What is CISSP?
The Certified Information Systems Security Professional (CISSP) certification has become a prerequisite for anyone developing a senior career in information security. It provides information security professionals with an objective measure of competence and a globally recognised standard of achievement. The CISSP credential suits mid- and senior-level managers who are working towards, or have already attained, positions such as CISO, CSO or senior security engineer.
To qualify for CISSP certification, you must:
- Have a minimum of five years’ experience in two or more of the eight CBK domains.
- Pass the CISSP examination.
- Complete the endorsement process and subscribe to the (ISC)² Code of Ethics.
- Maintain certification through continuing professional education (CPE) credits.
CISSP was developed and is maintained by (ISC)², the International Information Systems Security Certification Consortium. At the heart of CISSP is an information security common body of knowledge (CBK), which is divided into eight domains:
- Security and Risk Management
- Asset Security
- Security Engineering
- Communications and Network Security
- Identity and Access Management
- Security Assessment and Testing
- Security Operations
- Software Development Security
The Official (ISC)2 Guide to the CISSP CBK is the essential guide for those preparing for the CISSP exam and can be purchased here.