Hello esteemed Turkish Hack Team enthusiasts
In today's session, we will explore what the CISSP certification is and why it's obtained. Let's find answers to these questions.
The CISSP, also known as Certified Information Systems Security Professional, is a certification provided by ISC2 (International Information System Security Certification Consortium) to specialized individuals. It is sought after for ensuring the design stages, architectural works, and controls of workplace environments where high security measures are required, i.e., environments where information security needs to be ensured, and necessary managements defined.
Individuals holding the CISSP (Certified Information Systems Security Professional) certification are rare worldwide. There are approximately 94,000 individuals in 149 countries globally. Due to the extreme difficulty of the exam, it generally results in about an 80% failure rate. This certification, often preferred by those who aspire to work in the field of cybersecurity, has a 25-year history of accumulation.
CISSP (Certified Information Systems Security Professional) is the first certification product in the cybersecurity field. This certification product has envisaged using the binding standards of ISO/IEC 17024. Additionally, accreditation by NSI ISO/IEC 17024:2003 has been provided for its international recognition.
What is the Concept of CISSP?
CISSP, being a Certified Information Systems Security certification, hosts various subjects in the field of information security. The final exam for CISSP (Certified Information Systems Security Professional) certification is based on the Common Body of Knowledge (CBK), which is established for collecting detailed information about the taxonomy or classes regarding information security for security professionals.
The Common Body of Knowledge (CBK) aims for the collective execution of information security by experts worldwide. To obtain the CISSP certification, you need to have the knowledge to answer exam questions from at least 8 information security domains.
If we list these 8 domains, they are as follows:
Security and Risk Management
Asset Security
Security Architecture and Engineering
Communication and Network Security
Identity and Access Management
Security Assessment and Testing
Security Operations
Software Development Security
Exam Method: Computer Adaptive Testing (CAT)
Time required for the exam: Up to 3 hours.
Number of questions in the exam: 100-150 questions
Type of questions asked: Mixed
Passing Score: You need to score at least 700 out of 1000.
Note: Additionally, you need to have a minimum of 5 years of work experience to obtain this certification.
Source : CISSP Sertifikası Nedir?
