IT Certification Resources - Santiago Moya

Introduction

Navigating the landscape of IT certifications can be overwhelming, leaving many with the struggle of choosing the most relevant one to match their goals. Opinions on the value of IT certifications vary widely, from skeptics who question their significance compared to work experience, to enthusiasts who avidly pursue multiple certifications to add to their collection.

I find myself navigating a middle ground. I view certifications as a means to bridge the gaps in my work experience, presenting an opportunity to secure interviews and capture the attention of recruiters and HR professionals. When I made the decision to transition to a career in IT, I initially had a well-thought-out certification roadmap. However, my plans took an unexpected turn when I enrolled in an online associate degree program at CNM last year. This program included the CompTIA A+, Security+, and Network+ exams built into the course material and included in tuition. I have passed all three so far and in this post, I aim to share the resources that proved invaluable during my studies.

I will update this post with any resources I come across during my studies. Check back occasionally for updates or reach out to me here if you have any questions or other resources I should add.

Choosing a Certification

 When deciding on a certification, consider the following factors:

Knowledge Objectives: 

• What specific knowledge are you aiming to acquire during study or showcase through achieving the certification?

Cost Considerations: 

• Evaluate the financial aspect, including certification costs and potential sources of discounts. Professor Messer provides discounted vouchers, and additional discounts can often be secured through book or online learning material purchases.

Employer Support: 

• Investigate whether your employer offers financial support or reimbursement for certification pursuits.

Alignment with Employer's Systems/Services: 

• Assess the systems or services your employer or potential employer currently uses or is transitioning towards. Opt for certifications that align with these technologies.

Certification Requirements: 

• Check whether your employer or potential employer has specific certification requirements such as those outlined in the DoD Directive 8140/8570.01-M.

Armed with these considerations, you can make an informed decision and proceed to learning more about the certification and explore different study materials that work best for you.

Getting Started

The first thing when looking into a certification is to thoroughly research the certification itself. This involves exploring its official site, perusing relevant forum posts to get other perspectives and experiences, and gathering insights from various sources. A critical aspect of this process is identifying the currently available versions to download the accurate exam objectives and locate the right study material. This approach is crucial due to the potential existence of older exam versions, rich in study materials but on the brink of retirement.

Setting a study timeline becomes very important, ensuring the exam is completed before the retirement date. This precaution is essential because newer versions introduce different objectives, potentially causing important information to be overlooked. The screenshot below illustrates this point, emphasizing the need for strategic planning when choosing which version to study for.

Study Materials

Now that you've identified what you need to learn, it's time to explore study materials, tailored to your personal preferences and learning style. Diversify your resources to maintain interest throughout your studies.

Make sure you download and read through the Exam Objectives to use as a study guide. 

Videos

Video content is an amazing source of information that can be both enjoyable and educational. Explore various platforms and content creators to keep things fresh:

LinkedIn Learning: 

• An excellent resource for certifications and in-depth explorations of various subjects. Access can be obtained free through the Albuquerque Public Library System, and my current employer provided a free account.

YouTube: 

• A diverse platform with content creators offering unique perspectives. Notable mention to Professor Messer, known for coverage of all three aforementioned CompTIA certifications. He also hosts live study groups with post-stream availability and provides discount vouchers for many more CompTIA certifications.

O'Reilly: 

• Although on the expensive side, O'Reilly offers quality content. Access is available through school, and for those with a DOD ID, it might also be accessible for free as well. Libraries outside Albuquerque may provide access, and you could potentially obtain a card without residing there.

Udemy: 

• Explore this platform for a variety of training courses from different creators. So many different topics and many sales and discounts can be had by following creators on social media.

Books

Books provide in-depth understanding, and I found the Sybex book for Security+ invaluable in complementing the video content. Consider purchasing used books but be mindful of potential exclusions of online practice tests, labs, and flashcards. Specific books vary based on the certification you're pursuing.

O'Reilly: Refer back to the O'Reilly section above for details on accessing the platform.

Labs

Home Lab: 

• Set up a home lab for studying diverse topics. ProxMox is a useful tool for building your own learning environment.

Packet Tracer: 

• Ideal for networking and Cisco product configuration practice.

Hack The Box Academy: 

• Highly recommended for cybersecurity-focused hands-on courses. This has been one of my recent favorites. The structured lessons involve reading material and practical exercises in a live environment. Free accounts provide access to Pwnbox for a limited time, and student discounts are available for the paid account.

CTF Websites: Engage in Capture the Flag activities for rapid and effective learning. Along with HTB, explore other platforms such as the following:

• OverTheWire: Offers many CTF challenges. Highly recommended.
• PicoCTF: Begginner friendly but still engaging and fun
• VulnHub: Collection of vulnerable VM's for you to install and hack
• Parrot CTFs: Have not signed up yet.
• TryHackMe: I have signed up but have not gotten to these CTF's
• Hacker101: Highly recommended! Very fun CTF's and many resources. This is a great way to begin learning for Bug Bounty programs and after a certain amount of points (26) are earned here, you are eligible for invitations to private progmrams. More information for this here. 

Practice Tests

While my personal experience with practice tests has been primarily through resources from school and purchased books, there are various online options available for those seeking additional practice. Although I may not have extensive recommendations, here are some general suggestions:

Online Platforms: 

• Explore reputable online platforms that offer a range of practice tests. Websites dedicated to specific certifications often provide mock exams to help you gauge your readiness. Look for platforms that align with your chosen certification.

Certification Providers: 

• Check the official websites of certification providers. Many offer official practice tests or recommend authorized third-party resources that align with their exams.

Community Forums: 

• Engage with IT communities and forums related to your certification. Members often share insights into valuable practice test resources they've used, providing a peer-reviewed perspective.

Books and Study Materials: 

• Some comprehensive study materials, including books, come with practice test sections. Utilize these resources to reinforce your understanding of the exam objectives.

Online Learning Platforms: 

• Platforms like Udemy, LinkedIn Learning, and others may offer practice exams as part of their certification courses. Explore these options for a well-rounded approach to exam preparation.

Remember to prioritize quality over quantity when selecting practice tests. Focus on those that closely mimic the format and difficulty level of the actual exam (Forum posts and asking around will help out a lot here). Additionally, stay up to date with the latest versions and revisions to ensure the relevance of the practice material to your chosen certification.

Exam Taking Tips

These are generic test-taking tips, it's crucial to tailor these suggestions to your unique learning style.

CompTIA Exams - Skip the performance based questions (PBQ's) at the beginning of the exam:

• Skipping the PBQ's allows you to get through all of the multiple choice questions and save the remaining time to focus on the PBQ's at the end, knowing you already have the rest of the test completed. 
• The CASP+ has a Linux Simulation in the middle of the exam that you cannot pass. See the CASP+ Section below for more information.

Set a Definitive Exam Date:

• Commit to a specific exam date early in your study process and get it scheduled. This not only provides a clear goal but also prevents procrastination. Avoid continuously pushing back the date to maintain a sense of urgency and discipline. I cannot stress this tip enough!

Personalized Learning Techniques: 

• Identify your preferred learning style whether it be visual, auditory, kinesthetic, or a combination. Tailor your study materials and methods accordingly. If you're a visual learner, utilize diagrams and charts; for auditory learners, incorporate videos and discussions.

Utilize Learning Preferences: 

• Leverage tools and platforms that align with your learning preferences. If you absorb information better through videos, utilize online courses; if you prefer hands-on experience, engage in practical labs and simulations.

Active Note Taking: 

• Instead of passive reading, actively take notes during your study sessions. Summarize key concepts, create flashcards, or jot down mnemonic devices that resonate with you. These personalized notes become valuable review materials.

Practice with Realistic Scenarios: 

• Incorporate practice tests and quizzes that closely mirror the actual exam environment. This not only enhances your familiarity with the format but also helps manage test anxiety.

Focus on Weak Areas: 

• Identify and prioritize your weaker areas based on practice test performance. Devote extra time to reinforce understanding in these specific domains, ensuring a well-rounded knowledge base. Use the exam objectives to check where you are at and where you need improvement.

Consistent Review: 

• Implement a regular review schedule to reinforce learned material. Spaced repetition aids in long-term retention, preventing information overload. When studying for the Network+ exam I regularly needed to take breaks and review material. 

Simulate Exam Conditions: 

• Familiarize yourself with the exam environment and incorporate practice tests and quizzes that closely mirror the actual exam environment. This not only enhances your familiarity with the format but also helps manage test anxiety. Read what others have experienced and go through the documentation CompTIA or other certification providers offer regarding the test taking experience so you know what to expect.

Prioritize Self-Care: 

• These tips are usually glossed over (ask me how I know) but they are just as important if not more so than the others. Ensure proper rest, nutrition, and hydration during your studies. A well-maintained physical and mental state will help to mitigate distractions and help with concentration. This is especially important as the test date approaches.

Seek Support and Resources: 

• Connect with online communities, forums, or study groups to share insights and seek assistance. Collaborating with peers and co-workers provides diverse perspectives and additional resources. This was huge for me as I came across new resources other people had used. 

Mindfulness Techniques: 

• Incorporate mindfulness techniques, such as deep breathing or brief meditation, to manage stress and maintain focus during study sessions and the actual exam. When reading through the books, I enjoyed listening to music to help me focus but this may be different for you.

Remember, these personalized strategies aim to enhance your unique learning style. Tailor these tips to fit your preferences, creating a study plan that optimally prepares you for success on exam day. Try a little of everything and definitely try something new if you feel stuck. 

Certification Specific Resources

Keep in mind these are the resources I personally used and found useful. Look for other sources that may best work for your learning style, situation, etc.

CompTIA Security+:

• CompTIA's Security+ website. This is your go-to source for comprehensive information about the exam, including the exam objectives, versions, and retirement dates. Did I mention that downloading the exam objectives is absolutely essential as it serves as the foundation for your study plan?

LinkedIn Learning SY0-601 Security+ Collection (Mike Chapple):

• These trainings hosted by Mike Chapple on LinkedIn Learning proved to be invaluable in kickstarting my Security+ studies. The well-produced and structured content offered a solid foundation. 

Professor Messer:

• Professor Messer's SY0-601 YouTube playlist is a goldmine of concise and effective video content. His methodical approach, short videos, and additional resources on his website make it an excellent learning tool. Professor Messer also conducts live study groups that are available for later review and has pdfs with exam tips on his website.

Inside Cloud and Security:

• This video resource, discovered a week before my exam, proved to be a valuable find. The detailed explanations, clear delivery, and timestamped content for each objective enhanced my understanding. Despite its 10+ hours duration, the thorough coverage of every item in the objectives made it a worthwhile investment of time.

CompTIA Security+ Certification Kit: Exam SY0-601:

• These books were amazing for going in depth on the exam objectives where the videos kind of just move past the details. Included in the purchase of these books were online practice tests and flashcards. 

Here are some resources for the new SY0-701 Security+:

Professor Messer: 

• Professor Messer's new SY0-701 YouTube Playlist is still being updated with new videos as this Exam was released Nov 7th, 2023. 

CompTIA Security+ Certification Kit: Exam SY0-701:

• I used the SY0-601 versions and my experience with them was positive as noted above. Included in the purchase of these books are online practice tests and flashcards.

Inside Cloud and Security: Security+ Exam Cram - 2024 Edition Playlist [In Progress]:

• Updated for SY0-701 and still in progress. Very detailed and goes over every topic on the objectives.

Port Numbers!

• Port numbers are important to know not just for the Security + exam but for anything you will do in IT or Cyber security. There are many lists of well known ports and corresponding services (some very exhaustive lists) but this video and corresponding PDF from Cyberkraft are great to start off with.

The Ports and Protocols You Need to Know for the Security+ SY0-601 Exam

Cyberkraft-Security-601-Ports-and-Protocols-Reference-Sheet.pdf

CompTIA A+ 220-1101 & 220-1102:

• This certification consists of two separate tests, Core 1 (220-1101) and Core 2 (220-1102)!
• Both cores (tests) need to be passed to receive the CompTIA A+ certification.
• CompTIA's A+ website. This is your go-to source for comprehensive information about both exams, including the exam objectives, versions, and retirement dates. Did I mention that downloading the exam objectives is absolutely essential as it serves as the foundation for your study plan?

LinkedIn Learning: 

• Prepare for the CompTIA A+ Core 1 (220-1101) Certification Exam
• Prepare for the CompTIA A+ Core 2 (220-1102) Certification Exam
• Both of the courses listed above are hosted by Mike Myers. If you have not taken any of his courses before, he definitely knows how to keep your interest. 

Professor Messer:

• CompTIA 220-1101 A+ Training Course
• CompTIA 220-1102 A+ Training Course
• Professor Messer's YouTube playlist is a goldmine of concise and effective video content. His methodical approach, short videos, and additional resources on his website make it an excellent supplementary learning tool. Professor Messer also conducts live study groups that are available for later review.

CompTIA Network+ N10-008:

• CompTIA's Network+ website. This is your go-to source for comprehensive information about the exam, including the exam objectives, versions, and retirement dates. Did I mention that downloading the exam objectives is absolutely essential as it serves as the foundation for your study plan?

LinkedIn Learning: 

• Prepare for the CompTIA Network+ (N10-008) Exam
• Another course hosted by Mike Myers. If you have not taken any of his courses before, he definitely knows how to keep your interest. 

Professor Messer:

• Professor Messer's YouTube playlist is a goldmine of concise and effective video content. His methodical approach, short videos, and additional resources on his website make it an excellent supplementary learning tool. Professor Messer also conducts live study groups that are available for later review.

CompTIA Linux+ XK0-005:

• CompTIA's Linux+ website. This is your go-to source for comprehensive information about the exam, including the exam objectives, versions, and retirement dates. Did I mention that downloading the exam objectives is absolutely essential as it serves as the foundation for your study plan?

LinkedIn Learning: 

• Cert Prep: CompTIA Linux+ (XK0-005)
• This course is by Grant McWilliams who is a great presenter. I went through about 4 hours of the XK0-004 version of this course but ended up finishing up the above certifications for school so I have yet to go through this updated version. 

Shawn Powers:

• I cannot recommend Shawn's videos enough! He is an amazing educator and presenter. He is currently releasing videos for the current version of the Linux+ and they are amazing. He also has some other amazing playlists which I will link below, but I highly recommend going to his channel and taking a look for yourself.
• CompTIA Linux+ Exam Prep! [IN PROGRESS]
• BASH Scripting 101
• LPI Linux Essentials (010-160 Exam Prep)
• All Things SSH!

CompTIA Linux+ Study Guide: Exam XK0-005 (Sybex Study Guide)

• As I really enjoyed the format of the Sybex study guide for Security+ I went with their Linux+ study guide as well. this also comes with online practice tests as well as flash cards. I am about halfway through the book so far and this combined with the other resources I've listed above have been great so far.  
•  

CompTIA Advanced Security Practitioner (CASP+)

• CompTIA's CASP+ website. This is your go-to source for comprehensive information about the exam, including the exam objectives, versions, and retirement dates. Did I mention that downloading the exam objectives is absolutely essential as it serves as the foundation for your study plan?

LinkedIn Learning: Prepare for the CompTIA Advanced Security Practitioner (CASP+) (CAS-004) Exam

• This course is by Jason Dion and is very comprehensive. This is a 4 part series totaling 28 hours but the information covered as well as the examples given are great to get you in the mindset to answer questions on the test. 

CASP+ Certification Kit: Study Guide and Practice Tests 4th Edition

• The main book covers a lot of information and was great to go through. 
• The main reason I purchase these Sybex books is due to the 1 year of online access to the Chapter and Practice tests and flashcards from the books. These practice questions are the closest to the actual CompTIA questions and a great way of testing just how well you retained the information from the book and videos. 

Video - Passed CASP+ exam | Resources and Tips

• This is a great video which includes resources and experiences when studying and taking the test. 

Blog Post - New Insights for the CASP+ CAS-004 Exam - By Bob Weiss

• This blog post has a whole lot of information (possibly too much) about the PBQ's and Linux simulation. The blog and comments have a lot of experiences from people who have taken the test, so be wary of the people telling you exactly how to pass the Linux simulation. Learn the skills you need instead of trying to follow step by step provided by someone else. 

VERY IMPORTANT - As with all CompTIA exams you can skip questions and mark them for review especially the PBQ' s. This is the usual advice given and a great strategy that I use myself to take care of the multiple choice questions then come back to spend more time on the PBQ's.

You CANNOT skip the Linux Simulation! 

• The Linux Sim will come up randomly during the course of the test. 
• It will provide you a warning about not being able to come back once you proceed, but I have seen many comments and Reddit posts where people clicked on the next button and failing that entire part of the test either by mistake or thinking they'd be able to come back to it. 
• It also seems the Linux Sim is weighed heavily when it comes to scoring the exam so make sure to prepare for this and brush up on your Linux skills before taking this exam.