Closed Thread
Page 4 of 4 First 1234
Results 76 to 93 of 93
  1. Junior Member
    Join Date
    Mar 2010
    Posts
    1
    #76
    Quote Originally Posted by keatron View Post
    Dear (ISC)2 Member,

    The (ISC)2 board of directors has approved new experience requirements for the CISSP certification, effective 1 October, 2007. While these changes will not affect current holders of the CISSP or those scheduled to take the exam by 30 September 2007, we wanted you to be aware of them.

    It is the responsibility of the (ISC)2 board of directors to continually review the entire spectrum of the consortium’s education and certification programs to ensure that (ISC)2 continues to provide the "gold standard" of professional certification in the information security industry. The board believes these new requirements will assure organizations worldwide that CISSPs have demonstrated they can meet the challenges of an ever-increasing threat environment, while you as an (ISC)2 member can be assured that the rigorous standards of the CISSP are being maintained in a maturing profession.

    The new requirements include the following components:
    • The minimum professional experience requirement for CISSP certification will be 5 years of relevant work experience in two or more of the 10 domains of the CISSP CBK, or four years of work experience with an applicable college degree or a credential from the (ISC)2-approved list. The current requirements for the CISSP call for four years of work experience in one or more of the 10 domains of the CISSP CBK, or three years of experience with an applicable college degree or a credential from the (ISC)2-approved list.
    • Candidates for any (ISC)2 credential will be required to obtain an endorsement of their candidature exclusively from an (ISC)2-certified professional in good standing. The professional endorsing the candidate can hold any (ISC)2 certification – CISSP, SSCP or CAP. Currently, candidates can be endorsed by an officer from the candidate’s organization if no CISSP endorsement can be obtained. The board believes that only an (ISC)2-credentialed professional bound by its Code of Ethics should provide a candidate endorsement.
    Dear Friends,

    I have completed by Bachlore of Engg. (B.E) & having 5 yrs of experience in IT.
    Can anyone please help me out to get exact current requirement of CISSP exam.

    Currently I am not holding any security related certification.

    Please suggest.

  2. SS -->
  3. Senior Member
    Join Date
    Nov 2005
    Location
    Birmingham, AL
    Posts
    1,088
    #77
    Quote Originally Posted by ameyachinu22 View Post
    Dear Friends,

    I have completed by Bachlore of Engg. (B.E) & having 5 yrs of experience in IT.
    Can anyone please help me out to get exact current requirement of CISSP exam.

    Currently I am not holding any security related certification.

    Please suggest.

    CISSP Education & Certification

    The Certification That Inspires Utmost Confidence
    If you plan to build a career in information security – one of today’s most visible professions – and if you have at least five full years of experience in information security, then the CISSP® credential should be your next career goal.

    The CISSP was the first credential in the field of information security, accredited by the ANSI (American National Standards Institute) to ISO (International Standards Organization) Standard 17024:2003. CISSP certification is not only an objective measure of excellence, but a globally recognized standard of achievement.

    For your CISSP credential, your professional experience has to be in two or more of these 10 (ISC)˛ CISSP domains:
    • Access Control
    • Application Development Security
    • Business Continuity and Disaster Recovery Planning
    • Cryptography
    • Information Security Governance and Risk Management
    • Legal, Regulations, Investigations and Compliance
    • Operations Security
    • Physical (Environmental) Security
    • Security Architecture and Design
    • Telecommunications and Network Security
    (ISC)˛ Security Transcends Technology

    Do you have the proper experience for your CISSP® credential?
    You must have a minimum of five years of direct full-time security work experience in two or more of these 10 domains of the (ISC)˛ CISSP CBK®:
    • Access Control
      Concepts, terms of subjects and objects, implementation of authentication techniques
    • Application Security
      Security and controls of the systems development process, life cycle, application controls, change controls, data warehousing, data mining, knowledgebased systems, program interfaces, and concepts used to ensure data and application integrity, security, and availability
    • Business Continuity and Disaster Recovery Planning
      Preservation of the business in the face of major disruptions to normal business operations
    • Cryptography
      Business and security requirements for cryptography, principles of certificates and key management, secure protocols
    • Information Security and Risk Management
      Identification of an organization’s information assets and the development, documentation, and implementation of policies, standards, procedures and guidelines that ensure confidentiality, integrity, and availability
    • Legal, Regulations, Compliance and Investigations
      Computer crime laws and regulations, the investigative measures and techniques which can be used to determine if a crime has been committed, methods to gather evidence if it has, as well as the ethical issues and code of conduct for the security professional
    • Operations Security
      Identify the controls over hardware, media, and the operators with access privileges to any of these resources
    • Physical (Environmental) SecurityThreats, vulnerabilities, and countermeasures that can be utilized to physically protect an enterprise’s resources and sensitive information
    • Security Architecture and DesignConcepts, principles, structures, and standards used to design, implement, monitor, and secure, operating systems, equipment, networks, applications, and those controls used to enforce various levels of confidentiality, integrity, and availability
    • Telecommunications and Network Security
      Structures, transmission methods, transport formats, and security measures used to provide integrity, availability, authentication, and confidentiality for transmissions over private and public communications networks and media
    Note that if certain circumstances apply and with appropriate documentation, candidates are eligible to waive one year of professional experience:
    • One year waiver of the professional experience requirement based on a candidate’s education Candidates can substitute a maximum of one year of direct full-time security professional work experience described above if they have a four-year college degree OR Advanced Degree in information security from a U.S. National Center of Academic Excellence in information Security (CAEIAE) or regional equivalent.

      OR
    One-year waiver of the professional experience requirement for holding an additional credential
    on the
    (ISC)˛ approved list
    Valid experience includes information systems security-related work performed as a practitioner, auditor, consultant, investigator or instructor, that requires Information Security knowledge and involves the direct application of that knowledge. The five years of experience must be the equivalent of actual fulltime Information Security work (not just Information Security responsibilities for a five year period); this requirement is cumulative, however, and may have been accrued over a much longer period of time.

  4. Member Amco's Avatar
    Join Date
    Apr 2010
    Location
    Louisiana
    Posts
    72

    Certifications
    N+, S+, CWNA, CWSP, MCITP:SA, CCNA, JNCIA
    #78
    How often is the CISSP given a year?

  5. EC Council #1 fan colemic's Avatar
    Join Date
    Apr 2010
    Location
    Tejas, Baby!
    Posts
    1,531

    Certifications
    CISSP, CISA, GIAC 2700, MCSE:Security, CEH, CHFI, CCNA:Security, CCENT, Sec+, Net+, ITIL v3 Foundations
    #79
    It is scheduled throughout the year, it is not like ISACA which is only 2x/yr. Check the ISC(2) site for testing dates and locations.

  6. Senior Member Devilsbane's Avatar
    Join Date
    Apr 2010
    Posts
    4,203

    Certifications
    MCSE:Security, MCDST, A+, Network+, Security+, ITIL V3 Foundations, ITIL 2011 Intermediate: Service Transition, MOS 2007 (MCAS) BAS Computer Forensics
    #80
    Quote Originally Posted by colemic View Post
    It is scheduled throughout the year, it is not like ISACA which is only 2x/yr. Check the ISC(2) site for testing dates and locations.
    Good to know, ty

  7. Junior Member
    Join Date
    Feb 2011
    Location
    Colorado Springs, CO
    Posts
    21

    Certifications
    A+, Sec+
    #81
    How do you prove your work experience? Do you just give them like a resume? Or do they call your employers?

    If they call your employers, I might have a problem because of a major falling out with one company. This company is very unhonest, and would lie to screw me over (they did in court anyhow, so I doubt it would stop there.)

  8. InfoSec Pro ibcritn's Avatar
    Join Date
    Nov 2010
    Posts
    338
    #82
    Quote Originally Posted by djyox View Post
    How do you prove your work experience? Do you just give them like a resume? Or do they call your employers?

    If they call your employers, I might have a problem because of a major falling out with one company. This company is very unhonest, and would lie to screw me over (they did in court anyhow, so I doubt it would stop there.)
    They can call employers, but no telling if they will or not. I think they are less likely if you have another person with CISSP sponsor you.

  9. Junior Member
    Join Date
    Feb 2011
    Location
    Colorado Springs, CO
    Posts
    21

    Certifications
    A+, Sec+
    #83
    Quote Originally Posted by ibcritn View Post
    They can call employers, but no telling if they will or not. I think they are less likely if you have another person with CISSP sponsor you.
    Hmm, maybe I should have the military help me out there... I've got 3 years experience from just army, but I would need the last 2 from this crap box employer. The army always seems to get you what ever they think you need. Now I just got to sell it that I really need this cert... lol

  10. Member
    Join Date
    Dec 2010
    Posts
    86
    #84
    All you need is another member in good standing to endorse you. If you get audited then I would worry about it at that time. I wouldn't sweat it yet.

  11. Junior Member Registered Member
    Join Date
    Nov 2011
    Posts
    2
    #85
    Hi All.

    Apologies if this has been asked before.

    I am a MCITP and MCSA with the security elective.

    I have worked in IT for 10 years, in no specfic domain, as it where - i have experience in most if not all of the domains required, and i have someone ( i think ) who will certify my work who is already a CISSP.

    Is this all i require to book my exam?

    Sorry, and thanks in advance.

  12. Senior Member xenodamus's Avatar
    Join Date
    Feb 2010
    Location
    Jackson, MS
    Posts
    755
    #86
    There are no requirements to take the exam (except $$$). The requirements are for endorsement. Without the experience, a pass will make an "Associate of ISC2 for CISSP".

    It sounds like your experience should be fine, though.
    CISSP | CCNA:R&S/Security | MCSA 2003 | A+ S+ | VCP6-DTM | CCA-V CCP-V

  13. Junior Member Registered Member
    Join Date
    Nov 2011
    Posts
    2
    #87
    Quote Originally Posted by xenodamus View Post
    There are no requirements to take the exam (except $$$). The requirements are for endorsement. Without the experience, a pass will make an "Associate of ISC2 for CISSP".

    It sounds like your experience should be fine, though.
    Thanks - so i have someone lined up willing to certify me, i can be a full CISSP and then book the exam?

    without the certifiable knowledge, i will be an associate.

    Thanks again.

  14. Junior Member
    Join Date
    Nov 2011
    Posts
    6

    Certifications
    Sec+, GCIA
    #88
    How do they define physical security? I worked at a job for many years that part of my responisbility was to manage employees who handled the physical security of the building and what was inside. Would this count as years worked?

  15. Junior Member Registered Member
    Join Date
    Feb 2013
    Posts
    5
    #89
    Hey Folks!

    Is there any eligiblity thread we could all concise our questions to? I would like to undertake CISSP Exam sometime soon, I have been working as a System Administrator for about 3 years now (General responsibilities do cover monitoring for security threats/attacks etc and remediation to an extent). I also have a Masters degree in Telecommunication (with a course in Network Security). Should this suffice for CISSP Eligibility?

  16. Senior Member broli720's Avatar
    Join Date
    Oct 2012
    Location
    Merica
    Posts
    377

    Certifications
    CISSP, CCNA, CCNA:S
    #90
    Just go on the ISC2 website and look up the details. Judging by what you said, you do qualify but you could have come to that conclusion if you put in a little effort and looked. Sorry if I sound kinda mean but the information is out there...

  17. Junior Member Registered Member
    Join Date
    Feb 2013
    Posts
    5
    #91
    Hmmmm.. As I saw mixed opinions on the endorsement process for CISSP, I had posted on this forum. Some of the folks mentioned that with 'System Administrator' profile, ISC can endorse you for an 'Associate level' not necessarily CISSP.

  18. Senior Member Humbe's Avatar
    Join Date
    Dec 2012
    Location
    Miami, FL
    Posts
    200

    Certifications
    CISSP, CCDA, CVE, MCTS
    #92
    Quote Originally Posted by heterodyned View Post
    Hmmmm.. As I saw mixed opinions on the endorsement process for CISSP, I had posted on this forum. Some of the folks mentioned that with 'System Administrator' profile, ISC can endorse you for an 'Associate level' not necessarily CISSP.
    Bottom line is that you need 5 years of experience. If you have a Bachelor degree is 4 years. If you hold any Certification such as Security+ or CCNP they will wave 1 year off.

    You need to be able to prove to them that you have worked at least with 2 domains throughout those 5 years.

  19. Certification Invigilator Forum Admin JDMurray's Avatar
    Join Date
    Jul 2003
    Location
    Surf City USA
    Posts
    10,599
    Blog Entries
    50

    Certifications
    GSEC, EnCE, CISSP, SSCP, CEH (ANSI), CASP, CCNA, CCENT, CWSP, CWNA, CWTS, Security+, Server+, Network+, A+, DHTI+, PDI+, MSIT InfoSec
    #93
    Quote Originally Posted by heterodyned View Post
    Is there any eligiblity thread we could all concise our questions to?
    We can bandy-about opinions about eligibility requirements all day and night, but only the (ISC)2 has the offcial word on what goes and what doesn't.
    Moderator of the InfoSec, CWNP, IT Jobs, Virtualization, Java, and Microsoft Developers forums at www.techexams.net
    --
    Blog: www.techexams.net/blogs/jdmurray
    LinkedIn: www.linkedin.com/in/jamesdmurray
    Twitter: www.twitter.com/jdmurray

Closed Thread
Page 4 of 4 First 1234

Social Networking & Bookmarks