CISSP® certification is offered by International Information Systems Security Certification Consortium (ISC)2. It is undoubtedly one of the highly regarded and most sought certifications of the information security industry. This certification is globally recognized and proves that you have demonstrated your practical skills in different information security spheres. The exam tests you on ten different domains of the (ISC)2 core bodies of knowledge (CBKs) or subject matter areas. CISSP is aimed at information assurance professionals who are responsible for the in-depth security of information security systems. The information assurance professionals are responsible to architect, design, and manage security in business environments.
Before taking CISSP certification exam:
- You need to have at least 5 years of full time paid experience in any of the two domains out of the 10 domains specified by (ISC)2 CISSP CBK.
- Alternatively, you can have 4 years of experience and a four-year college degree or equivalent or an additional credential from the (ISC)2 approved list.
- If you don't have an experience, you can still take this exam and become an Associate of (ISC)2. In this case you need to gain the desired experience within 6 years of the exam to become a CISSP certified professional.
The Exam consists of 250 multiple choice questions that need to be answered within 6 hours. The 25 questions in the exam are experimental questions and are not graded in the exam. You need to pass the exam with 70% or better score. The exam also requires you to agree to (ISC)2 code of ethics and claim to have a clean criminal history.
Once the exam is passes, you need to fill the endorsement form and get your experience endorsed by an (ISC)2 certified professional who is an active member in good standing. In case you do not find an endorser for you, you will have to fill the Applicant Endorsement Assistance Form for your certification credential.
CISSP exam is valid for three years. However, you can regain the certification either be retaking the exam or submitting Continuing Professional Education (CPE) credits to the authorities. Each year you need to submit 20 CPEs for the 3 years of the certification cycle. This means, you need to submit total 120 CPEs.
In addition, you also need to pay an annual fee of US$85.
CISSP exam is based on the following ten domains:
- Access Control
- Telecommunications and Network Security
- Information Security Governance and Risk Management
- Software Development Security
- Security Architecture and Design
- Operations Security
- Business Continuity and Disaster Recovery Planning
- Legal, Regulations, Investigations and Compliance
- Physical (Environmental) Security
CISSP certification allows you to:
- Gain working knowledge of information security concepts and earn 25% more than non-certified professionals.
- Show your commitment towards your profession with enhanced credibility and marketability
- Get yourself recognized globally and stand distinct among the fellow professionals
After gaining CISSP certification I was highly recognized for my skills in my company. I became a part of security architecture and design team of the company and was involved in designing security architecture of the company.
David S. Smythe, Security analyst, RBC