Certified Information Systems Security Professional (CISSP) certification, offered by ISC², is a globally recognized credential that validates an individual’s expertise in information security. The certification encompasses a comprehensive range of topics, ensuring that certified professionals are equipped to design, implement, and manage a best-in-class cybersecurity program.
Exam Structure:
- Format: Computerized Adaptive Testing (CAT)
- Duration: Up to 3 hours
- Number of Questions: 100–150
- Question Types: Multiple choice and advanced innovative items
- Passing Score: 700 out of 1000 points
- Languages Available: English, Chinese, German, Japanese, Spanish
- Testing Centers: ISC² Authorized PPC and PVTC Select Pearson VUE Testing Centers
Domains and Their Weightings:
- Security and Risk Management – 16%
- Asset Security – 10%
- Security Architecture and Engineering – 13%
- Communication and Network Security – 13%
- Identity and Access Management (IAM) – 13%
- Security Assessment and Testing – 12%
- Security Operations – 13%
- Software Development Security – 10%
Experience Requirements:
- Professional Experience: A minimum of five years of cumulative, paid, full-time work experience in two or more of the eight domains.
- Education Waiver: One year of experience may be waived with a four-year college degree or an approved credential from the ISC² list.
- Associate of ISC²: Candidates lacking required experience can become an Associate of ISC² by passing CISSP exam and then have six years to earn the necessary experience.
Accreditation:
CISSP certification was the first in the field of information security to meet the stringent requirements of ANSI/ISO/IEC Standard 17024, ensuring its credibility and recognition worldwide.