The International Information Systems Security Certification Consortium (ISC)² ® Credentialing Program
What is (ISC)² ® ?
The International Information Systems Security Certification Consortium, or (ISC)² ® , is the internationally recognized Gold Standard for educating and certifying information security professionals throughout their careers. They have certified over 40,000 information security professionals in more than 100 countries.
SkillSoft offers courses that map to the following (ISC)² ® certifications:
CISSP - Certified Information Systems Security Professional
ISSEP - Information Systems Security Engineering Professional
SSCP - Systems Security Certified Practitioner
Click on the link to view the SkillSoft courses that map to these (ISC)² certification exams.
What is the (ISC)² Common Body of Knowledge?
The (ISC)² CBK® is a taxonomy - a collection of topics relevant to information security professionals around the world. The (ISC)² CBK establishes a common framework of information security terms and principles which allows information security professionals worldwide to discuss, debate, and resolve matters pertaining to the profession with a common understanding.
Domains from the (ISC)² credentials are drawn from various topics within the (ISC)² CBK. (ISC)² uses the CBK to assess a candidate's level of mastery of the most critical domains of the practice of information security.
CISSP®
(ISC)² works to ensure that accomplished and experienced information security professionals holding the Certified Information Systems Security Professional (CISSP®) Certification have a working and current knowledge of the following 10 domains of the CBK®.
- Access Control Systems and Methodology
- Applications and System Development Security
- Business Continuity Planning (BCP) and Disaster Recovery Planning (DRP)
- Cryptography
- Law, Investigation and Ethics
- Operations Security
- Physical Security
- Security Architecture and Models
- Security Management Practices
- Telecommunications and Networks Security
ISSEP ®
For CISSP®s at the top of their fields, an (ISC)² ISSEP ® credential demonstrates competence in the rigorous requirements for information security engineering. The 4 domains of the CBK ® covered by the ISSEP ® certification are:
- Systems Security Engineering
- Certification and Accreditation
- Technical Management
- U.S. Government Information Assurance Regulations
SSCP ®
Information security practitioners holding the Systems Security Certified Practitioner (SSCP ®) Certification must have a working and current knowledge of the following 7 domains of the CBK ®.
- Access Control
- Administration
- Audit and Monitoring
- Cryptography
- Data Communications
- Malicious code/Malware
- Risk, Response and Recovery
Continuing Professional Education (CPE) Credits
In addition to paying an annual maintenance fee and subscribing to the (ISC)² Code of Ethics, an (ISC)² credential holder must earn CPE credits over a three year period - or retake their certification examinations.
Group A credits are achieved when the area of the learner’s study focuses on the Domain Areas for the respective certification. Group B credits can be achieved from training on topics that are outside the Domain Area so long as it furthers the learner’s professional development.
- CISSP ® must earn 120 CPE’s: 80 for Group A and 40 for Group B.
- ISSEP ® must earn 20 of the 120 CPE’s from the 4 domains in the relevant area of concentration.
- SSCP ® must earn 60 CPE’s: 40 for Group A and 20 for Group B.
For those information security professionals who are seeking CPEs for self-study, SkillSoft’s entire catalog of courses is eligible for consideration. As applicability for CPEs depends upon each learner’s area of study and professional development plans, learners are responsible to verify with ISC(2) whether the course(s) they have chosen for CPE relate to the specific domain (Group A) and are relevant to their own professional development (Group B). For more information on (ISC)² ® go to: www.isc2.org.
