CISSP® – Certified Information Systems Security Professional

What is the CISSP?

The CISSP is a vendor-neutral information security certification developed by (ISC)² (the International Information Systems Security Certification Consortium).

Globally recognised as the best information systems security certification for security professionals, it teaches the eight fundamental domains of information security.

As of 2019, there are 136,480 (ISC)² members holding the CISSP certification worldwide.

Who is the CISSP for?

The CISSP certification is ideal for those working in positions such as (but not limited to):

• Security consultant
• Security analyst
• Security manager
• Security systems engineer
• IT director/manager
• Chief information security officer
• Security auditor
• Director of security
• Security architect
• Network architect

What is a CISSP certification salary?

According to the 2019 (ISC)² Cybersecurity Workforce Study, as a CISSP you can expect to earn an average salary of:

How difficult is the CISSP?

As you might expect of such a sought-after qualification, it is not easy to become a CISSP.

As well as 5 years of appropriate work experience, you must pass an intensive 6-hour exam comprising 250 questions. The pass mark is 70%.

What does the CISSP cover?

The CISSP curriculum comprises an information security CBK (common body of knowledge), which is divided into eight domains:

1. Security and Risk Management
2. Asset Security
3. Security Architecture and Engineering
4. Communications and Network Security
5. Identity and Access Management
6. Security Assessment and Testing
7. Security Operations
8. Software Development Security

The CISSP certification

The (ISC)² CISSP certification has become a prerequisite for anyone developing a senior career in information security.

It provides information security professionals with an objective measure of competence and a globally recognised standard of achievement.

How long does it take to get CISSP qualified?

To qualify for the CISSP certification, you must:

• Have a minimum of five years’ experience in two or more of the eight CBK domains;
• Pass the CISSP examination;
• Complete the endorsement process and subscribe to the (ISC)² Code of Ethics; and
• Maintain certification through continuing professional education (CPE) credits.

If you do not have enough experience, you can still take the exam, but will be an Associate of (ISC)² rather than a CISSP if you pass. You will then have six years to earn the necessary experience to become a CISSP.

How much is the CISSP exam fee? 

The standard registration fee for the CISSP exam is £560 in the UK.

Information about all (ISC)² exam fees can be found on the (ISC)² website.

You can schedule your exam through Pearson VUE, the global administrator for all (ISC)² exams.