The Certified Information Systems Security Professional (CISSP) is a globally recognized standard for information security professionals. CISSP certification is administered by (ISC)², an international, nonprofit membership association for information security leaders. The CISSP is a rigorous exam that tests a candidate's knowledge and understanding of information security concepts and best practices. It is one of the most respected and well-known information security certifications in the industry.
ISC2's Certified Information Systems Security Professional (CISSP) certification is a globally recognized certification that signifies an individual's ability to design, implement, and manage an organization's information security program. The CISSP certification is a prerequisite for many high-level information security positions and is often required by employers. Individuals who earn the CISSP certification have demonstrated their knowledge and skills in information security through an extensive written examination and an experience requirement.
The CISSP exam is a computer-based test consisting of 250 multiple-choice questions. Candidates have six hours to complete the exam. A passing score is 700 out of 1000.
CISSP certification is valid for three years. To maintain certification, CISSP holders must earn 120 continuing professional education (CPE) credits during that time period. CISSP holders can renew their certification by passing an exam or by completing certain work experience and CPE requirements.
To earn the CISSP, candidates must have at least five years of full-time, paid work experience in two or more of the CISSP domains. Candidates who do not meet the work experience requirement can still earn the CISSP by passing the exam and completing a one-year internship in an information security role.