Answering Questions About the CISSP Certification

Written on July 17, 2012 by Jason Rader

Comments (One)

I just finished teaching RSA’s CISSP exam prep course last week (good times) and I was asked some questions that I felt were appropriate to answer in a blog post because they might be of interest to a wider audience. So here goes…

#1 Is CISSP still a worthy credential to obtain?

This is a fair question as the certification has been around over a decade. My answer involved a comparison of the current security credentials out there, the acceptance of those credentials in the market, the authority that defines and maintains the credential, and the level of expertise required to obtain the credential. We arrived at the conclusion that the CISSP is one of a very few security certifications out there that are worth the time, money and effort to acquire. It certainly isn’t everything to everyone but it does represent a fundamental knowledge of “all things security” and the certification process after the exam validates a certain amount of experience. And it still looks good on a resume!

#2 Why is RSA offering this course?

RSA, The Security Division of EMC not only has a series of products that can be used to mitigate many of the threats that the CISSP addresses, it also has a Professional Services group, a Security and Risk Management group of EMC Consulting, and an Education Services group. Between all of these groups we deliver solutions to thousands of clients each year dealing with the latest threats and business needs. The CISSP talks about many topics from an academic perspective with a generic approach. I think taking the RSA course gives you the knowledge required to pass the exam while additionally giving the insight into the latest happenings in the security world. RSA’s CISSP course gives a CISSP candidate the additional information that will be valid well past the exam.

#3 Has the CISSP test changed recently?

Yes on two levels. First there is an updated Candidate Information Bulletin (CIB) that was issued in 2012 with the most up to date information related to the exam objectives…RSA’s course aligns with this. Secondly, and most exciting in my opinion, the exam is now offered through PearsonVue testing centers. This means you don’t have to wait for an exam to be offered in your area as was traditionally done, you can register and take the exam whenever you like. I still recommend registering early…the test is long and seats are limited in testing centers, but this really makes it easier to take the exam.

Now a shameless plug… :)

I’ve been teaching CISSP courses for over 10 years and RSA’s course is really the best way to go to get the most bang for your buck and the best use of your time. If you’d like to join me, check the schedule at RSA’s Training Site and register. There are courses available in the US, Europe, and Asia Pacific right now.

Jason Rader is the Chief Security Strategist for RSA Global Services and can be reached at jason.rader@rsa.com

One Response to “Answering Questions About the CISSP Certification”

  1. Lily says:
    December 11, 2012 at 8:14 pm

    For those having the debate about whether CISSP is relevant or not – you might want to hear our web show with Winn Schwartau called “Solving the Cyber Security Hiring Crisis”

    Winn is a veteran speaker (DefCon, Hacker Halted etc) and he talks about the relevancy of CISSP when it comes to hiring here – http://www.concise-courses.com/infosec/20121016/

    Thanks thought I’d share ;) Lily – Concise Courses

Leave a Reply