Ask the Expert: How to become CISSP
Q: Do you know how I can become a Certified Information Systems Security Professional?
Walla Walla, WA
A: Dear Tommy:
A short and sweet answer to your question is:
- Have 3 or more years of on-the-job security experience (a bachelor’s or other degree lowers this requirement by one year and one year only)
- Take and pass the CISSP exam
- Sign the ISC-squared’s code of ethics
- Meet continuing education/re-certification requirements
The best way to really understand these requirements is to visit the ISC-squared Web site at http://www.isc2.org. In particular, you will find the following URLs helpful:
· http://www.isc2.org/cgi/content.cgi?category=18: Process for becoming a CISSP
· http://www.isc2.org/cgi/content.cgi?category=19: About CISSP certification
I also recommend that you obtain a good study guide, some practice tests, and start working your way through some serious bibliography to get ready for this exam. You will find the Shon Harris CISSP All-in-One Exam Guide (Osborne/McGraw, 2002, ISBN: 0072193530) and my forthcoming Sybex book, CISSP Study Guide, by Ed Tittel, Mike Chappell, and James Michael Stewart useful resources to help you prepare for this exam.
Likewise, I recommend the following online resources beyond those you’ll find at cramsession.com:
- CISSP Study Guides: The Web portal for the certified information systems security professionals. Exam guides, CISSP career, discussion forums and access to custom training services. www.cissps.com
- CISSP Open Study Group: probably the most comprehensive collection of pointers and information available anywhere. www.cccure.org (a condensed version of this information also appears at Clement Dupius “Resources for the CISSP Study Guide” http://comsec.theclerk.com/CISSP/).
- Dan Houser’s CISSP Study Guide List version 3.2 http://archives.neohapsis.com/archives/cisspstudy/2002-q1/0033.html
This should be more than enough information to get you started. Good luck!