What Does a Registration Specialist Do?

CISSP (Certification for Information System Security Professional) is an information system security professional certification. This certificate represents the authoritative certification of international information system security practitioners. The CISSP certification project is for professionals engaged in the construction, design, management, or control of business environment security systems. Test the technical and knowledge accumulation of employees.

CISSP (Certification for Information System Security Professional) is an internationally registered "information security professional". This certificate represents the authoritative certification of international information system security practitioners, and is called "championship qualification" in information security by the industry. Organized and managed by (ISC) 2-(International Information Systems Security Certification Consortium).

(ISC) 2 was established in 1989 and is headquartered in North America. It is an independent global non-profit organization. The alliance is composed of a number of professional organizations, universities, government agencies and professionals. Its goal is to develop and maintain a public knowledge system on information security. Organize the examination and certification of information system security divisions according to a set of international information security standards, and ensure the effectiveness of the certificate through continuous education.

In 1995, the first public CISSP exam was held in Toronto, Canada. Asia is the region with the largest number of CISSPs outside the United States, and it is currently dominated by Hong Kong, Singapore and South Korea.

In January 2002, the CISSP examination office was established in Hong Kong.

Since 2002, he has entered mainland China. 60% of domestic CISSP qualifications are employed by security vendors and consulting service providers, and 30% are integration and software developers.

The information security profession will be hot for a long time to come. (ISC) 2 organizations have branches in Hong Kong, London, Tokyo, and the United States, and more than 25,000 people in 104 countries around the world have obtained CISSP certificates ^[2]

The majority of those who took the CISSP exam early were concentrated in information security practitioners.

As CISSP is recognized by more people, its distribution will gradually become more even. Among them, CISSP holders of industry users such as banks, securities, telecommunications, IT service providers, government and education departments will have a large number increase.

Many multinational companies have stated in their recruitment instructions that those with a CISSP certificate are preferred; many domestic companies have also made relevant requirements.

The main target of domestic CISSP qualifications are information system security professionals, including information security personnel of major enterprises, telecommunications, banking and securities industries, system integration and service providers, e-commerce and e-government. If engaged in consulting or management related to information system security, their duties are mainly

To apply for CISSP certification, the following conditions must be met:

1. Have at least 4 years of relevant work experience. If you have a bachelor's degree, you must have 3 years of work experience. The work experience should be (ISC) 2 within the scope of 10 knowledge domains specified by the public knowledge system;

2. Sign and promise to abide by the professional codes formulated by (ISC) 2, such as not joining hacking organizations, etc .;

Third, you must pay $ 450 to register for the test and take a 6-hour qualification test.

Application qualifications will change slightly over time, see official news for details ^[2]

Those who have a CISSP certificate qualification abroad have a very high status, and those who have a CISSP certificate qualification at home are even more valuable. Currently, less than 20 people have passed this certification in mainland China, which is less than 1 from the number of more than 3,000 people worldwide. / 150, as a comparative standard recognized in the industry, CISSP to some extent determines a country's information system security level.

Those who have a CISSP certificate must have very rich work experience in the field of network security, because to apply for CISSP must have at least three years of work experience, which has now been changed to four years. Moreover, the issuance of the certificate must be negotiated with the leader of the applicant's work unit. Only the leader's approval plus the test results and work experience can obtain this certificate. This is also one of the important reasons for those who have CISSP certificate qualifications to reassure owners. ^[1]

The CISSP exam questions come from the (ISC) 2 question bank. Each exam will focus on the current security hotspots in the information field. The scope of the CISSP exam questions is very wide, requiring candidates to have an understanding of the various knowledge points covered by information security. Its biggest challenge is that every candidate must be familiar with the 10 areas of security.

The CISSP qualification is valid for 3 years. After 3 years, you can retake the exam for recertification, but (ISC) 2 supports the Continuing Professional Education Points Program. CISSP holders receive 120 CPE points within 3 years, and each year By paying the annual maintenance fee, you can maintain its CISSP qualification. Ways of earning points include information security education, or publishing related works ^[2] .

For the CISSP exam, (ISC) 2 uses the CISSP Common Knowledge Framework (CBK) as the scope of the CISSP. The test format is: 250 multiple choice test questions, 6 hours of test time, pure English language.

There are many ways to apply for the exam, but no matter what method is used, applicants must meet the following requirements:

1: Follow the rules and regulations of (ISC) 2.

2: CBK (Common Body of Knowledge) in Information System Security

Work for more than 4 years in any of the 10 test areas: Applicants can be practitioners, auditors, consultants, clients, investors or teachers in information security related fields, and require applicants to directly apply information systems in their work safety knowledge. 4 years of actual work experience can be accumulated.

3: Re-certification is required every 3 years, and 120 Continuing Professional Education (CPE) credit points are required within 3 years.

Examination location: In China, the examination location is uncertain and there are fewer opportunities. You can take the test in Beijing or Shanghai. However, there are time constraints and you can also go to Hong Kong to take the test.

CISSP CBK exam areas (10 domains in total):

· Access control system and access control method

Application and system development security

· Business Continuity Plan (BCP) and System Recovery (DRP)

· Cryptography

· Safety regulations, safety investigations and safety ethics

· Operational security · Physical security

· Security architecture and security model

· Safety management practice

Communication and network security. ^[1]

IN OTHER LANGUAGES

• English
• Čeština
• Dansk
• Deutsch
• Svenska
• Français
• Italiano
• Nederlands
• Norsk
• Polski
• Português
• Español
• 日本語
• 한국어