The CISSP Security Certification

As of October 1, 2007, the experience and endorsement requirements have changed. Now you will need to have 5 years of experience, (instead of 4) and and direct full-time security professional work experience will be required in two or more of the ten CISSP® CBK® domains.

Or four years of work experience with an applicable college degree or a credential from the (ISC)²-approved list below.

Approved Credentials for Experience Waiver:

1. CERT Certified Computer Security Incident Handler (CSIH)
2. Certified Business Continuity Planner (CBCP)
3. Certified Computer Crime Investigator (Advanced) (CCCI)
4. Certified Computer Crime Prosecutor
5. Certified Computer Examiner (CCE)
6. Certified Fraud Examiner (CFE)
7. Certified Information Systems Auditor (CISA)
8. Certified Information Security Manager (CISM)
9. Certified Internal Auditor (CIA)
10. Certified Protection Professional (CPP)
11. Certified Wireless Security Professional (CWSP)
12. CompTIA Security+
13. Computer Forensic Computer Examiner (CFCE)
14. GIAC Security Essentials Certification (GSEC)
15. GIAC Certified Firewall Analyst (GCFW)
16. GIAC Certified Intrusion Analyst (GCIA)
17. GIAC Certified Incident Handler (GCIH)
18. GIAC Certified Windows Security Administrator (GCWN)
19. GIAC Certified UNIX Security Administrator (GCUX)
20. GIAC Certified Forensic Analyst (GCFA)
21. GIAC Information Security Officer (GISO)
22. GIAC IT Security Audit Essentials (GSAE)
23. GIAC Security Expert (GSE)
24. GIAC Certified ISO-17799 Specialist (G7799)
25. GIAC Security Leadership Certification (GSLC)
26. GIAC Systems and Network Auditor (GSNA)
27. GIAC Certified Security Consultant (GCSC)
28. Microsoft Certified Systems Administrator (MCSA)
29. Microsoft Certified Systems Engineer (MCSE)
30. Master Business Continuity Planner (MBCP)
31. Systems Security Certified Practitioner (SSCP)

After passing the test, you will need to be endorsed exclusively by an (ISC)²-certified professional, such as an SSCP or CAP, in good standing.

Stamina is really required to sit for the CISSP security certification exam. It consists of 250 questions and the exam goes for 6 hours. The passing score is 700 points or greater.

In addition to paying an annual maintenance fee and subscribing to the Code of Ethics, a CISSP or SSCP must earn continuing professional education credits every three years - or retake their certification examinations. CPE credits are earned by performing activities largely related to the information systems security profession including, but not limited to, the following:

• Educational courses or seminar attendance
• Security conference attendance
• Association chapter membership and meeting attendance
• Vendor presentations
• University/college course completion
• Providing security training
• Publishing security articles or books
• Serving on industry boards
• Self-study
• Volunteer work, including serving on (ISC)2 volunteer committees

The CISSP security certification curriculum covers subject matter in a variety of Information Security topics. The CISSP examination is based what (ISC)² terms the Common Body of Knowledge (or CBK). According to (ISC)², "the CISSP CBK is a taxonomy -- a collection of topics relevant to information security professionals around the world.

The CISSP CBK establishes a common framework of information security terms and principles that allow information security professionals worldwide to discuss, debate and resolve matters pertaining to the profession with a common understanding."

The CISSP CBK is fundamentally based on the CIA triad, the core information security and assurance tenets: confidentiality, integrity and availability, and attempts to balance the three across ten areas of interest, which are also called domains. The ten CBK domains are:

from "cissp security certification" back to "I.T certification"