(ISC)2 CISSP Security Credential Achieves New International Standard For Personnel Certification

VIENNA, Va., June 23, 2004 The International Information Systems Security Certification Consortium (ISC)2®, the non-profit international leader in its 15th year of educating, qualifying and certifying information security professionals worldwide, today announced that the International Organization for Standardization’s (ISO) United States representative, ANSI (American National Standards Institute), granted certification accreditation in the area of information security under ISO/IEC 17024 for the consortium’s CISSP® (Certified Information Systems Security Professional) credential.

ISO/IEC 17024 establishes a global benchmark for certification of personnel, ensuring competency in different professions. ANSI accredits standards developers, certification bodies and technical advisory groups to both the ISO and the International Electrotechnical Commission (IEC). “(ISC)2 has achieved a significant milestone as the first organization within the Information Technology sector to earn accreditation for personnel certification,” said James E. Duffy, CISSP, executive director for (ISC)2. “Educated, qualified and certified information security professionals are the key to protecting the critical infrastructure on which businesses and governments around the world operate, and the CISSP is recognized as the global Gold Standard in information security. ANSI accreditation for the ISO confirms (ISC)2 as the leader in setting the worldwide standard for certifying information security professionals.” “(ISC)2 is to be commended for completing the rigorous process and receiving ANSI accreditation,” said Dr. Roy Swift, program director of certification accreditation for ANSI. “ISO/IEC 17024 was developed in response to businesses and governments seeking proof of competence for personnel. Employers in the public and private sectors can be confident that information security professionals holding the (ISC)2 CISSP credential possess the necessary skills and experience to effectively manage and deploy information security programs and policies anywhere in the world.” The CISSP is awarded by (ISC)2 to information security professionals who successfully pass a comprehensive six-hour examination based on the (ISC)2 CBK®, a compendium of global information security best practices, possess four years cumulative work experience in the field, subscribe to the (ISC)2 Code of Ethics, and are endorsed by an existing CISSP or equivalent professional. Continuing Professional Education credits are required to maintain certification.

About (ISC)²
Based in Vienna, Virginia, USA with offices in London, Hong Kong and Tokyo, the International Information Systems Security Certification Consortium, Inc. (ISC)2® is the premier organization dedicated to providing information security professionals around the world with the standard for professional certification based on (ISC)2′ CBK, a compendium of industry best practices for information security professionals. Since its inception in 1989, the non-profit organization has trained, qualified and certified more than 25,000 information security professionals in 104 countries. (ISC)2 awards the Certified Information Systems Security Professional (CISSP?/span>) and the Systems Security Certified Practitioner (SSCP/span>) credentials. Both certifications require professional experience and, for the CISSP, the Gold Standard in information security certifications, an endorsement by a professional that is familiar with the background of the candidate. More information about (ISC)2 is available at www.isc2.org.

About ANSI

Founded in 1918, the American National Standards Institute (ANSI) is a private, non-profit organization (501 (c) 3) that administers and coordinates the U.S. voluntary standardization and conformity assessment system. The Institute’s mission is to enhance both the global competitiveness of U.S. business and the U.S. quality of life by promoting and facilitating voluntary consensus standards and conformity assessment systems, and safeguarding their integrity.