Before 1980 there was no need of the term computer security, as it was having a minimal threat.
Before 1980 there was no need of the term computer security, as it was having a minimal threat. But as the time passed, the threat was developed and in the mid of 1980s, there was a need for having computer security or protection forces to build up. It was required to build up a vendor-neutral body certification program that can give immense protection and structured competence. The result came to existence in the month of November, 1988, Special Group for Computer Security formed under the guidance of Data Processing Management Association (DPMA).
Aspiring candidates are offered Certified Information Systems Security Professional Training by the authority, called (ICS)2 or by the other professional bodies globally. It has brought several interested organizations under the one umbrella and introduced one uniform certification program called the “International Information System Security Certification Consortium”, formed in the mid of 1989 in the United States of America. The organization has introduced its first global certification called CISSP Certification in 1994. It is a non-profit organization and operating in 171 countries of the world. According to the recent statistics, the organization has almost 1,31,180 members worldwide in which most of the members (84,557) are from the United States.
The global certification known as CISSP stands for “Certified Information System Security Professional” backed by the International Information System Security Certification Consortium, in short (ISC)2 which is offered to the IT professionals and considered as one of the best IT certification of the world as of now.
What is required from the aspirants:
Experience Required: The most technical part of the aspirants going for the CISSP is prior experience working on two of any eight CBK (Common Body of Knowledge) domains for at least five years. Five years is the minimum criteria, having working experience more than five years will be an added advantage. The employment status must be a full-time experience.
The eight domains that you should know before you proceed are:
- Asset Security
- Communications and Network Security
- Security and Risk Management
- Security Engineering
- Software Development Security
- Security Assessment and Testing
- Identify and Access Management
- Security Operations
You have to pass the exam: The candidates have to pass the six-hour-long exam which includes 250 multiple choice option based questions. The questions will be based on eight domains of security provided or focused by the Common Body of knowledge of (ICS)2. Those eight domains are stated above which will be included with the questions on advanced innovations and testing. The results will be measured on a scale of 1000 marks where the candidate has to score more than 700 to obtain the credentials.
The exam will be conducted on the English language along with the other seven languages as follows. Entire exam will be administered through Pearson VUE and conducted in an exam center where it is available.
Other 7 languages are:
- Brazilian Portuguese
- Simplified Chinese
Prepare for an endorsement: Not only passing the examination enables you to work as a Certified Information System Security Professional. You need to get endorsed by the (ICS)2. You will be notified by the authority when you’ll get to complete the endorsement process. After you give your online CISSP exam with proper CISSP online training and achieve a score of 700 or more, you’ll be notified to download the endorsement form and fill-up the form duly with the required data and place your curriculum-vitae to obtain the endorsement process completed. There will be the endorsement process done by an individual or group of individuals on behalf of (ICS)2. Where you may be asked to submit all your past credentials of working on the eight domains (stated above) of (ICS)2. There you need to subscribe to the (ICS)2 Codes of Ethics, which is essential.
Be ready for an audit process: After your endorsement done by the (ICS)2, you may be selected for an abrupt audit by the (ICS)2 authority. It is not for all the candidates, as this audit system is being selected alternatively through an automated system. But, if you are selected for an audit, then you need to submit the following necessary documents either through email or by Fax to (ICS)2. These are as follows:
- Your current Curriculum Vitae containing your current employer, contact details, email address, past professional details and detailed description of your past duties relating to those eight security domains of (ICS)2 (stated above)
- Candidate Consent & Release Form (which you can download from ICS2 website directly)
- Your college degree/diploma certificates
The audit process may contain almost 15 days on the part of ICS2 and after that, you will be registered as the certified CISSP globally. Your details will be registered on the database of the ICS2, permanently.
Cost of CISSP certification exam:
As per the current information found on the website of the ICS2 the cost of the CISSP exam costs $699. It may vary on the location of the exam and necessary taxes may be applied to it. The attendance on the certification exam may be rescheduled by paying $50 extra, and you can cancel the exam if you found less prepared by paying $100 as cancellation fees.
Once you got the final certification, it will be valid for three years. After three years you need to recertify your CISSP credentials by paying the annual maintenance fees where you need to show your minimum 40 hours of CPE credits each year.
Who can earn a CISSP certification:
The CISSP certification is not for every IT-eans, it is mostly specialized. Only IT security domain professionals who have the working experience on ICS2 specified eight domains of system security. Here are the professionals who can opt for CISSP certification:
- Chief Information Officer
- Security Analyst
- Chief Information Security Officer
- Security System Engineer
- Director of Security
- IT Manager/Director