Certified Information Security Professional (CISP)

Certified Information Security Professional (CISP)

CISP Certification Logo
4.9 (Industry Recognition)
CISP Course Preview
Watch Preview

Certification Overview

The Certified Information Security Professional (CISP)™ on Information Systems certification program is directed towards senior-level personnel in the information processing industry. If you plan to build a career in information security – one of today’s most visible professions – and if you have at least five full years of experience in information security, then the CISP credential should be your next career goal. It’s the credential for professionals who develop policies and procedures in information security.

Information security, sometimes shortened to InfoSec, is the practice of defending information from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording, or destruction. It is a general term that can be used regardless of the form the data may take (electronic, physical, etc…).

The ubiquity of computers and the internet in the life of human beings has enabled chance, motive, and means to do harm. With such endangers in front of us, it becomes necessary security for security professionals, to learn about how to manage computer and information security aspects. Hence this course provides methods to develop a new framework for information security, an overview of security risk assessment and management, and security planning in an organization.

Governments, military, corporations, financial institutions, hospitals, and private businesses amass a great deal of confidential information about their employees, customers, products, research, and financial status. Most of this information is now collected, processed and stored on electronic computers and transmitted across networks to other computers.

Due to the difficulty of this certification and the knowledge required to pass the exam, the CISP title carries great weight in the job market. For IT professionals looking to move up on the corporate ladder, this certification can give the extra boost that is needed to move from fieldwork into management positions.

Course Duration: 30 to 35 Hours

Exam Code: CISP-001

Exam Information

The exam comprises of 100 Multiple Choice Questions out of which the candidate needs to score 70% (70 out of 100 correct) to pass the exam.

The total duration of the exam is 2 hours (120 Minutes).

  • The exam is conducted in AI-proctored mode and can be taken anytime, anywhere within an eight-month validity period.
  • Upon purchasing the Premium Package or an Exam Voucher Code, a voucher code with two attempts will be assigned to your login profile under the "My Vouchers" tab. You can then take the exam through the "My Exam(s)" tab in your profile. To take the exam, simply apply the voucher code.

  • The Exam Voucher included in the Premium Package or purchased separately is valid for two (2) attempts. If you are unable to pass the exam within these two attempts, you can purchase a new voucher code, which will grant you an additional two attempts.
  • Kindly Note: The voucher will not be valid for a second attempt if you pass the exam on your first attempt.

The Certified Information Security Professional (CISP)™ is valid for 5 years. The candidate needs to re-certify once in 5 years to maintain the certification credentials.

CISP™ is a Trademark of ITQMA.

Note: The Certified Information Security Professional (CISP)™ Certification has no pre-requisites (Completion of an E-Course is not mandatory from ITQMA), but we highly recommend doing the E-Course as maximum number of questions are drawn from the E-Course in the actual exam.

Download Sample Exam

Course Outline

Module 1 - Introduction to Information Security

  • More Than Just Computer Security
  • Roles and Responsibilities
  • Common Threats
  • Policies and Procedures
  • Risk Management
  • Typical Information Protection Program

Module 2 - Threats to Information Security

  • What Is Information Security?
  • Errors and Omissions
  • Fraud and Theft
  • Malicious Hackers
  • Malicious Code
  • Denial-of-Service Attacks
  • Social Engineering

Module 3 - The Structure of an Information Security Program

  • Enterprisewide Security Program
  • Business Unit Responsibilities
  • Information Security Awareness Program
  • Information Security Steering Committee
  • Assignment of Responsibilities (Senior Mgmt, IS Mgmt, Employees, Third Parties)

Module 4 - Information Security Policies

  • Policy Is the Cornerstone
  • Corporate & Tiered Policies
  • Legal Requirements (SOX, HIPAA, GLBA, FCPA)
  • Policy Key Elements & Formats

Module 5 - Asset Classification

  • Why Classify Information?
  • Classification Categories & Examples
  • Owner, Custodian, User Roles
  • Records Management & Handling Standards

Module 6 - Access Control

  • User & System Access Management
  • Authentication & Authorization
  • Monitoring & Logging
  • Cryptography Basics

Module 7 - Physical Security

  • Data Center Requirements
  • Physical Access Controls
  • Fire Prevention & Detection
  • Document Disposal & Intrusion Detection
Download Brochure

Target Audience

  • IT consultants
  • Managers
  • Security policy developers
  • Privacy officers
  • Information Security Officers
  • Network Administrators
  • Security Device Administrators
  • Security engineers

Registration Process for E-Course or E-Book and Exam

Premium Package
(E-Book Version)
  • E-Book Included
  • This package provides a voucher code granting eligibility for two (2) exam attempts.
  • Includes E-certificate and Digital Badge if you qualify in the exam.
  • E-Book Download Validity: 240 Days
    (Once downloaded, valid for life.)
  • Price: 200 USD
Exam Voucher
  • Validity: 240 Days
  • Price: 190 USD
  • Please Read Carefully:

    1) The Exam Voucher is valid for two (2) attempts.

    2) You will receive your voucher code within 24 business hours.

    3) Once you receive the voucher code, you can take the exam via the "My Exam(s)" tab in your login profile.