Transcription
TheULTIMATE GUIDEto theBe a Leader in the Field of Information Security
ACHIEVE YOURCISSP CERTIFICATIONSHOW THEM YOU’RE THE INFOSEC EXPERTAre you looking to accelerate your infoseccareer? Differentiate yourself to employersand/or clients? The CISSP is an elite way todemonstrate your knowledge, advance yourcareer, and join a community of like-mindedcybersecurity leaders. It shows you have allit takes to design, engineer, implement, andrun an information security program.The Ultimate Guide to the CISSP is a musthave resource if you are planning to sit forthe exam – and it was developed by (ISC)²,the creator of the CISSP Common Body ofKnowledge (CBK).Designed with you in mind, thisguide will walk you through: Fast facts about CISSP An overview of the CISSP exam Benefits of becoming a CISSP Setting yourself up for success Steps to getting certifiedWe’re here to help you through the certificationprocess. Contact us with any questions.The Ultimate Guide to the CISSP2
FAST FACTS1st1994Introduced in 1994First information security credential tomeet the strict conditions of ISO/IECStandard 17024 131KCISSPs work in more than160 countries globallyAverage CISSPSalary: US 131,030– CertMag 2018 Salary SurveyTRAINING AND EXAM40hrs.Length of the typical CISSPtraining course (Training canrange from 5 days to 12 weeksdepending on delivery method)100 - 1503hrs.ABOUT CISSPOver 140,000 professionalshave obtained CISSPcertificationCISSP named the mostvalued security credential byemployers by a margin of 3 to 1DoD Approved– 2017 Cybersecurity TrendsSpotlight ReportEXPERIENCE REQUIRED5 years or more:Amount of work experience you need to haveNumber of questions on theEnglish CISSP CAT examThe non-English linear, fixed-formCISSP exam has 250 questionsin two of the domain areas required for CISSPcertificationMaximum amount of time for theCISSP CAT examLess than 5 years:The non-English linear, fixed-form CISSPexam allows 6 hours to completeto pursue the CISSP certification via the700Associate of (ISC)²Score you need out of1,000 to pass the examCISSP CATAs of December 18, 2017, all English CISSP examsworldwide use Computerized Adaptive Testing(CAT). Non-English CISSP exams are administeredas a linear, fixed-form exam.Learn more about CATThe Ultimate Guide to the CISSPAmount of work experience that allows youExam availability: English, French, German, BrazilianPortuguese, Spanish, Japanese, Simplified Chinese,KoreanTesting Centers: (ISC)² Authorized PPC and PVTCSelect Pearson VUE Testing Centers3
WHAT’S COVEREDON THE CISSP EXAMTHE TOPICS YOU’LLNEED TO KNOWBy taking the CISSP exam,you’ll have the chance toprove you have the technicaland managerial knowledgenecessary to effectivelydesign, engineer, andmanage the overall securityposture of an organization.The exam covers 8 domain areas. Think of the domains as specific topics youneed to know based on your professional experience and education. Somedomains carry more exam weight than others.SOFTWAREDEVELOPMENTSECURITYSECURITYAND RISKMANAGEMENT10 %SECURITYOPERATIONS15 %13 %ASSETSECURITY10 %SECURITYASSESSMENTAND TESTING12 %13 %13 %IDENTITYAND ACCESSMANAGEMENT(IAM)The Ultimate Guide to the CISSP14 %SECURITYARCHITECTUREAND ENGINEERINGCOMMUNICATIONAND NETWORKSECURITYDOWNLOADTHE CISSP EXAMOUTLINE FOR ADEEPER DIVE.4
BENEFITSTO BECOMING A CISSPGET CONNECTED AND KEEPYOUR KNOWLEDGE FRESHOnce you attain the CISSP certification, you become amember of (ISC)² - and you’ll be part of a growing globalcommunity of over 130,000 information security leaders.You’ll also receive access to ongoing continuing educationand professional development opportunities, helping youstay ahead of industry trends and keep your knowledge andskills current.Benefits you’ll receive include:Free Webinars ThinkTank Security Briefings From the Trenches Solutions Summit EMEA Secure WebinarsNetworking OpportunitiesDiscounts on(ISC)² Education (ISC)² Training (ISC)² Textbooks (ISC)² Study GuidesIndustryRecognition (ISC)² Global Awards Program (ISC)² Chapters (ISC)² Member ReceptionsDiscounted and Free Events (ISC)² Security Congress- U.S., Asia-Pacific, Latin AmericaInfoSecurity ProfessionalMagazine Free for members Six digital bi-monthly issues (ISC)² Secure Summits Industry ConferencesFor more information on member benefits,visit: www.isc2.org/Benefits-of-MembershipThe Ultimate Guide to the CISSP5
SETTING YOURSELF UP FOR SUCCESSGET PREPARED TO ROCK YOUR CISSP CERTIFICATIONGET FAMILIAR WITH THE EXAM. The exam outlineis a great place to start. It’s a free resource that detailsthe major topics and subtopics within the 8 domainsyou will be tested on in the CISSP exam. Reviewingthis outline can help set you up for success as youprepare for the exam.CREATE URGENCY AND DEVELOP A PLAN.Commit to an exam date early. This can help you staymotivated and allow you to work backwards as youcreate a study schedule. Stay on track and stick to aroutine by blocking study time on your calendareach day.INVEST IN STUDY MATERIALS, STARTING WITHTHE CBK GUIDE BOOK. Take advantage of themany self-study resources available. From a traditionalstudy guide to an on-the-go study app, (ISC)² offersseveral options to suit your study needs.REVIEW AND REFRESH YOUR KNOWLEDGETHROUGH TRAINING. Attending a formal trainingonce you’ve begun studying can help reinforce thetopics you’ve already explored. Choosing officialtraining from (ISC)² provides several benefits, likeaccess to the most up-to-date content with a focus onreal-world learning activities and scenarios. You’ll alsobe learning from an (ISC)²-authorized instructor whois an industry expert and certified CISSP. And, withdiverse training options available - including in-personand online - you can pick what works best for youand your schedule.Classroom-basedOnline Instructor-LedPrivate OnsiteOnline Self-PacedBRUSH UP ON LESS FAMILIAR TOPICS. After yourtraining, think about the topics that were coveredand if there were any areas where you could improve.Refer back to your study materials and review thosedomains more closely as you continue to prepare.PRACTICE, PRACTICE, PRACTICE! Now’s the timeto assess your exam readiness by going throughrealistic practice questions. You can find these practicequestions in your CISSP Practice Test Book, CISSPstudy app, and other study materials. Once you’reacing the practice exams, you should feel confidentthat you’re ready to take on the real thing!CATCH SOME ZZZS. Try to relax in the days leadingup to your exam. Go to bed at a reasonable hour thenight before, and try to eat a healthy breakfast on themorning of your exam.Good luck. You got this!6
STEPS TO GETTINGCERTIFIED1Obtain the Required ExperienceTo qualify for the CISSP, you must have a minimum of five years ofcumulative work experience in two or more of the eight domains: Security and Risk Management Asset Security Security Architecture and Engineering Communication and Network Security Identity and Access Management (IAM) Security Assessment and Testing Security Operations Software Development SecurityDon’t have enough experience? Check out our Associate program atwww.isc2.org/Certifications/Associate.2Take the Exam3Complete the Endorsement Process4Maintain Your MembershipCandidates are given a maximum of three hours to complete the100-150 question English CISSP CAT exam, or six hours to completethe 250 question non-English CISSP linear exam.www.pearsonvue.com/isc2Once you successfully pass the exam, you will have nine months fromthe date of the exam to complete this process.www.isc2.org/endorsementOnce you are certified, you become a member of (ISC)².Recertification is required every three years. This is accomplishedthrough earning Continuing Professional Education (CPE) credits andpaying an Annual Maintenance Fee (AMF).120 CPEsUS 85 AMFThe Ultimate Guide to the CISSP3 years7
About (ISC)²(ISC)² is an international nonprofit membership association focused on inspiring a safe and securecyber world. (ISC)² offers a portfolio of credentials that are part of a holistic, programmatic approachto security. Our membership, over 130,000 strong, is made up of certified cyber, information,software and infrastructure security professionals who are making a difference and helping toadvance the industry.For more information about CISSP certification and training, contact an Education Consultant inyour region:North America: Phone: 1.866.331.4722 ext. 2 Email: training@isc2.orgEurope, Middle East and Africa: Phone: 44 (0)203 300 1878 Email: info-emea@isc2.orgLatin America: Phone: 55 11 3174 4613 Email: connectlatam@isc2.orgAsia-Pacific: Hong Kong: 852.2850.6951Japan: 81-3-5322-2837China: 86-10-58732896Email: isc2asia@isc2.orgThe Ultimate Guide to the CISSP88
English CISSP CAT exam Length of the typical CISSP training course (Training can range from 5 days to 12 weeks depending on delivery method) 40 hrs. 1st Maximum amount of time for the 3 hrs. CISSP CAT exam Score you need out of 700 1,000 to pass the exam DoD Approved The non-English linear, fixed-form CISSP exam has 250 questions
