The SSCP Certification - 6 Facts to know

1. What is the SSCP Certification?

The SSCP® is not required for (ISC)2’s CISSP® certification, but is a logical step on the way towards this premier certification, as well as to other vendor-specific and vendor-neutral security certifications.

The SSCP Certification exam consists of 125 multiple-choice questions. Candidates have 3 hours to complete the exam.

Seven SSCP security test domains are covered by the exam Common Body of Knowledge:

1. Access Controls
2. Administration
3. Audit and Monitoring
4. Risk, Response and Recovery
5. Cryptography
6. Data Communications
7. Malicious Code/Malware

Applicants must have a minimum of one year of direct full-time security work experience in one or more of the seven domains of the (ISC)² SSCP ® CBK ®:

• Access controls
  Concepts, terms of subjects and objects, implementation of authentication techniques.

• Analysis and monitoring
  Principles, practices, mechanisms, audits, systems maintenance, analysis of exploits

• Cryptography
  Business and security requirements for cryptography; principles of certificates and key management; secure protocols

• Malicious code
  Differentiate between viruses, Trojan horse and worms; identification of virus activity; differentiate between trap doors and back doors; implications of virus hoaxes and myths

• Networks and telecommunications
  Business and security requirements; remote access architecture; firewalls and wireless networks

• Risk, response and recovery
  Risk management process; security assessments; incident handling analysis; business continuity and disaster recovery plan

• Security operations and administration
  Change management concepts; system development life cycle; security evaluation and assistance; awareness education; code of ethics; security infrastructure evaluation; security policy administration; concepts of certification and accreditation process; implementation, recommendation and promotion of security best practices

Yes.

The term ‘CPE’ is an acronym for Continued Professional Education credits. After a candidate becomes certified, he/she is required to perform continuing education per three-year certification period to become recertified… An SSCP® must submit 60 CPEs during the 3-year re-certification period. Of the 60 CPEs that are required, at least 40 must be ‘A’ credits (directly related to the 7 major domains of the SSCP® CBK) and as many as 20 can be ‘B’ credits (not related to the 7 domains of the SSCP® CBK®).”

Once a candidate has been notified they have successfully passed the SSCP examination, he or she will be required to have his or her application endorsed before the credential can be awarded.

The endorser attests that the candidate's assertions regarding professional experience are true to the best of their knowledge, and that the candidate is in good standing within the information security industry.

Also effective 1 October, 2007, candidates will be required to obtain an endorsement of their candidature exclusively from an (ISC)²-certified professional in good standing. The professional endorsing the candidate can hold any (ISC)² certification – CISSP, Systems Security Certified Practitioner (SSCP®) or Certification and Accreditation Professional (CAPCM).

The Systems Security Certified Practitioner (SSCP Certification) credential provides an independent and objective tool for information security practitioners with an implementation orientation to demonstrate their competency. It allows network and systems security administrators, for example, to achieve recognition as practitioners knowledgeable in the accepted practices, roles and responsibilities of information security. (ISC)² certifications are required for employment in an ever-increasing number of private and public sector organizations.

from "sscp certification" back to "Certification Exam Help homepage"