Accelerate your cybersecurity career with the CISSP certification. Earning the CISSP proves you have what it takes to effectively design, implement and manage a best-in-class cybersecurity program.

With a CISSP, you validate your expertise and become an ISC2 member, unlocking a broad array of exclusive resources, educational tools and peer-to-peer networking opportunities.

Prove your skills, advance your career, help earn the salary you want and gain the support of a community of cybersecurity leaders here to support you throughout your career.

Already Have a Peace of Mind Voucher? Learn how to redeem it now.

CISSP Quick Glance

CYBERSECURITY LEADERSHIP AND OPERATIONS

Recognizes cybersecurity professionals with the knowledge, skills and abilities to lead an organization’s information security program.

WHAT TO EXPECT ON THE CISSP EXAM

Domain 1. Security and Risk Management

Domain 2. Asset Security

Domain 3. Security Architecture and Engineering

Domain 4. Communication and Network Security

Domain 5. Identity and Access Management (IAM)

Domain 6. Security Assessment and Testing

Domain 7. Security Operations

Domain 8. Software Development Security

Who Earns the CISSP?

The CISSP is ideal for experienced security practitioners, managers and executives interested in proving their knowledge across a wide array of security practices and principles, including those in the following positions:

• Chief Information Security Officer

• Chief Information Officer

• Director of Security

• IT Director/Manager

• Security Systems Engineer

• Security Analyst

• Security Manager

• Security Auditor

• Security Architect

• Security Consultant

• Network Architect

Necessary Work Experience

Candidates must have a minimum of five years cumulative, full-time experience in two or more of the eight domains of the current CISSP Exam Outline. Earning a post-secondary degree (bachelors or masters) in computer science, information technology (IT) or related fields may satisfy up to one year of the required experience or an additional credential from the ISC2 approved list may satisfy up to one year of the required experience. Part-time work and internships may also count towards the experience requirement.

A candidate that doesn’t have the required experience to become a CISSP may become an Associate of ISC2 by successfully passing the CISSP examination. The Associate of ISC2 will then have six years to earn the five years required experience. You can learn more about CISSP experience requirements and how to account for part-time work and internships.

Accreditation

CISSP was the first credential in the field of information security to meet the stringent requirements of ANSI/ISO/IEC Standard 17024.

Job Task Analysis (JTA)

ISC2 has an obligation to its membership to maintain the relevancy of the CISSP. Conducted at regular intervals, the Job Task Analysis (JTA) is a methodical and critical process of determining the tasks that are performed by security professionals who are engaged in the profession defined by the CISSP. The results of the JTA are used to update the examination. This process ensures that candidates are tested on the topic areas relevant to the roles and responsibilities of today’s practicing information security professionals.

CISSP-CAT Examination Information

The CISSP exam uses Computerized Adaptive Testing (CAT) for all exams.

Length of exam                                  3 hours

Number of items                                100 - 150

Item format                                         Multiple choice and advanced innovative items

Passing grade                                    700 out of 1000 points

Exam language availability               Chinese, English, German, Japanese, Spanish

Testing center                                     ISC2 Authorized PPC and PVTC Select 

                                                             Pearson VUE Testing Centers

Notice: Chinese language CISSP exams are only available during select appointment windows.

• 2025 Availability: March 1-31, June 1-30, September 1-30, December 1-31

CISSP CAT Examination Weights

Average Weight

1. Security and Risk Management                                     16%

2. Asset Security                                                                10%

3. Security Architecture and Engineering                           13%

4. Communication and Network Security                           13%

5. Identity and Access Management (IAM)                        13%

6. Security Assessment and Testing                                  12%

7. Security Operations                                                       13%

8. Software Development Security                                    10%

Total                                                                                  100%

Get CISSP Training that's Right for You

With self-paced or Online Instructor-Led and Classroom training, ISC2 has a training option to fit your schedule and learning style. Trainings, seminars, courseware and self-study aids from ISC2 or one of our many Official Training Providers help you get ready for the rigorous CISSP exam by reviewing relevant domains and topics.

Explore Training

ISC2 Self-Study Tools Keep Your Skills Sharp

Studying on your own or looking for a supplement to your seminar courseware? Check out our official self-study tools:

• Official textbooks: What you need to know to be successful and review relevant domains.

• Official study guides: Strengthen your knowledge in a specific domain and get in more exam practice time.

• Official practice tests: Take full practice tests.

Complete the Certification Application Process

Once you receive notification that you have successfully passed the exam, you can start the online certification application process. This process attests that your assertions regarding professional experience are true, that you are in good standing within the cybersecurity industry. It also contains the agreements to abide by the ISC2 Code of Ethics and privacy policy.

Agree to the ISC2 Code of Ethics

All information security professionals who are certified by ISC2 recognize that such certification is a privilege that must be both earned and maintained. All ISC2 members are required to commit to fully support ISC2 Code of Ethics Canons:

• Protect society, the common good, necessary public trust and confidence, and the infrastructure.

• Act honorably, honestly, justly, responsibly, and legally.

• Provide diligent and competent service to principles.

• Advance and protect the profession.