CompTIA ITF+ helps professionals to decide if a career in IT is right for
them or to develop a broader understanding of IT.
ITF+ is the only pre-career certification that helps students or career changers
determine if they have a competency for information technology and if it is the
right career path for them.
ITF+ is the only single certification that covers all areas of IT foundations,
creating a broader understanding of IT making it ideal for non-technical
professionals.
ITF+ establishes an IT education framework for students in middle school and
high school.
About the exam The CompTIA IT Fundamentals exam focuses on the essential IT skills and
knowledge needed to perform tasks commonly performed by advanced end-users and
entry-level IT professionals alike, including:
Using features and functions of common operating systems and establishing
network connectivity
Identifying common software applications and their purpose
Using security and web browsing best practices
This exam is intended for candidates who are advanced end users and/or are
considering a career in IT. The exam is also a good fit for individuals
interested in pursuing professional-level certifications, such as A+.
What Skills Will You Learn?
HARDWARE IT CONCEPTS & TERMINOLOGY Comprehend notational systems, illustrate the basics of computing and
explain the value of data and troubleshooting
WINDOWS OPERATING SYSTEMS INFRASTRUCTURE Know how to set up and install common peripheral devices to a laptop/PC or
secure a basic wireless network
SOFTWARE TROUBLESHOOTING APPLICATIONS & SOFTWARE Manage applications software, understand the various components of an
operating system and explain the purpose of methods of application architecture
NETWORKING SOFTWARE DEVELOPMENT Comprehend programming language categories, interpret logic, and understand
the purpose of programming concepts
HARDWARE & NETWORK TROUBLESHOOTING DATABASE FUNDAMENTALS Able to explain database concepts, structures, and purpose, as well as
understands methods used to interface
SECURITY
Understand confidentiality, integrity, and availability concerns of secure
devices and best practice methods
Who would benefit from ITF+? Students considering a career in IT.
Professionals working in fields that require a broad understanding of IT.
Marketing, sales and operations staff in IT-based organizations.
Why would you benefit from ITF+? In 2017, nearly 5.4 million individuals worked as technology professionals
across the U.S., representing an increase of 2.1%, or nearly 110,000 net new
jobs. CompTIA ITF+ will help you determine if this is the field for you.
Twelve years ago, technology spending outside of IT was 20 percent of total
technology spending; it will become almost 90 percent by the end of the decade,
according to Gartner, Inc. All workers need fundamental IT skills to use these
technologies.
Exam Details Exam Codes Exam FC0-U61
Launch Date September 4, 2018
Exam Details The new CompTIA IT Fundamentals exam focuses on the knowledge and
skills required to identify and explain the basics of computing, IT
infrastructure, software development, and database use. With this new version
comes the addition of the + to further distinguish ourselves within the
marketplace and represent CompTIA quality and standards.
Number of Questions Maximum of 75 questions per exam
Type of Questions Multiple choice
Length of Test 60 Minutes
Passing Score 650 (on a scale of 900)
Recommended Experience No prior experience necessary
Languages English
Retirement Usually three years after launch
Testing Provider Pearson VUE
Testing Centers Online Testing
CompTIA IT Fundamentals FC0-U61:
What’s in this version The exam will certify the successful candidate has the knowledge and skills
required to identify and explain the basics of computing, IT infrastructure,
application and software, software development, database fundamentals and
security. In addition, candidates will have the ability to demonstrate their
knowledge to:
Install software Establish basic network connectivity
Identify/prevent basic security risks
Explain troubleshooting theory and preventative maintenance of devices
Renewal The CompTIA IT Fundamentals certification is considered good for life and
does not need to be renewed.
For certifications that are part of the CompTIA Continuing Education program and
that can be renewed, please go to our Continuing Education page.
Good for Life Certifications IT Fundamentals is good for life.
QUESTION 1 Which of the following would MOST likely prevent malware sent as compromised
file via email from infecting a person’s computer?
A. Email previewing
B. Patching
C. Clear browsing cache
D. Kill process
Correct Answer: B
QUESTION 2 A user wants to use a laptop outside the house and still remain connected to
the Internet. Which of the following would be the BEST choice to accomplish this
task?
A. Thunderbolt cable
B. Bluetooth module
C. Infrared port
D. WLAN card
Correct Answer: D
QUESTION 3 Joe, a user, finds out his password for a social media site has been
compromised. Joe tells a friend that his email and banking accounts are probably
also compromised. Which of the following has Joe MOST likely performed?
A. Password reuse
B. Snooping
C. Social engineering
D. Phishing
Correct Answer: A
QUESTION 4 A technician is installing a new wireless network and wants to secure the
wireless network to prevent unauthorized access. Which of the following
protocols would be the MOST secure?
A. WPA
B. SSID
C. WEP
D. WPA2
Correct Answer: D
QUESTION 5 Which of the following network protocols will MOST likely be used when
sending and receiving Internet email? (Select TWO.)
What’s on the new CompTIA CySA+ exam?
Ensure you are well-prepared on test day with comprehensive online training for
CySA+, only from CompTIA. Certkingdom Learn is interactive and self-paced,
combining instructional lessons with videos, practice questions, and
performance-based questions to help you prepare for your certification exam and
a career in IT.
Included in Certkingdom Learn for CySA+: 100% coverage of exam objectives
Over 25 hours of engaging content and videos
12 lessons with scenario-based Performance-Based Questions
120 practice questions with immediate feedback
90-question final assessment
Exclusive Certkingdom Learn features that help you nail the material and ace
your exam: Instructional lessons, images, and videos to help you learn the material
Practice questions and performance-based questions to assess and apply what you
know
Achievement badges, flashcards and a game center to keep you engaged
A personalized dashboard to track progress
Daily study tasks and a countdown calendar to keep you on pace
Feel confident when you’ve prepared for your exam with CompTIA Certkingdom
Learn!
The new CompTIA CySA+ exam applies behavioral analytics to networks and devices
to prevent, detect and combat cybersecurity threats through continuous security
monitoring.
Like its predecessor, CompTIA CySA+ (CS0-002) still covers core cybersecurity
analyst skills while emphasizing software and application security, automation,
threat hunting and IT regulatory compliance.
With the end goal of proactively defending and continuously improving the
security of an organization, people who have CompTIA CySA+ have the hands-on
knowledge and skills required to do the following:
Leverage intelligence and threat detection techniques
Analyze and interpret data
Identify and address vulnerabilities
Suggest preventative measures
Effectively respond to and recover from incidents
Download the exam objectives for free to find out everything that’s covered.
How much does CompTIA CySA+ cost? The retail price for CompTIA CySA+ (CS0-002) is $370. CompTIA offers
numerous ways to reduce this cost. Check out our article on how to save on exam
vouchers as well as information about financing options.
How can I train for CompTIA CySA+? Start by downloading the exam objectives and practice test questions to
understand what topics are covered and get examples of questions that you might
see. If you’re ready to start studying now, you can work through the self-paced
CompTIA Certkingdom Learn and Certkingdom Practice online training products that
are available now. The Official CompTIA CySA+ Study Guide eBook for CS0-002 is
expected in early June. If classroom study is more your speed, you can also
watch for instructor-led training options to come over the next few months.
The amount of time you’ll need to prepare for CompTIA CySA+ depends on your
existing knowledge on the topics and your hands-on cybersecurity experience. We
recommend that you have CompTIA Network+, CompTIA Security+ or the equivalent
knowledge plus a minimum of four years of hands-on information security or
related experience.
We also suggest that you dedicate between 30 and 40 hours of studying before
sitting for the exam.
Why would I choose CompTIA CySA+ over other cybersecurity certifications?
CompTIA CySA+ is the only intermediate high-stakes cybersecurity analyst
certification with hands-on, performance-based questions and multiple-choice
questions that covers the most up-to-date core cybersecurity analyst skills and
upcoming job skills used by threat intelligence analysts, application security
analysts, compliance analysts, incident responders/handlers and threat hunters,
bringing new techniques for combating threats inside and outside of the Security
Operations Center (SOC).
CompTIA exams are developed through an intensive process that includes workshops
where IT pros come together and discuss what knowledge, skills and abilities are
required to do certain job roles. So, the topics covered by CompTIA CySA+ match
the knowledge, skills and abilities cybersecurity analysts need today.
Can I still take the CompTIA CySA (CS0-001)? Yes. Older versions of CompTIA exams are generally available for about six
months after the new version comes out. The CompTIA CySA+ (CS0-001) exam will be
available until October 2020.
I’ve been studying for CompTIA CySA+ (CS0-001). Should I switch gears and study
for CompTIA CySA+ (CS0-002) instead?
If you’ve been studying for the CompTIA CySA+ (CS0-001), we would recommend
reviewing the exam objectives to see how much of what you’ve already studied is
on the new exam. If it makes sense for your time and level of knowledge, you may
want to switch gears and prepare for the new exam (CS0-002).
Some of the benefits of taking the new CompTIA CySA+ is that it covers the
latest subject matter with an emphasis on software and application security,
automation, threat hunting and IT regulatory compliance.
The following cybersecurity job roles align with CompTIA CySA+:
Cybersecurity Analyst
Threat intelligence analyst
Application security analyst
Incident response or handler
Threat hunter
Compliance analyst
Keep in mind that if you choose to pursue CS0-001, you must take it before it
retires in October 2020 to get your CompTIA CySA+ certification.
What can I expect from the CompTIA CySA+ exam?
You can expect performance-based and multiple-choice questions across five
domains:
Threat and Vulnerability Management
Software and Systems Security
IT careers are made here - click to subscribe and get a 10% discount on CompTIA
products
Security Operations and Monitoring
Incident Response
Compliance and Assessment
These domains relate back to the primary job of a cybersecurity analyst, which
is to monitor and identify vulnerabilities introduced on the network as a result
of nonsecure systems and software, regardless of the language, and respond to
the threats.
You should also be familiar with three broad categories of tools used by
cybersecurity analysts:
Packet Capture: Wireshark
Intrusion Detection System (IDS): Zeek and Snort
Security Information and Event Management (SIEM): AT&T Cybersecurity/AlienVault
OSSIM
For example, a cybersecurity analyst would need to plan, install, configure,
monitor and analyze an IDS or SIEM. Analyzing the output from the tool to
determine threats would be an example of a performance-based question you might
find on the exam. Or you may find a question on continuous monitoring activities
such as log reviews, impact analysis and response. To learn more about potential
topics, please download the exam objectives.
Can I go straight to CompTIA CySA+ instead of getting CompTIA Security+?
You can, but it’s not recommended because you need to know how a network works (CompTIA
Network+) and how to secure it (CompTIA Security+) before you can analyze it (CompTIA
CySA+). The CompTIA Cybersecurity Career Pathway shows how each certification
builds on the previous one, and skipping CompTIA Security+ could leave a gap in
your baseline cybersecurity skills.
We recommend having a minimum of four years of hands-on information security or
related experience before taking the CompTIA CySA+ exam.
How long is CompTIA CySA+ good for, and how can it be renewed? As with many CompTIA certifications, CySA+ is good for three years. CompTIA
offers a number of ways for you to renew your certifications. Learn more in the
continuing education (CE) section of our website.
I need to renew my CompTIA Security+ certification. If I pass CompTIA CySA+
will that renew it? Yes, CompTIA CySA+ will renew CompTIA Security+, since it’s considered a
higher-level certification. Learn more about renewing with a higher-level
certification in the CE section of our website.
Is CompTIA CySA+ approved by the DoD for 8570 requirements? Yes! CompTIA CySA+ is U.S. Department of Defense (DoD) 8570 approved. It
complies with government regulations under the Federal Information Security
Management Act (FISMA).
DoD 8570, DoD 8570.01-m and DoD 8140 identify the skills needed for a
cyber-ready workforce and align those skills with certain IT certifications.
Learn more about DoD regulations and how you can apply them in the private
sector.
Ready to start studying? Writing out your plan will set you up for success.
Download our free training plan worksheet to help get organized and make your
dream a reality.
Audience The Foundation Level syllabus forms the basis of the International Software
Testing Qualifications Board (ISTQB®) Certified Tester Scheme.
ISTQB® Foundation Level is relevant across software delivery practices including
Waterfall, Agile, DevOps and Continuous Delivery.
The 2018 Foundation Level qualification is suitable for anyone who needs to
demonstrate practical knowledge of the fundamental concepts of software testing
including people in roles such as testers, test analysts, test engineers, test
consultants, test managers, user acceptance testers and software developers.
It is also appropriate for individuals who need a basic understanding of
software testing including project managers, quality managers, software
development managers, business analysts, IT directors and management
consultants.
The new 2018 syllabus is recognised as a pre-requisite to other ISTQB®
certifications where Foundation Level is required (note: all previous releases
of Foundation Level, including the 2011 syllabus and “grandfathered” Foundation
Level certifications, will remain valid).
Training for 2018 Certified Tester Foundation Level is available from Accredited
Training Providers (classroom, virtual and e-learning). We highly recommend
attending accredited training as an ISTQB® Member Board will have assessed the
materials for relevance and consistency against the syllabus. Information about
Accredited Training Providers can be found here or contact your local ISTQB®
Member Board or Exam Provider
Self-study, using the syllabus and recommended reading material, is also an
option when preparing for the Foundation Level exam. Your local ISTQB® Member
Board or Exam Provider will be able to provide information on exams e.g.
languages available, where to find an exam centre etc.
Have a look at the Foundation Level introduction video.
Business Outcomes
The Business Outcomes expected of a candidate who has achieved the 2018
Foundation Level certification are as follows:
Promote efficient and effective communication by using a common vocabulary for
software testing.
Understand fundamental concepts of software testing.
Demonstrate understanding of how different development and testing practices,
and different constraints on testing, may apply in optimizing testing to
different contexts.
Contribute effectively in reviews.
Use established techniques for designing tests at all test levels.
Interpret and execute tests from given test specifications. Report on test
results.
Understand test management principles for resources, strategies, planning,
project control and risk management
Write and communicate clear and understandable defect reports
Understand the project factors that drive the test priorities and test approach
Understand the value that software testing brings to stakeholders
Appreciate how testing activities and work products align with project
objectives, measures and targets
Assist in the selection and implementation process of testing tool
Learning Objectives
Learning objectives are indicated for each section in the syllabus and
classified as follows:
K1: remember, recognize, recall
K2: understand, explain, give reasons, compare, classify, categorize, give
examples, summarize
K3: apply, use
K4: analyze
There are 62 Learning objectives in the 2018 Foundation syllabus:
15 K1
40 K2
7 K3
The 2018 Foundation Level Learning objectives are as follows:
Chapter 1 Fundamentals of Testing
1.1 What is Testing?
LO-1.1.1 Identify typical objectives of testing (K1)
LO-1.1.2 Differentiate testing from debugging (K2)
1.2 Why is Testing Necessary?
LO-1.2.1 Give examples of why testing is necessary (K2)
LO-1.2.2 Describe the relationship between testing and quality assurance and
give examples of how testing contributes to higher quality (K2)
LO-1.2.3 Distinguish between error, defect, and failure (K2)
LO-1.2.4 Distinguish between the root cause of a defect and its effects (K2)
1.3 Seven Testing Principles (K2)
LO-1.3.1 Explain the seven principles of testing (K2)
1.4 Test Process
LO-1.4.1 Explain the impact of context on the test process (K2)
LO-1.4.2 Describe the test activities and respective tasks within the test
process (K2)
LO-1.4.3 Differentiate the work products that support the test process (K2)
LO-1.4.4 Explain the value of maintaining traceability between the test basis
and the test work products (K2)
1.5 The Psychology of Testing (K2)
LO-1.5.1 Identify the psychological factors that influence the success of
testing (K1)
LO-1.5.2 Explain the difference between the mindset required for test activities
and the mindset required for development activities (K2)
Chapter 2 Testing Throughout the Software Development Lifecycle
2.1. Software Development Lifecycle Models
LO-2.1.1 Explain the relationships between software development activities and
test activities in the software development lifecycle (K2)
LO-2.1.2 Identify reasons why software development lifecycle models must be
adapted to the context of project and product characteristics (K1)
LO-2.1.3 Recall characteristics of good testing that are applicable to any life
cycle model (K1)
2.2 Test Levels (K2)
LO-2.2.1 Compare the different test levels from the perspective of objectives,
test basis, test objects, typical defects and failures, and approaches and
responsibilities (K2)
2.3 Test Types (K2)
LO-2.3.1 Compare functional, non-functional and white-box testing (K2)
LO-2.3.2 Recognize that functional and structural tests occur at any test level
(K1)
LO-2.3.3 Recognize that functional, non-functional and white-box tests occur at
any test level (K1)
LO-2.3.4 Compare the purposes of confirmation testing and regression testing
(K2)
2.4 Maintenance Testing (K2)
LO-2.4.1 Summarize triggers for maintenance testing (K2)
LO-2.4.2 Describe the role of impact analysis in maintenance testing (K2)
LO-2.4.3 Describe the role of impact analysis in maintenance testing (K2)
Chapter 3 Static Testing
3.1 Static Testing Basics
LO-3.1.1 Recognize types of software work product that can be examined by the
different static testing techniques (K1)
LO-3.1.2 Use examples to describe the value of static testing (K2)
LO-3.1.3 Explain the difference between static and dynamic techniques,
considering objectives, types of defects to be identified, and the role of these
techniques within the software lifecycle (K2)
3.2 Review Process
LO-3.2.1 Summarize the activities of the work product review process (K2)
LO-3.2.2 Recognize the different roles and responsibilities in a formal review
(K1)
LO-3.2.3 Explain the differences between different review types: informal
review, walkthrough, technical review and inspection (K2)
LO-3.2.4 Apply a review technique to a work product to find defects (K3)
LO-3.2.5 Explain the factors that contribute to a successful review (K2)
Chapter 4 Test Techniques
4.1 Categories of Test Techniques
LO-4.1.1 Explain the characteristics, commonalities, and differences between
black-box test techniques, white-box test techniques and experience-based test
techniques (K2)
4.2 Black-box Test Techniques
LO-4.2.1 Apply equivalence partitioning to derive test cases from given
requirements (K3)
LO-4.2.2 Apply boundary value analysis to derive test cases from given
requirements (K3)
LO-4.2.3 Apply decision table testing to derive test cases from given
requirements (K3)
LO-4.2.4 Apply state transition testing to derive test cases from given
requirements (K3)
LO-4.2.5 Explain how to derive test cases from a use case (K2)
4.3 White-box Test Techniques
LO-4.3.1 Explain statement coverage (K2)
LO-4.3.2 Explain decision coverage (K2)
LO-4.3.3 Explain the value of statement and decision coverage (K2)
5.1 Test Organization LO-5.1.1 Explain the benefits and drawbacks of independent testing (K2)
LO-5.1.2 Identify the tasks of a test manager and tester (K1)
5.2 Test Planning and Estimation
LO-5.2.1 Summarize the purpose and content of a test plan (K2)
LO-5.2.2 Differentiate between various test approaches (K2)
LO-5.2.3 Give examples of potential entry and exit criteria (K2)
LO-5.2.4 Apply knowledge of prioritization, and technical and logical
dependencies, to schedule test execution for a given set of test cases (K3)
LO-5.2.5 Identify factors that influence the effort related to testing (K1)
LO-5.2.6 Explain the difference between two estimation techniques: the
metrics-based technique and the expert-based technique (K2)
5.3 Test Monitoring and Control
LO-5.3.1 Recall metrics used for testing (K1)
LO-5.3.2 Summarize the purposes, contents, and audiences for test reports (K2)
5.5 Risks and Testing
LO-5.5.1 Define risk level by using likelihood and impact (K1)
LO-5.5.2 Distinguish between project and product risks (K2)
LO-5.5.3 Describe, by using examples, how product risk analysis may influence
thoroughness and scope of testing (K2)
5.6 Defect Management
LO-5.6.1 Write a defect report, covering defects found during testing (K3)
Chapter 6. Tool Support for Testing
6.1 Test tool considerations LO-6.1.1 Classify test tools according to their purpose and the test
activities they support (K2)
LO-6.1.2 Identify benefits and risks of test automation (K1)
LO-6.1.3 Remember special considerations for test execution and test management
tools (K1)
6.2 Test Planning and Estimation (K3) LO-6.2.1 Identify the main principles for selecting a tool (K1)
LO-6.2.2 Recall the objectives for using pilot projects to introduce tools (K1)
LO-6.2.3 Identify the success factors for evaluation, implementation, deployment
and on-going support of test tools in an organization (K1)
Syllabus The Foundation Level Syllabus forms the basis for the International Software
Testing Qualification at the Foundation Level.
The International Software Testing Qualifications Board® (ISTQB®) provides it to
the national examination bodies for them to accredit the training providers and
to derive examination questions in their local language.
Training providers will produce courseware and determine appropriate teaching
methods for accreditation, and the syllabus will help candidates in their
preparation for the examination.
The Certified Tester Foundation Level in Software Testing
The Foundation Level qualification is aimed at anyone involved in software
testing. This includes people in roles such as testers, test analysts, test
engineers, test consultants, test managers, user acceptance testers and software
developers.
This Foundation Level qualification is also appropriate for anyone who wants a
basic understanding of software testing, such as project managers, quality
managers, software development managers, business analysts, IT directors and
management consultants. Holders of the Foundation Certificate will be able to go
on to a higher level software testing qualification.
The Foundation Level Syllabus 2018 is available in Materials for download
section.
QUESTION 1
You are about to release a test progress report to a senior manager, who is not
a test specialist. Which of the following topics should NOT be included in the
test progress report?
A. Product risks which have been mitigated and those which are outstanding.
B. Recommendations for taking controlling actions
C. Status compared against the started exit criteria
D. Detailed overview of the risk-based test approach being used to ensure the
exit criteria to be achieved
Correct Answer: D
QUESTION 2 Explain how the above mentioned report may differ from a report that you
produce for the project manager, who is a test specialist Select TWO items from
the following options that can be used to report to the project
manager and would not be included in a report to senior management.
A. Show details on effort spent
B. List of all outstanding defects with their priority and severity
C. Give product risk status
D. Show trend analysis
E. State recommendations for release
Correct Answer: AB
QUESTION 3 Consider the typical objectives of testing. Which of the following metrics
can be used to measure the effectiveness of the testing process in achieving one
of those objectives?
A. Average number of days between defect discovery and resolution
B. Percentage of requirements covered
C. Lines of code written per developer per day
D. Percentage of test effort spent on regression testing
Correct Answer: B
QUESTION 4 You have been given responsibility for the non-functional testing of a
safety-critical monitoring & diagnostics
package in the medical area. Which of the following would you least expect to
see addressed in the test plan?
A. Availability
B. Safety
C. Portability
D. Reliability
Correct Answer: C
QUESTION 5 Since the system is in the medical domain and therefore in the safety
critical area, testing needs to be rigorous
and evidence is required that the system has been adequately tested. Identify
THREE measures that would
typically be part of the test approach in this domain and which are not always
applicable in other domains!
A. High level of documentation
B. Failure Mode and Effect Analysis (FMEA) sessions
C. Traceability to requirements
D. Non-functional testing
E. Master test planning
F. Test design techniques
G. Reviews
