One of the most common questions us as newbies in cybersecurity ask is, “What certification should I earn first?” In this post, I’ll cover three key points: an exam summary, my personal experience, and the resources I used to pass.

In my opinion, the best starting point for anyone diving into cybersecurity is the CompTIA Security+. It’s widely recognized as a beginner-friendly certification—even though CompTIA recommends having a Network+ certification and about two years of experience in a security or systems role to smooth your journey, it’s still very accessible if you’re just starting out. The exam is a 90-minute challenge with up to 90 questions—mostly multiple-choice, with a few interactive Performance Based Questions (PBQs) that let you apply what you know in practical scenarios. You’ll need a score of 750 out of 900 to pass, and your results are available immediately. At around 404 USD (or free for military members through the COOL program), Security+ builds a strong foundational and theoretical knowledge base, setting you up perfectly to add more hands-on skills later.

When I took my exam, I chose the PearsonVUE online option for its convenience. On exam day, I just had to follow a few simple steps: a quick PC check to ensure no unauthorized programs were running, a webcam scan of my testing area for the proctor, and showing a valid form of ID. I encountered only three PBQs, which are typically placed at the beginning of the exam. They can seem a bit intimidating because they’re detailed, so my tip is to flag them and come back later—start with the multiple-choice questions to build your confidence first. And for those multiple-choice questions, make sure to use the process of elimination before finalizing your answer. Trust me, if you truly understand the concepts behind Security+—rather than just memorizing facts—using the resources I’m about to share will set you up for success. After all, why risk spending $404 or more if you’re not fully prepared? This foundational knowledge will not only help you ace the exam but also pave the way for tackling more in-depth cybersecurity topics and advanced certifications later on.

The resources I used to pass the exam are:

• Udemy: Dion Training – CompTIA Security+ (SY0-701) Complete Course & Exam, and Dion Training – CompTIA Security+ (SY0-701) Practice Exam Sets
• Book: Sybex Security+ (SY0-701) Study Guide
• YouTube: Professor Messer’s Security+ (SY0-701) Video Playlist

It’s definitely possible to pass the exam using just one of these resources alone, but I chose to use all three to give myself the best chance of success—after all, who likes failure? If you’re on a budget, Professor Messer is a great free option. If you’re willing to spend a little, wait for a sale on the Dion Training course on Udemy (usually around $15-20); in my opinion, that was the best of the three. I took about two months to study for this exam—though you’ll find some people who manage it in just a week, and that’s perfectly fine too. My best advice is to set a timeline and schedule your exam; having a firm date helps you create an effective study plan. For a complete beginner, 2-3 months is more than enough time to study and pass. Time management is key—I work full-time and have a family, so the only real sacrifice I made was losing some sleep.

Best of luck to you all on your cybersecurity journey!