⚡ Quick Answer
Get Security+ first. It's less expensive, faster to pass, DoD 8570 approved, and widely accepted as the baseline cybersecurity credential. CEH makes sense after Security+ if you want to move specifically into ethical hacking or penetration testing — its value is more niche and its cost is significantly higher.

What each certification actually covers

Security+ and CEH are both well-known cybersecurity credentials, but they come from different organizations, target different career stages, and cover fundamentally different skill sets. Security+ is defensive and broad; CEH is offensive and specialized.

Entry Level · CompTIA
CompTIA Security+
Exam code SY0-701
Format One exam, up to 90 questions
Cost ~$404
Passing score 750 / 900
Prerequisite None official — Network+ recommended
Renewal Every 3 years (CEUs or re-exam)
DoD 8570 Yes — IAT Level II, IAM Level I
Intermediate · EC-Council
Certified Ethical Hacker (CEH)
Exam code 312-50 (CEH v13)
Format 125 questions (MCQ) + optional practical
Cost ~$950–$1,199 (exam + materials)
Passing score ~70% (varies by question pool)
Prerequisite 2 years IT security experience or EC-Council training
Renewal Every 3 years (ECE credits)
DoD 8570 Yes — CSSP Analyst, Infrastructure Support

Side-by-side comparison

Category Security+ CEH
Focus Broad defensive security — governance, threats, architecture, operations Offensive security — hacking phases, tools, exploits, evasion
Difficulty Entry–Intermediate; manageable with 2–3 months study Intermediate; requires real security experience to pass
Cost ~$404 exam voucher ~$950–$1,199 including required EC-Council training materials
Issuing body CompTIA (vendor-neutral) EC-Council (vendor-neutral)
Employer recognition Very high — near-universal in job postings High in offensive/red team roles; lower recognition in general IT
Best job roles SOC analyst, security analyst, IT security generalist Penetration tester, ethical hacker, red team analyst
Salary impact $60,000–$90,000 for entry security roles $80,000–$120,000+ for dedicated pen test roles
DoD 8570 IAT Level II — very commonly required CSSP roles — more specialized government positions
Practical exam option No Yes — CEH Practical (separate hands-on exam)

What Security+ actually tests

Security+ SY0-701 is organized into five domains with a strong emphasis on scenario-based thinking. The biggest domain is Security Operations at 28%, followed by Threats, Vulnerabilities, and Mitigations at 22%. You're expected to know how to recognize attack patterns, apply appropriate controls, and understand governance frameworks — not execute attacks yourself.

Security+ SY0-701 — Core Topics
Threats, vulnerabilities, and mitigations
Security architecture and infrastructure
Cryptography and PKI
Identity and access management
Security operations and incident response
Security+ continued
Security program management and oversight
Cloud security concepts
Network security controls
Risk management and compliance
Vulnerability scanning and assessment

What CEH actually tests

CEH v13 is structured around the five phases of ethical hacking: reconnaissance, scanning, gaining access, maintaining access, and covering tracks. The exam tests knowledge of specific tools (Nmap, Metasploit, Wireshark, Burp Suite), attack techniques (SQL injection, XSS, session hijacking), and how to think offensively. It's less about governance and more about how attacks actually work.

CEH v13 — Core Topics
Reconnaissance and footprinting
Scanning and enumeration
System hacking and privilege escalation
Malware and social engineering attacks
Web application hacking (SQLi, XSS)
CEH v13 continued
Sniffing and session hijacking
Denial of service attacks
Cryptography attacks
Cloud, IoT, and OT hacking
Hacking tools — Metasploit, Nmap, Burp Suite

Which is harder?

CEH is harder if you don't have hands-on offensive security experience. The exam covers a wide range of specific tools and attack techniques that you genuinely need to have worked with to recognize in exam scenarios. Security+ is harder than people expect — the scenario questions require real analytical thinking — but it's designed for candidates earlier in their careers and doesn't require hands-on exploitation experience to pass.

The cost difference is also significant. At nearly three times the price of Security+, CEH is a real investment that makes the most sense once you've already validated your baseline security knowledge with Security+.

💡 A note on CEH's reputation

CEH is not universally loved in the security community. Many practitioners prefer OSCP (Offensive Security Certified Professional) for demonstrating practical pen testing ability, as it requires a hands-on 24-hour exam rather than multiple choice questions. CEH is still highly valued in enterprise hiring and government contracting, but if your goal is to prove real offensive capability, be aware of how each cert is perceived in different hiring contexts.

Which should you get first?

🆕
You're new to cybersecurity
Start with Security+ Security+ First
Security+ is the industry-standard entry point. It's less expensive, faster to earn, and opens more doors at the start of a security career than CEH does.
🎯
You want to become a penetration tester
Security+ first, then CEH or OSCP Both eventually
Get Security+ to establish credibility, then pursue CEH or OSCP for offensive specialization. Many pen test job postings ask for both or either.
🏛️
You're pursuing a DoD / government contract role
Check the specific 8570 requirement Depends on role
Security+ satisfies IAT Level II. CEH satisfies different CSSP roles. The cert you need depends on which specific position category the role falls under in DoD 8570.
💼
Your employer is paying for one cert
Take Security+ Security+
Security+ is broadly recognized, costs less, and validates general security knowledge valuable for most IT security roles. CEH makes more sense as a targeted add-on.
You already have Security+ and hands-on experience
CEH is worth considering CEH Next
If you're actively working in security and want to specialize in offensive work, CEH adds credibility for red team and pen test roles and satisfies additional DoD 8570 categories.

Ready to start with Security+?

Security+ is the right first step for most people. Here's where to study and what to read:

🔐
Security+ Study Resources
Best study guide, practice exams, and the free Professor Messer course for SY0-701.
See Security+ Resources →
🗺️
CompTIA Cert Roadmap
See where Security+, CySA+, PenTest+, and CASP+ fit in the full CompTIA career path.
View Roadmap →

Related Articles

Security+ Complete Study Guide How to Pass Security+ Network+ vs Security+ CASP+ vs CISSP CySA+ vs Security+ Penetration Testing Explained Vulnerability Scanning CompTIA Certifications Roadmap