The International Information System Security Certification Consortium (ISC)2, a non-profit organization that specializes in training and certifications for cybersecurity professionals, introduced the Certified Information Security Systems Professional (CISSP) certification. The CISSP certification was developed to certify an individual's proficiency in information security practices and principles. Approximately 150,000 information security specialists presently hold this certificate.
What is the Certified Information Security Systems Professional Certification?
The CISSP designation is one of the most popular and sought-after certifications in the information security industry today. Attaining the certification proves that the certification holder has the skill set to design, engineer, implement, and operate an information security program for an organization.
While not every information security role requires the CISSP certification, it should be considered for anyone who wants to advance in the field. For some information security positions, like security analyst, IT director, and chief information security officer (CISO), the CISSP is typically considered a requirement.
Though the certification exam for CISSP and the required work experience may make it challenging to attain, its popularity and value indicate that the time and effort it takes to obtain the CISSP credential is well worth it.
What Are the Requirements for CISSP Certification?
There are several requirements for CISSP certification. First, candidates must have at least five years of work experience in a full-time information security role. A four-year college degree or graduate-level degree in information security may be accepted as a substitution for part of the work experience requirement.
Candidates for the CISSP certification are responsible for building and maintaining a high level of professionalism in the information security industry. As a result, (ISC)2 requires all CISSP candidates to accept a Code of Ethics and to confirm that the professional background and experience they’ve reported are truthful.
Candidates must then take and pass the CISSP certification exam with a score of at least 700 out of 1000 points. The last requirement candidates have for earning a CISSP certification is to get an endorsement of their qualifications from a current (ISC)2 certified professional.
What is the CISSP Certification Exam Like?
The CISSP certification exam consists of 100 to 150 questions, for which candidates have three hours to complete. The test items may be multiple-choice or advanced innovative questions covering the eight domains of the CISSP Common Body of Knowledge (CBK). Each of the eight domains is weighted as follows:
- Security and Risk Management (15%)
- Asset Security (10%)
- Security Architecture and Engineering (13%)
- Communication and Network Security (14%)
- Identity and Access Management (IAM) (13%)
- Security Assessment and Testing (12%)
- Security Operations (13%)
- Software Development Security (10%)
The CISSP certification exam costs $699. If a candidate fails the exam, he or she can retake it after 30 days. Failing a second time requires a 60-day wait to retest, and a third failure requires a 90-day wait for retesting. Thus, test-takers can attempt the CISSP exam as many as four times within 12 months.
Once attained, the CISSP credential is valid for three years. After those three years, certification holders can recertify the credential as long as they’ve paid their annual fees and completed at least 40 hours of CPE credits each year.
More from
IT & Software
category
