Earning the globally recognized CCSP cloud security certification is a proven way to build your career and better secure critical assets in the cloud.

The CCSP shows you have the advanced technical skills and knowledge to design, manage and secure data, applications and infrastructure in the cloud using best practices, policies and procedures established by our certified members and cybersecurity experts around the globe.

Prove your skills, advance your career, and gain support from a community of cybersecurity leaders here to help you throughout your professional journey.

Already Have a Peace of Mind Voucher? Learn how to redeem it now.

CCSP Quick Glance

CLOUD SECURITY

Demonstrates professionals have the advanced technical skills and knowledge to design, manage and secure data, applications and infrastructure in the cloud.

WHAT TO EXPECT ON THE CCSP EXAM

Domain 1. Cloud Concepts, Architecture and Design

Domain 2. Cloud Data Security

Domain 3. Cloud Platform & Infrastructure Security

Domain 4. Cloud Application Security

Domain 5. Cloud Security Operations

Domain 6. Legal, Risk and Compliance

What to Expect

The CCSP exam evaluates your expertise across six security domains. Think of the domains as topics you need to master based on your professional experience and education.

Necessary Work Experience

Candidates must have a minimum of five years cumulative paid work experience in information technology, of which three years must be in information security and one year in one or more of the six domains of the CCSP CBK. Earning CSA’s CCSK certificate can be substituted for one year of experience in one or more of the six domains of the CCSP CBK. Earning the CISSP credential can be substituted for the entire CCSP experience requirement.

A candidate that doesn’t have the required experience to become a CCSP may become an Associate of ISC2 by successfully passing the CCSP examination. The Associate of ISC2 will then have six years to earn the five years required experience. You can learn more about CCSP experience requirements and how to account for part-time work and internships at www.isc2.org/Certifications/CCSP/CCSP-Experience-Requirements.

Accreditation

CCSP is in compliance with the stringent requirements of ANSI/ISO/IEC Standard 17024.

Job Task Analysis (JTA)

ISC2 has an obligation to its membership to maintain the relevancy of the CCSP. Conducted at regular intervals, the Job Task Analysis (JTA) is a methodical and critical process of determining the tasks that are performed by security professionals who are engaged in the profession defined by the CCSP. The results of the JTA are used to update the examination. This process ensures that candidates are tested on the topic areas relevant to the roles and responsibilities of today’s practicing information security professionals focusing on cloud technologies.

CCSP Examination Information

Length of exam                                     3 hours

Number of items                                   125

Item format                                            Multiple choice

Passing grade                                       700 out of 1000 points

Exam language availability                  English, Chinese, Japanese and German

Testing center                                        Pearson VUE Testing Center

Notice: Beginning October 1, 2025, the CCSP exam will be administered as a variable-length Computer Adaptive Test (CAT) exam only. Candidates will answer 100-150 multiple-choice items. For more information, please refer to www.isc2.org/certifications/computerized-adaptive-testing.

CCSP Examination Weights

Domains

Average Weight

1. Cloud Concepts, Architecture and Design                     17%

2. Cloud Data Security                                                        20%

3. Cloud Platform & Infrastructure Security                        17%

4. Cloud Application Security                                              17%

5. Cloud Security Operations                                              16%

6. Legal, Risk and Compliance                                           13%

Total                                                                                   100%

Get CCSP Training that's Right for You

With self-paced or Online Instructor-Led and Classroom training, ISC2 has a training option to fit your schedule and learning style. Trainings, seminars, courseware and self-study aids from ISC2 or one of our many Official Training Providers help you get ready for the rigorous CCSP exam by reviewing relevant domains and topics.

Explore Training

ISC2 Self-Study Tools Keep Your Skills Sharp

Studying on your own or looking for a supplement to your seminar courseware? Check out our official self-study tools:

• Official textbooks: What you need to know to be successful and review relevant domains.

• Official study guides: Strengthen your knowledge in a specific domain and get in more exam practice time.

• Official practice tests: Take full practice tests.

Complete the Certification Application Process

Once you receive notification that you have successfully passed the exam, you can start the online certification application process. This process attests that your assertions regarding professional experience are true, that you are in good standing within the cybersecurity industry. It also contains the agreements to abide by the ISC2 Code of Ethics and privacy policy.

Agree to the ISC2 Code of Ethics

All information security professionals who are certified by ISC2 recognize that such certification is a privilege that must be both earned and maintained. All ISC2 members are required to commit to fully support ISC2 Code of Ethics Canons:

• Protect society, the common good, necessary public trust and confidence, and the infrastructure.

• Act honorably, honestly, justly, responsibly, and legally.

• Provide diligent and competent service to principles.

• Advance and protect the profession.