|
|
|
|
How To Certify |
To become a CISSP, a candidate must successfully complete two processes: Examination and Certification |
| |
Examination |
The eligibility requirements to sit for the CISSP examination are completely separate from the eligibility requirements necessary to be certified. To sit for the CISSP examination, a candidate must: |
| |
Submit the examination fee |
- Assert that he or she possesses a minimum of four years of professional experience in the information security field or three years plus a college degree. Please refer to the Qualifications FAQ for more details.
- Complete the Candidate Agreement, attesting to the truth of his or her assertions regarding professional experience and legally commit to adhere to the CISSP Code of Ethics.
- Successfully answer four questions regarding criminal history and related background.
|
Certification |
|
To be issued a certificate, a candidate must: |
- Pass the CISSP exam with a scaled score of 700 points or greater.
- Submit a properly completed and executed Endorsement Form.
- If the candidate is selected for audit, they must successfully pass that audit of their assertions regarding professional experience.
|
Endorsement |
Once a candidate has been notified of passing the CISSP examination, he or she will be required to have his or her application endorsed by a CISSP before the credential can be awarded. If no CISSP can be found, another qualified professional with knowledge of information systems or an officer of the candidates corporation can be used to validate the candidate's professional experience. The endorser will attest that the candidate's assertions regarding professional experience are true to the best of their knowledge, and that the candidate is in good standing within the information security industry. |
| |
Audit |
A percentage of the candidates who pass the CISSP examination and submit endorsements will be randomly subjected to audit and required to submit a resume for formal review and investigation. |
| |
SSCP Certification Requirements |
Obtaining the SSCP Certification is only available to qualified candidates who subscribe to the (ISC)2 code of ethics and pass the SSCP Certification examination based on the relevant SSCP Common Body of Knowledge (CBK). Candidates must also be able to prove at least one-year experience in one of the 7 domains that comprise the SSCP Certification. |
SSCP Certification candidates must meet the following requirements prior to taking the SSCP examination.
Subscribe to the (ISC)2 Code of Ethics.
Have at least 1 year of cumulative work experience in one or more of the seven test domains in information systems [IS] security. Valid experience includes information systems security-related work performed as a practitioner or that which requires IS security knowledge and involves direct application of that knowledge. No affiliation with any organization is required for taking the SSCP Certification examination. Upon successfully passing of your SSCP Certification examination, you will receive your certificate and ID card. You are also eligible to be listed in the SSCP Directory and can participate in annual (ISC)2 elections. |
| |
Maintenance Requirements |
Recertification is also required every 3 years, with on-going requirements for maintaining your credentials in good standing. This is primarily accomplished through continuing professional education [CPE] and the earning of 60 CPE credits every three years. More on qualifying for credits will be available upon certification. |
|
