The International Information Systems Security Certification Consortium ((ISC)2) will be making more stringent the requirements for the Certified Information Systems Security Professional (CISSP) certification.
Beginning Oct. 1, the minimum experience requirement for certification will be five years of relevant work experience in two or more of the 10 domains of the CISSP CBK, a taxonomy of information security topics (ISC)2 specifies, or four years of work experience with an applicable college degree or a credential from the (ISC)2-approved list.
Currently, CISSP candidates are required to have four years of work experience or three years of experience with an applicable college degree or a credential from the (ISC)2-approved list, in one or more of the 10 domains of the CISSP CBK.
Also beginning Oct. 1, CISSP candidates will be required to obtain an endorsement from an (ISC)2-certified professional.
Currently, candidates can be endorsed by an officer from the candidate’s organization if no CISSP endorsement can be obtained. The professional endorsing the candidate can hold any (ISC)2 base certification — CISSP, System Security Certified Practitioner (SSCP) or Certification and Accreditation Professional (CAPCM).
Sarah Bohne, (ISC)2 director of communications and member services, said that when (ISC)2 first formed it had just a few hundred credential holders, which is why the consortium elected to make this change now.
“We weren’t in a position to offer this before, so we said that it was all right if an officer of your corporation who worked with you…
Please log in or subscribe to read this article