The CompTIA Advanced Security Practitioner (CASP) certification is a newer certification from CompTIA that is starting to get more attention. It was recently approved as one of the certifications by Department of Defense (DoD) and is listed on the same level as the CISSP certification in some categories.
I have written about the (CASP) certification in the past in these blogs:
Where Does CASP Fit In?
A common question that many people ask is “Where does the CASP fit in when compared to other security certifications?” The following list includes some common security certifications from easiest to most difficult:
There are other certifications but these are some that are commonly pursued by many individuals.
It’s easier to understand how the CASP fits into the DoD certifications if you understand the basics of the certification levels. The following topics explain the DoD IT hierarchy, shows how different certifications fit into different levels.
DoD Approved 8570 Baseline Certifications
As an extension of Appendix 3 to the DoD 8570.01-Manual, several certifications have been approved as Information Assurance (IA) baseline certifications for the IA Workforce. Personnel performing IA functions must obtain one of the certifications required for their position category or specialty and level.
This page provides a listing of the specific certifications required at each level, but here’s a short summary.
DoD Information Technology Hierarchy
The DoD IT hierarchy is divided into three general levels (Level I, Level II, and Level III) and each of the IA levels are related to one of these levels.
Level I
Level I is the basic computing environment and often referred to as a local computing environment. In general, this refers to desktop and laptop computers and hand held computing devices. A computing environment may have one or more servers.
Level II
Level II is the networking environment. It can include an operations network, a logistics network, and a human resources network. Level II networks are connected to Level I computing environments.
Level III
Level III refers to an enclave environment. It consists of two or more networks controlled by enclave security policies and procedures. A Level III enclave environment is connected to one or more Level II network environments.
Information Assurance Technical (IAT)
In general, IAT positions include anyone that require privileged access to a DoD information system Computing, Network, or Enclave environment. For example, anyone requiring administrative access for a system fits into this category.
IAT Level I
Information Assurance Management (IAM)
In general, IAM positions include anyone that has responsibility for managing information system security for a DoD Information System Computing, Network, or Enclave environment.
- CAP
- GSLC
- Security+
- GSLC
- CISM
- CISSP
Information Assurance System Architect and Engineer (IASAE)
In general, IASAE positions include anyone that has responsibility for the design, development, implementation, and/or integration of a DoD IA architecture, system, or system component for a DoD Information System Computing, Network, or Enclave environment?
- CISSP – ISSEP
- CISSP – ISSAP
Summary
The CompTIA Advanced Security Practitioner (CASP) certification is now approved for certain DoD levels. Because of this, you can expect to see this certification to get more recognition and respect going forward. In some cases, this is on the same level as the CISSP certification.
Good article. I’ll be starting work on CASP pretty soon, as I can see that it is a good route to staying up on IT Sec.
Regarding David’s comment- He’s right, OSPF is a link state routing protocol and RIP-RIPv2 are distance vector routing protocols. Link state routing protocols are much more thorough in their decision making process in regards to how to forward packets. OSPF builds a map of the topology based mostly on the speed of the links (Fast Ethernet, Gigabit Ethernet etc). 3 hops at Fast Ethernet speeds to a subnet, is better than 2 at Ethernet speed. RIP would consequently use the slower route due to it’s limitation of hop count as it’s only metric.
CISSP Rapid Review:
Errata
Answer to Objective 2.2: Securing network components it states the following:
Distance-vector routing protocols (such as OSPF) provide a more accurate view of a network than a link-state (such as RIPv2) routing protocol does. Link-state protocols only look at the number of hops. Distance-vector protocols evaluate many more variables.
OSPF is a link-state routing protocol and RIPv2 is a Distance-vector.
Should read:
Link-State routing protocols (such as OSPF) provide a more accurate view of a network than a Distance-vector (such as RIPv2) routing protocol does. Distance-vector protocols only look at the number of hops. Link-State protocols evaluate many more variables.
Thank you, Darril! You made things look so clear…