This page is provided for study guidance and may not always reflect the latest official exam updates. If you are unsure about any detail, verify on the official provider website. Official exam page.
CompTIA • Cysa Plus
CompTIA Cyber Security Analyst (CS0-003)
Enhance security operations processes.
Practice setup
Exam info
- Exam ID
- CS0-003
- Number of Questions
- Maximum of 85
View full exam details
- Duration
- 165 minutes
- Passing Score
- 750 (on a scale of 100-900)
- Cost
- $425 USD
Domains and Objectives
Security operations1.033%
Objectives in this domain
- System and network architecture: log ingestion, OS concepts, infrastructure, network architecture, IAM, encryption, and sensitive data protection
- Malicious activity indicators: network anomalies (bandwidth spikes, rogue devices), host issues (unauthorized software, data exfiltration), application irregularities (unexpected communication, service interruptions), and social engineering threats
- Tools and techniques: detecting malicious activity with Wireshark, SIEM, VirusTotal; techniques like pattern recognition and email analysis; scripting support (Python, PowerShell)
- Threat intelligence and hunting: threat actors, TTPs, confidence levels, collection methods, intelligence sharing, and hunting techniques
- Process improvement: standardizing processes, streamlining operations, integrating tools, and using a single pane of glass
Vulnerability management2.030%
Objectives in this domain
- Vulnerability scanning: asset discovery; internal vs. external; agent vs. agentless; credentialed vs. non‑credentialed; passive vs. active; static vs. dynamic; critical infrastructure scanning
- Assessment tool output: network scanning, web application scanners, vulnerability scanners, debuggers, multipurpose tools, and cloud infrastructure assessments
- Vulnerability prioritization: interpreting CVSS, validating findings, assessing exploitability, and considering asset value and zero‑day vulnerabilities
- Mitigation controls: controls for cross‑site scripting (XSS), overflow vulnerabilities, and data poisoning
- Vulnerability response: compensating controls, patching, configuration management, maintenance windows, exceptions, governance, SLOs, secure SDLC, and threat modeling
Incident response management3.020%
Objectives in this domain
- Attack methodology frameworks: cyber kill chain, diamond model of intrusion analysis, MITRE ATT&CK, OSSTMM, and OWASP testing guide
- Incident response activities: detection, analysis, containment, eradication, and recovery
- Incident management life cycle: incident response plans, tools, playbooks, tabletop exercises, training, business continuity (BC), disaster recovery (DR), forensic analysis, and root cause analysis
Reporting and communication4.017%
Objectives in this domain
- Vulnerability management reporting: compliance reports, action plans, inhibitors to remediation, metrics, KPIs, and stakeholder communication
- Incident response reporting: incident declaration, escalation, reporting, communication, root cause analysis, lessons learned, and metrics/KPIs
Resources
Official Exam Page
The official CompTIA CySA+ (CS0-003, V3) exam page with overview, exam details, domains/objectives summary, languages, passing score, and purchase options.
Open resourceOfficial Study Guide (eBook) — CertMaster Study for CySA+ (V3)
Explains CompTIA’s rebranded eBook platform (CertMaster Study) and lists available titles, including CySA+ (V3). This is the official digital study guide offering from CompTIA.
Open resourceOfficial eLearning — CertMaster Learn
CompTIA’s official self‑paced eLearning course. Use with CySA+ to learn exam objectives through lessons, videos, performance‑based questions, and integrated practice.
Open resourceOfficial Hands-on Labs — CertMaster Labs
Browser-based labs providing hands‑on practice aligned to certification objectives; can be used alongside CySA+ training for real-world skills.
Open resourceOfficial Practice Exams — CertMaster Practice
Adaptive practice and assessments from CompTIA to identify knowledge gaps and build exam readiness for certifications including CySA+.
Open resourceOfficial Training Course — CyberDefense Pro (prepares for CySA+ V3)
CompTIA’s advanced cybersecurity training with simulations and scenarios; designed to build analysis, detection, IR, and operations skills and prepare for CySA+ (CS0-003).
Open resourceExam Scheduling — How Do I Schedule My Exam?
Official instructions from CompTIA for creating an account and scheduling your exam (Pearson VUE test center or OnVUE online).
Open resourceTesting Options (Online or In‑Person)
Overview of CompTIA testing modalities and requirements to help you choose between online (OnVUE) and in‑person testing.
Open resourceOnline Testing (OnVUE) Policies and Setup
Official guidance for taking CompTIA exams online, including environment, system test, policies, and the candidate agreement reminder.
Open resourceIdentification Requirements (Candidate ID Policy summary)
What IDs are required on exam day and important name‑matching rules for CompTIA exams.
Open resourceCompTIA Candidate Agreement
The binding agreement you must accept before testing; covers conduct, retakes, data processing, and policy compliance.
Open resourceExam history
CySA+ CS0-003 (V3) launched on June 6, 2023 to replace CS0-002 (retired December 5, 2023) and remains the active CySA+ exam while V4 objectives are in draft.
Last reviewed: 2026-04-10
CompTIA launched the third-generation CySA+ exam, CS0-003 (V3), on June 6, 2023, succeeding CS0-002 (launched April 21, 2020); both versions overlapped until CS0-002 retired in English on December 5, 2023. The official CySA+ page lists CS0-003 parameters (maximum 85 questions, 165 minutes, passing score 750) and languages (English, Japanese, Portuguese, Spanish) and outlines the V3 domain weights: Security Operations 33%, Vulnerability Management 30%, Incident Response Management 20%, Reporting and Communication 17%. ([partners.comptia.org](https://partners.comptia.org/certifications/cybersecurity-analyst?utm_source=openai))
As of April 10, 2026, CS0-003 remains active; CompTIA notes retirement is usually three years after launch (estimated 2026) but has not posted a specific date. CompTIA has also published Draft CySA+ V4 exam objectives on its official Exam Objectives Under Development page, indicating the next update is in progress without announced launch or transition dates. ([comptia.org](https://www.comptia.org/en-us/certifications/cybersecurity-analyst//?utm_source=openai))
Change tracker
Pre-launch Q&A published
CompTIA published “The New CompTIA Cybersecurity Analyst (CySA+): Your Questions Answered” on May 3, 2023, previewing CS0-003 (V3) exam updates and transition guidance. ([comptia.org](https://production-central-www.comptia.org/blog/the-new-comptia-cybersecurity-analyst-your-questions-answered))
Draft CySA+ V4 objectives posted
CompTIA’s 'Exam Objectives Under Development' page lists Draft CySA+ V4 (v1.1). Date is approximate based on page recency; no V4 launch date announced. ([comptia.org](https://www.comptia.org/en-us/resources/comptia-exam-objectives-under-development/))
Online testing language policy clarified
CompTIA confirmed on March 3, 2025 that OnVUE online testing supports any available language for an exam (proctors/software are English-only), affecting CySA+ delivery options. ([help.comptia.org](https://help.comptia.org/hc/en-us/articles/11186245534868-Is-OnVUE-Online-Testing-for-English-Only))
Online testing requirements updated
CompTIA Help Center updated OnVUE online testing requirements (technical and testing space) on February 27, 2025, applicable to CySA+ CS0-003 candidates testing online. ([help.comptia.org](https://help.comptia.org/hc/en-us/articles/14344543746068-What-Are-the-Technical-Requirements-for-OnVUE-Online-Testing), [help.comptia.org](https://help.comptia.org/hc/en-us/articles/14345163310484-What-Are-the-Testing-Space-Requirements-for-OnVUE-Online-Testing))
Scheduling flow updated to CompTIA Central
CompTIA updated scheduling guidance on December 9, 2025: candidates start in CompTIA Central and are routed to Pearson VUE to schedule CySA+ exams. ([help.comptia.org](https://help.comptia.org/hc/en-us/articles/14001749726996-How-Do-I-Schedule-My-Exam))
Cost guidance published
CompTIA published 'How Much Does the CompTIA CySA+ Certification Cost?' on December 18, 2024, directing candidates to current store pricing; historical price-change dates are not archived on www.comptia.org. ([comptia.org](https://www.comptia.org/en-us/blog/how-much-does-the-comptia-cysa-certification-cost/))
Status check: CS0-003 active
As of April 2, 2026, the official exam page still shows CySA+ V3 (CS0-003) as active with retirement 'usually three years after launch (estimated 2026)'. ([comptia.org](https://www.comptia.org/certifications/cybersecurity-analyst))
Voucher price status
CompTIA Store lists the CySA+ CS0-003 exam voucher at USD $425.00 for individual purchasers (price status as of April 2026; CompTIA does not publish historical change dates). ([store.comptia.org](https://store.comptia.org/certification-vouchers/c/11293?facetValueFilter=tenant~user-type%3Aindividual%2Ctenant~certification%3Acomptia-csa))
Candidate ID requirements updated
CompTIA updated identification requirements for taking exams on April 18, 2025; applies to CySA+ candidates at test centers and via OnVUE. ([help.comptia.org](https://help.comptia.org/hc/en-us/articles/11187173177748-What-Are-the-Identification-Requirements-for-Taking-an-Exam))
CS0-002 retired (English)
CompTIA retired the English version of CS0-002 on December 5, 2023; other languages followed thereafter. ([partners.comptia.org](https://partners.comptia.org/certifications/cybersecurity-analyst?utm_source=openai))
CS0-003 (V3) launched
CySA+ CS0-003 officially launched on June 6, 2023 with updated objectives and exam parameters (max 85 questions; 165 minutes; 750 passing score). ([comptia.org](https://www.comptia.org/certifications/cybersecurity-analyst))
Predecessor (CS0-002) launched
CompTIA lists CySA+ CS0-002 launch as April 21, 2020; this version is the immediate predecessor to CS0-003. ([partners.comptia.org](https://partners.comptia.org/certifications/cybersecurity-analyst?utm_source=openai))