CISSP Certification - how to get it in 5 steps

CISSP stands for “Certified Information Systems Security Professional”. In this article we will explain to you who is interested in the CISSP certification, what steps are necessary to obtain it and what is asked in the exam.

Table of Contents

What is CISSP Certification?

The CISSP certification is issued by the International Information Systems Security Certification Consortium, or ISC for short.2, offered since 1994. The certification is particularly widespread and recognized in the USA, but has become increasingly widespread and respected worldwide for years.

In Germany, too, this certification is viewed by employers and institutions as an important reference in the field of information security. This is not least because obtaining the certificate requires a great deal of knowledge, which must be proven in an examination followed by an assessment. We therefore recommend not only gaining theoretical knowledge before taking part in the certification, but also building up the relevant technical background in advance.

If you are interested in working in this area, please take a look at our open positions IT Security Consultant

Do you want to make a difference?
Become part of the ProSec family and make the world safer!
Looking for family members

Your path to CISSP certification

The certification process with its requirements consists of the following steps:

First, formal requirements regarding level of training and professional experience must be met. To fully obtain the certificate, five years of professional experience in various domains of the certification must be demonstrated. Studies and training are partially taken into account.

The necessary knowledge for the exam can be acquired in various ways; there are no formal requirements for this. However, there are a number of offers: These range from literature and documents for self-study to various online courses to face-to-face events that can be attended as a block or over longer periods of time. There is a wide selection of providers for every offer. This means there is a suitable path for every type of learner.

Registration for the exam takes place directly via (ISC)2. The test consists of 250 multiple-choice questions over a period of 6 hours, with the aim of achieving 700 out of 1.000 possible points.

Another mandatory requirement is the recommendation or assessment by a certified CISSP or one of (ISC)2 appointed person. This can be done up to 9 months after passing the exam. Without this recommendation, the CISSP cannot be obtained. Therefore, in your own interest, this should be done as early as possible.

This is how you can achieve CISSP certification in 5 steps:

  • Prove requirements regarding level of training and professional experience
  • Acquire knowledge for exams (online or in person)
  • Registration for the exam directly via (ISC)2
  • Complete multiple choice exam
  • Recommendation/assessment by certified CISSP/from (ISC)2 Submit to designated person (up to 9 months after passing the exam)

Domains of the CISSP Certification Exam

The CISSP includes 8 so-called domains. These are queried for a given key in the exam.

The following 8 areas are tested in the CISSP exam:

  • Security and risk management
  • Security Assessment and Testing
  • Identity and Access Management (IAM)
  • Security Architecture and Engineering
  • Communication and Network Security
  • Asset Security
  • Software development security
  • Security Operations
Increase the security of your IT system now!
You will receive detailed advice from us!
Contact us now

Who is the CISSP certification useful for?

The course is aimed at information security experts and those interested in information security who want to gain and demonstrate a comprehensive level of theoretical knowledge in this area.

The CISSP certification is particularly interesting for these professional groups:

  • Chief Information (Security) Officer
  • Security Analyst
  • Security Auditor
  • Network Architect
  • Security Consultant
  • Security Manager

Ultimately, the CISSP certification is relevant and helpful in any position in the information security environment. However, it should take place at the right time and appropriately complement existing practical experience.

We also recommend that you check whether the Systems Security Certified Practitioner (SSCP) certification is an option for you as a first step. To do this, you only need one year of professional experience and the scope of the exam is limited to around half the effort of the CISSP.

ProSec supports you in acquiring the CISSP certification

If you are interested in obtaining one of the certificates mentioned and would like to put the content into practice directly, please take a look at our Jobs page over. We offer you the ideal setting in this exciting environment with a variety of possible applications.

We will support you with time, money and personal support in obtaining your CISSP or SSCP certificate.


Table of Contents