(ISC)2 Offers Grandfathering Process For Advanced Architecture And Management Certifications

VIENNA, Virginia ? April 27, 2004 ? The International Information Systems Security Certification Consortium (ISC)2®, the non-profit international leader in its 15th year of training, qualifying and certifying information security professionals worldwide, today announced the launch of a “grandfathering” process for credentialed CISSPs® (Certified Information Systems Security Professional) who wish to apply for advanced ISSAPCM (Information Systems Security Architecture Professional) and ISSMPCM (Information Systems Security Management Professional) certifications.

“As the industry matures, (ISC)2 continues to develop information security credentials that validate in-depth, specialized knowledge and expertise in selected areas of the consortium’s CBK®, ensuring that information security professionals are well-trained and dedicated in every phase of their careers and in every specialization they choose, and to ensure that the global requirements for information security professionals are met,” said Dow A. Williamson, CISSP, director of communications for (ISC)2.

Candidates for ISSAP and ISSMP grandfathering must be CISSPs in good standing, must demonstrate four total years of professional information security experience, and two years of information security experience in either management or architecture. All candidates must complete and submit a two-part application package to demonstrate their advanced certification qualifications. A $450 (USD) processing and review fee is also required.

The ISSAP and ISSMP advanced concentrations enable CISSPs in good standing to demonstrate subject-matter expertise beyond those required for the CISSP credential, and are designed to complement the CISSP for those desiring additional validation of these skills for career paths in management and technology.

The ISSAP validates extensive knowledge in the Access Control, Telecommunications and Methodology; Telecommunications and Network Security; Cryptography; Requirements Analysis and Security Standards/Guidelines Criteria; Technology-Related Business Continuity Planning and Disaster Recovery Planning; and Physical Security Integration domains of the (ISC)2 CBK.

The ISSMP validates extensive knowledge in the Enterprise Security Management Practices; Enterprise-wide Systems Development Security; Operations Security Compliance; Business Continuity Planning, Disaster Recovery Planning and Continuity of Operations Planning; and Law, Investigation Forensics and Ethics domains of the CBK.

The first part of the grandfathering package is a checklist to ensure that required items are completed on the application form, confirms CISSP status and verifies that required attachments are included. The second part of the package requires candidates to provide detailed explanations of their experience.

Candidates for the ISSAP must highlight relevant background in Security Technology Design, Integration and Network/Application skills, providing additional documentation as necessary. In addition, candidates must write three short essays describing experience in Access Control Systems, and Methodology and Telecommunications. The candidate selects the third essay subject from a provided list of other relevant CBK domains.

Candidates for the ISSMP advanced concentration must highlight relevant background in Project Management Skills, Policy Skills and Strategic Planning Skills, and provide additional documentation as necessary. In addition, candidates must write three short essay responses detailing experience in Enterprise Security Management Practices, as well as experience in either developing or participating in Business Continuity Planning, Disaster Recovery Planning and Continuity of Operations Planning. The candidate selects the experience topic for the third response from a provided list of other relevant domains of the CBK.

The ISSAP and ISSMP grandfathering process will be offered from May 1 ? December 31, 2004, and is designed to take two weeks from the receipt of the application package to official notification responses to candidates. More information will be available May 1 at

About (ISC)²
Based in Vienna, Virginia, USA with offices in London and Hong Kong, the International Information Systems Security Certification Consortium, Inc. (ISC)2 is the premier organization dedicated to providing information security professionals around the world with the standard for professional certification based on (ISC)2’s CBK, a compendium of industry “best practices” for information security professionals. Since its inception in 1989, the non-profit organization has trained, qualified and certified more than 25,000 information security professionals in more than 104 countries. (ISC)2 awards the Certified Information Systems Security Professional (CISSP) and the Systems Security Certified Practitioner (SSCP) credentials. Both certifications require professional experience and, for the CISSP, the Gold StandardSM in information security certifications, an endorsement by a professional that is familiar with the background of the candidate. More information about (ISC)2 is available at www.isc2.org .

Don't miss