CISSP

The first InfoSec certification that I am posting is the Certified Information Systems Security Professional or CISSP. This certification is governed by (ISC)2 (short for International Information Systems Security Certification Consortium). The information below is only a summary of the requirements. For complete details, please visit the (ISC)2 website.

Certification Description: The certification is for experienced professionals who have direct information systems (IS) security-related work. Click here for details.

Requirements to be able to take the exam: Click here for details.
- Subscribe to the (ISC)² Code of Ethics
- Must have at least five years of direct work experience in two or more of the ten domains of the Common Body of Knowledge (CBK).

Information Systems Security Common Body of Knowledge (CBK):
- Access Control
- Application Security
- Business Continuity and Disaster Recovery Planning
- Cryptography
- Information Security and Risk Management
- Legal, Regulations, Compliance and Investigations
- Operations Security
- Physical Security
- Security Architecture and Design
- Telecommunications and Network Security

Examination Details:
- Fee: The CISSP exam costs $499 (early registration) or $599 (standard registration). The fees may change so please check this page for the latest information.
- Schedules (including seminar) and locations: Click here for details.

Maintenance and Recertification:
- 120 Continuing Professional Education (CPE) must be earned every three years.
- An Annual Maintenance Fee of $85

Starting April 30, 2008, a minimum of 20 CPEs should be posted every year (120 CPE per 3 years still required). The Annual Maintenance Fee (US$85) should still be paid each year.

Concentrations: Click here for details.
ISSAP – Concentration in Architecture
ISSEP – Concentration in Engineering
ISSMP – Concentration in Management

Exams for this certification are held frequently. Good luck to all of those taking the exam!