What is CISSP?
The Certified Information Systems Security Professional (CISSP) certification from ISC(2) is one of the most advanced and prestigious information security qualifications available. CISSP is aimed towards experienced security professionals with elite skills in designing, architecting, implementing, controlling and maintaining cybersecurity solutions and programs.
Being recognized by ISC(2) is in itself a great achievement, and CISSP enables you to distinguish yourself as a true leader in your field. Today, every business from healthcare to online shopping is susceptible to security threats, and a CISSP certification means that you have the education, backing, networking and support systems to tackle dangers head on.
Information security is a lucrative field that impacts companies on a variety of levels. This means employers are prepared to pay high salaries to those who consolidate their industry experience with advanced qualifications like CISSP.
Who should attain CISSP?
The CISSP is suited to experienced security practitioners, managers and executives interested in proving their knowledge across a wide array of security practices and principles, including those in the following positions:
- Chief Information Security Officer
- Chief Information Officer
- Director of Security
- IT Director/Manager
- Security Systems Engineer
- Security Analyst
- Security Manager
- Security Auditor
- Security Architect
- Security Consultant
- Network Architect
One of the most important steps to take before pursuing the CISSP certification is to check the eligibility criteria and pre-requisites that constitute CISSP requirements.
In short, CISSP requirements are a combination of relevant work experience and education. Here are some of the CISSP requirements:
- To become CISSP certified, you must hold a minimum of five-years paid work experience in two or more of the eight domains of the CISSP CBK. Earning a 4-year college degree or additional credential from the ISC(2) approved list will satisfy 1-year of the required experience.
- Till the time (in case) you do not yet have the required 5-years of experience you will be awarded an ISC(2) associate title which will be replaced once you gain and submit proof of your experience.
CISSP training and formats
The aim of CISSP training is to consolidate technical knowledge and prepare delegates to pass the CISSP exam. Courses provide a comprehensive review of information security concepts and industry best practices, covering the eight domains of the official CISSP CBK (Common Body of Knowledge).
Identity and Access Management (IAM)
Security Assessment and Testing
Software Development Security
The CISSP exam is a 6-hour long exam and you will be required to score 700/1000 in order to pass the exam. The exam will have multiple choice question as well as scenario based questions. There can be other innovative question patterns like mix and match so its best to be prepared by taking a CISSP training course beforehand!
The CISSP is the only ISC(2) certification that offers additional concentrations beyond the base credential. These specialized credentials build upon the original CISSP. Whether you’re interested in career growth, deeper knowledge or achieving elite status, CISSP concentrations are optional pursuits that prove your subject matter mastery. They highlight your evolving expertise in information security. Currently, there are three specializations:
- Information Systems Security Engineering Professional (CISSP–ISSEP)
- Information Systems Security Management Professional (CISSP–ISSMP)
- Information Systems Security Architecture Professional (CISSP–ISSAP)
Related training areas
CISSP is closely linked to a variety of other advanced information security certifications. Here are some examples: