CompTIA launches SecAI+ to tackle AI security skills

CompTIA has launched SecAI+, a professional certification focused on securing artificial intelligence systems and using AI in day-to-day cybersecurity work.

The certification targets practitioners dealing with AI-related security risks as more organisations deploy AI tools across business functions. It also covers the use of AI in security operations as both defenders and attackers adopt the technology.

SecAI+ joins CompTIA's portfolio of vendor-neutral credentials. CompTIA positions it as a response to the growth of AI-driven threats and the need for security staff who can assess and manage AI risk alongside established cybersecurity responsibilities.

Katie Hoenicke, CompTIA's chief product officer, linked the launch to changing job requirements as AI use expands across companies.

"As AI expands into core business processes, the ability to secure AI systems, manage AI-related risk and support responsible AI governance has become a defining capability for modern cybersecurity job roles," Hoenicke said.

SecAI+ is the first qualification in what CompTIA calls its Expansion Series, aimed at candidates who already have a foundation in technology or security and want to add specialist skills. It is designed to complement existing experience and certifications including Security+, CySA+ and PenTest+.

Focus areas

CompTIA describes the certification as covering both the protection of AI systems and practical applications of AI within security processes. Dr James Stanger, CompTIA's chief technology evangelist, said the credential addresses multiple dimensions of the AI and cybersecurity overlap.

"CompTIA SecAI+ addresses the cybersecurity-AI trifecta," Stanger said.

He said the certification focuses first on best practices, processes, systems and tools for securing AI platforms and functions. It also covers the use of AI in operational security work, including incident response, security analytics, threat intelligence and penetration testing. Another area is the use of AI, under human guidance, in compliance and risk management procedures.

Vendor neutral

SecAI+ is designed to apply across cloud providers, AI platforms, development frameworks and deployment environments. The focus is on security principles, operational techniques and governance models that are not tied to a specific supplier.

This approach aligns with CompTIA's broader strategy in the certification market, where it has built its brand around credentials that span a variety of IT environments. It competes for mindshare with vendor-specific programmes from major technology providers, as well as with other independent certifying bodies focused on security and risk management.

Interest in AI security training and certification has increased as regulators and boards ask for clearer controls on AI deployment, model governance and data handling. Security teams are also reassessing threat models, including the risks of adversarial manipulation of AI systems and the use of AI by attackers to scale phishing, malware development and reconnaissance.

Development and training

More than 400 subject matter experts contributed to the development of SecAI+, drawn from different roles and industries worldwide.

Alongside the exam, CompTIA has released training products under its CertMaster brand, including CertMaster Study, CertMaster Labs and CertMaster Perform. The training materials use practical scenarios designed to reflect how security teams work with AI systems in production.

The release adds to a broader industry push to formalise AI governance and security practices as AI tools become embedded in software development, customer service and internal operations. Security leaders are assessing how AI changes detection and response workflows while also examining how new tools introduce additional attack surfaces and supply chain dependencies.

CompTIA positions SecAI+ for professionals who want to demonstrate AI security knowledge alongside established cybersecurity skills, with the Expansion Series suggesting more specialist credentials may follow.