Certified Information Security Systems Professional (CISSP)
The CISSP is a very holistic certification that assesses knowledge across eight different domains to assess both technical and non-technical policy and management, according to Brad Puckett, global portfolio director at Global Knowledge. The CISSP enables a practitioner to work in many different places across a cybersecurity organization and doesn’t have that deep of a managerial bend, Puckett said.
CISSP is an industry benchmark known around the world, and covers best practices to ensure users and organizations have all the right components in their security program, according to Bruce Beam, chief information officer at (ISC)2, which administers the CISSP. The CISSP addresses all aspects of an organization’s security posture and goes well beyond a point in time skills assessment, Beam said.
The CISSP teaches good fundamentals around access models such as the difference between a confidentiality model and an integrity-first model, according to McAfee Chief Information Officer Scott Howitt. The certification covers basic concepts around minimizing risk to maximize value for the company that is too often forgotten by practitioners who just went down the technical path, he said.