiple Choice and Performance-Based Questions (PBQs); 600 of 900 points; Pearson VUE (online or test center); approx. 369 USD; ['Basic AI Concepts for Cyber (17%)', 'Securing AI Systems (40%)', 'AI-Assisted Security (24%)', 'AI Governance, Risk and Compliance (19%)']
First retake immediate; 14-day wait before each subsequent attempt. Retake fee equals the standard exam fee.
› Recertification
Validity period 3 years. Renewal via CompTIA Continuing Education (CE) program: Collection of CEUs through training, courses, publications, etc. Alternative: Passing a higher-level CompTIA certification or retaking the current exam version. Specific CEU count for SecAI+ not yet officially published at time of research (comparative value Security+: 50 CEUs / 3 years).
› NICE Framework work roles
The NIST NICE work-role IDs this cert maps to. NICCS lookup.
› Core domains covered
The 3 domains this cert is centrally about. Passing the exam demonstrates working knowledge of each.
Evasion attacks, poisoning attacks, model extraction, membership inference, model inversion, gradient-based attacks.
Prompt injection (direct & indirect), jailbreaking, prompt leaking, training data extraction, hallucination exploitation, agent manipulation.
ML-based anomaly detection, UEBA, network traffic analysis, deep learning for malware.
› Prerequisites
No formal prerequisites. CompTIA recommends: 3–4 years IT experience, including at least 2 years practical cybersecurity experience. Prior certifications Security+, CySA+, or PenTest+ are strongly recommended, as foundational security knowledge is assumed.
› Study materials
Curated starting points. Not exhaustive — vet each against your learning style and the current exam version.
- CompTIA SecurityAI+ Study Guide — Sybex / Pearson IT Certification
- CompTIA CertMaster Learn + Labs
- Professor Messer (free)
- Jason Dion (Udemy)
- Boson ExSim-Max for SecurityAI+
- Jason Dion Practice Exams (Udemy)
› Version & lifecycle
Brand-new CompTIA AI security cert. Body of knowledge will evolve rapidly.
› Salary signal
AI security analyst (vendor-neutral), US, 3-5 years. New role category.
Robert Half Salary Guide extrapolation · 2024 · US base only · p25–p75 range
› How it compares
SecurityAI+ is engineering-flavored AI security; AIGP is governance/program-flavored.
↔ Compare side-by-side› Careers that commonly pursue this cert
Secure AI/ML systems from adversarial attacks, data poisoning, and model compromise. The fastest-growing specialization in cybersecurity.
› Common exam traps to study
Cybersecurity cert exams reuse the same 25 distractor patterns over and over — category confusion, RTO vs RPO, IDS vs IPS, MD5 vs SHA-256, and more. Once you can name the trap, you stop falling for it. Each archetype page covers what it is, the specific pairs candidates confuse, and how to avoid it.
See this cert’s domains highlighted on the interactive map, or compare it against the rest of the catalog.