Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security CISSP-Discussion
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [CISSP-D] CISSP requirements

from [DSardina] Network Security [Permanent Link]
Subject: RE: [CISSP-D] CISSP requirements
Date: Fri, 12 Nov 2004 15:08:04 -0500 
 How To Certify

To become a CISSP, a candidate must successfully complete two processes:
Examination and Certification. 

Examination 

The eligibility requirements to sit for the CISSP examination are completely
separate from the eligibility requirements necessary to be certified. 

To sit for the CISSP examination, a candidate must: 

*       Submit the examination fee. 
*       Assert that he or she possesses a minimum of four years of
professional  <http://www.isc2.org/cgi-bin/content.cgi?page=167> experience
in the information security field or three years plus a college degree. 
*       Complete the Candidate Agreement, attesting to the truth of his or
her assertions regarding professional experience and legally commit to
adhere to the CISSP Code of
<https://www.isc2.org/cgi/content.cgi?category=12> Ethics. 
*       Successfully answer four questions regarding criminal history and
related background. 

Certification 

To be issued a certificate, a candidate must: 

*       Pass the CISSP exam with a scaled score of 700 points or greater. 
*       Submit a properly completed and executed Endorsement
<http://www.isc2.org/download/CISSP_Endorsement_Form.pdf> Form. 
*       If the candidate is selected for audit, they must successfully pass
that audit of their assertions regarding professional experience. 

Endorsement 

Once a candidate has been notified of passing the CISSP examination, he or
she will be required to have his or her application endorsed by a CISSP
before the credential can be awarded. If no CISSP can be found, another
qualified professional with knowledge of information systems or an officer
of the candidates corporation can be used to validate the candidate's
professional experience. 

The endorser will attest that the candidate's assertions regarding
professional experience are true to the best of their knowledge, and that
the candidate is in good standing within the information security industry. 

Audit 

A percentage of the candidates who pass the CISSP examination and submit
endorsements will be randomly subjected to audit and required to submit a
resume for formal review and investigation. 

 
 
Ref: https://www.isc2.org/cgi/content.cgi?category=18
 
 
 

-----Original Message-----
From: Nico van Niekerk [mailto:nico@vanniekerk.co.za] 
Sent: Thursday, November 11, 2004 8:34 PM
To: CISSP-Discuss@yahoogroups.com
Subject: [CISSP-D] CISSP requirements


I heard somewhere that you need 3 years exp in the security field before you
may get CISSP. Is that exp limited to IT security or does any security exp
count? Could anybody tell me how the CISSP requirements work?

Yahoo! Groups Sponsor   
 
<http://us.ard.yahoo.com/SIG=129bercbd/M=281955.5600462.6665252.3001176/D=gr
oups/S=1705007140:HM/EXP=1100370068/A=2343726/R=0/SIG=12ispndme/*http://clk.
atdmt.com/VON/go/yhxxxvon01900091von/direct/01/&time=1100283668023123>
<http://us.ard.yahoo.com/SIG=129bercbd/M=281955.5600462.6665252.3001176/D=gr
oups/S=1705007140:HM/EXP=1100370068/A=2343726/R=1/SIG=12ispndme/*http://clk.
atdmt.com/VON/go/yhxxxvon01900091von/direct/01/&time=1100283668023123> 


Get unlimited calls to

U.S./Canada

 
<http://view.atdmt.com/VON/view/yhxxxvon01900091von/direct/01/&time=11002836
68023123> 
 
<http://us.adserver.yahoo.com/l?M=281955.5600462.6665252.3001176/D=groups/S=
:HM/A=2343726/rand=106993595>   


  _____  

Yahoo! Groups Links


*       To visit your group on the web, go to:
http://groups.yahoo.com/group/CISSP-Discuss/
  

*       To unsubscribe from this group, send an email to:
CISSP-Discuss-unsubscribe@yahoogroups.com
<mailto:CISSP-Discuss-unsubscribe@yahoogroups.com?subject=Unsubscribe> 
  

*       Your use of Yahoo! Groups is subject to the Yahoo! Terms of Service
<http://docs.yahoo.com/info/terms/> . 


NOTE FROM MODERATOR (Clement): 


ISC2 will only consider what they call: Professional Experience. Below you
have an extract from their web site on what they consider admissable: 


Professional experience includes: 


Work requiring special education or intellectual attainment, usually
including a liberal education or college degree. 


Work requiring habitual memory of a body of knowledge shared with others
doing similar work. 


Management of projects and/or other employees. 


Supervision of the work of others while working with a minimum of
supervision of one's self. 


Work requiring the exercise of judgement, management decision-making, and
discretion. Work requiring the exercise of ethical judgement (as opposed to
ethical behavior). 


Creative writing and oral communication Teaching, instructing, training and
the mentoring of others Research and development 


The specification and selection of controls and mechanisms (i.e.
identification and authentication technology). (It does not include the mere
operation of these controls.) 


Applicable titles such as officer, director, manager, leader, supervisor,
analyst, designer, cryptologist, cryptographer, cryptanalyst, architect,
engineer, instructor, professor, investigator, consultant, salesman,
representative, etc. Title may include programmer. 


It may include administrator except where it applies to one who simply
operates controls under the authority and supervision of others. 


Titles with the words "coder" or "operator" are likely excluded.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: [CISSP-D] SSL/TLS - Where in the OSI model?, James Willoughby
Next by Date:  Re: [CISSP-D] Cleared!!!, ktombs
Previous by Thread:  [CISSP-D] CISSP requirements, Nico van Niekerk
Next by Thread:  RE: [CISSP-D] New to this group - Two questions, Joe Hughes
Indexes:  [Date] [Thread] [Top] [All Lists]