CREST Practitioner Security Analyst

The CREST Practitioner Security Analyst (CPSA) examination tests a candidate’s knowledge in assessing operating systems and common network services at a basic level below that of the main CRT and CCT qualifications.  The CPSA examination also includes an intermediate level of web application security testing and methods to identify common web application security vulnerabilities.

The examination covers a common set of core skills and knowledge.   The candidate must demonstrate that they have the knowledge to perform basic infrastructure and web application vulnerability scan using commonly available tools and interpret the results to locate security vulnerabilities.

Success will confer CREST Practitioner Security Analyst status to the individual.

Examination Format
The examination is a multiple choice written assessment and is a pre-requisite for sitting the CREST Registered Penetration Tester examination.

You can download the following documents from the links below:

Syllabus for the CPSA examination
Notes for Candidates to aid examination preparation

Cost
The CREST Practitioner Security Analyst examination costs £250 + VAT.  The examination is delivered at Pearson Vue test centres.

Recommended Preparation Material
The following material and media has been cited as helpful preparation for this examination by previous candidates:

Reading Material:
Network Security Assessment (by O’Reilly, 2nd edition)
Hacking Exposed Linux
Red Team Field Manual (RTFM) (by Ben Clarke)
Nmap Network Scanning: The Official Nmap Project (by Gordon Lyon)
Guide to Network Discovery and Security Scanning
Grey Hat Hacking (by Allen Harper, Shon Harris & Jonathan Ness)

Courses:
Infosec Skills Ltd – CREST Approved Training Provider
Net Security Training Ltd – CREST Approved Training Provider
Certified Security Testing Associate – CREST Accredited
Certified Security Testing Professional – CREST Accredited
CREST Scheme Team Member – CREST Accredited
Certified Ethical Hacker Passport

Useful Information for Candidates
How to book
Details of the Logistics and Timings of CREST examinations can be found in the Examination Preparation pages for your country of choice
CREST’s Policy for Candidates requiring special arrangements including additional time to accommodate a medical condition (including examinations delivered via Pearson Vue)
Terms and Conditions for CREST Examinations (includes hard disk drive wiping policy)