Associate of (ISC)²

Support for the Start of Your Information Security Career
You don't have to wait until you've spent years in the field to demonstrate your competence in information security. Become an Associate of (ISC)² and earn recognition from employers and peers for the industry knowledge you've already gained.

Participation Requirements
Associate of (ISC)² status is available to those who have gained competence in key areas of industry knowledge and information security concepts and can pass either the CISSP® or SSCP® examinations, but lack the years of practical work experience required for full accreditation. Associates of (ISC)² must also subscribe to the (ISC)² Code of Ethics and maintain their status in good standing with (ISC)².

 

  The Systems Security Certified Practitioner (SSCP)

The SSCP credential is ideal for those working toward or who have already attained positions as Senior Network Security Engineers, Senior Security Systems Analysts or Senior Security Administrators.

As a SSCP, you gain access to (ISC)² services and programs which support and enhance your growth throughout your information security career. These services and programs include :

• Ongoing education
• peer networking
• forums
• events
• job postings
• industry communications
• concentrations for proven subject matter expertise
• speaking and volunteer opportunities

Recertification :

To remain in good standing with (ISC)², you must recertify every three years and, maintain your SSCP credential. This is primarily accomplished through continuing professional education (PE), 60 credits of which are required every three years.

 

  Certification and Accreditation Professional (CAPCM)

The CAP credential is an objective measure of the knowledge, skills and abilities required for personnel involved in the Certification and Accreditation process. Specifically, the credential applies to professionals responsible for formalizing processes used to assess risk and establish security requirements, as well as ensure information systems possess security commensurate with the level of exposure to potential risk.

CAPCM candidates must meet the following requirements prior to taking the CAP examination.

• Submit the examination fee
• Have a minimum of two years of direct full-time security professional work experience in one or more of the five domains of the (ISC)² CAPCM CBK®,Valid professional experience includes the direct application of appropriate certification and accreditation, knowledge in certification and accreditation-related work performed as a practitioner, auditor, consultant, vendor, investigator or instructor
• Attest to the truth of his or her assertions regarding professional experience, and legally commit to abide by the (ISC)² Code of Ethics
• Successfully answer four questions regarding criminal history and related background

Recertification :

Recertification is also required every three years, with ongoing requirements to maintain your credentials in good standing. This is primarily accomplished through continuing professional education [CPE], 60 credits of which are required every three years. More information on qualifying CPEs will be available upon certification.

CAPs must also pay an annual maintenance fee of $65 per year.

 

  Certified Information Systems Security Professional (CISSP)

(CISSP®) certification provides information security professionals with not only an objective measure of competence but a globally recognized standard of achievement. The CISSP credential demonstrates competence in the 10 domains of the (ISC)² CISSP® CBK®.

The CISSP credential is ideal for mid- and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers.

As a CISSP, you gain access to (ISC)² services and programs which support and enhance your growth throughout your information security career. These services and programs include :

• Ongoing education
• Peer networking
• Forums
• Events
• Job postings
• Industry communications
• Concentrations for proven subject matter expertise
• Speaking and volunteer opportunities

CISSP® candidates must meet the following requirements prior to taking the CISSP examination :

• Subscribe to the (ISC)² Code of Ethics
• Have a minimum of four years of direct full-time security professional work experience in one or more of the ten domains of the (ISC)² CISSP® CBK® or three years of direct full-time security professional work experience in one or more of the ten domains of the CISSP® CBK® with a college degree. Additionally, a Master's Degree in Information Security from a National Center of Excellence can substitute for one year toward the four-year requirement
• Valid professional experience includes information systems security-related work performed as a practitioner, auditor, consultant, vendor, investigator or instructor, or that which requires IS security knowledge and involves direct application of that knowledge

You don't have to be affiliated with an organization to take the CISSP examination.

Recertification :

Recertification is also required every three years, with ongoing requirements to maintain your credentials in good standing. This is primarily accomplished through continuing professional education [CPE], 120 credits of which are required every three years. More information on qualifying CPEs will be available upon certification.

CISSPs must also pay an annual maintenance fee of $85 per year.

 

CISSP® Concentration Examinations

For experienced information security professionals with a CISSP® credential in good standing, (ISC)² Concentrations demonstrate their acquired rigorous knowledge of select CBK® domains. Passing a concentration examination demonstrates proven capabilities and subject-matter expertise beyond that required for the CISSP or SSCP credentials.

CISSP Concentrations
Current Concentrations for CISSPs include the :

Concentration in Architecture (ISSAP)
Concentration in Engineering (ISSEP)
Concentration in Management (ISSMP)