Description
About CCSP
ISC2 developed the Certified Cloud Security Professional (CCSP) credential to ensure that cloud security professionals have the required knowledge, skills, and abilities in cloud security design, implementation, architecture, operations, controls, and compliance with regulatory frameworks. A CCSP applies information security expertise to a cloud computing environment and demonstrates competence in cloud security architecture, design, operations, and service orchestration. This professional competence is measured against a globally recognized body of knowledge.
The topics included in the CCSP Common Body of Knowledge (CBK) ensure its relevancy across all disciplines in the field of cloud security. Successful candidates are competent in the following six domains:
- Cloud Concepts, Architecture and Design
- Cloud Data Security
- Cloud Platform & Infrastructure Security
- Cloud Application Security
- Cloud Security Operations
- Legal, Risk and Compliance
Experience Requirements
Candidates must have a minimum of five years cumulative paid work experience in information technology, of which three years must be in information security and one year in one or more of the six domains of the CCSP CBK. Earning CSA’s CCSK certificate can be substituted for one year of experience in one or more of the six domains of the CCSP CBK. Earning the CISSP credential can be substituted for the entire CCSP experience requirement.
A candidate that doesn’t have the required experience to become a CCSP may become an Associate of ISC2 by successfully passing the CCSP examination. The Associate of ISC2 will then have six years to earn the five years required experience. You can learn more about CCSP experience requirements and how to account for part-time work and internships at www.isc2.org/Certifications/CCSP/CCSP-Experience-Requirements.
Accreditation
CCSP is in compliance with the stringent requirements of ANSI/ISO/IEC Standard 17024.
Job Task Analysis (JTA)
ISC2 has an obligation to its membership to maintain the relevancy of the CCSP. Conducted at regular intervals, the Job Task Analysis (JTA) is a methodical and critical process of determining the tasks that are performed by security professionals who are engaged in the profession defined by the CCSP. The results of the JTA are used to update the examination. This process ensures that candidates are tested on the topic areas relevant to the roles and responsibilities of today’s practicing information security professionals focusing on cloud technologies.
CCSP Examination Information
Length of exam | 4 hours |
Number of items | 150 |
Item format | Multiple choice |
Passing grade | 700 out of 1000 points |
Exam language availability | English, Chinese, German, Japanese, Korean and Spanish |
Testing center | Pearson VUE Testing Center |
CCSP Examination Weights
Domains | Average Weight |
---|---|
1. Cloud Concepts, Architecture and Design | 17% |
2. Cloud Data Security | 20% |
3. Cloud Platform & Infrastructure Security | 17% |
4. Cloud Application Security | 17% |
5. Cloud Security Operations | 16% |
6. Legal, Risk and Compliance | 13% |
Total | 100% |
Additional Examination Information
Supplementary References
Candidates are encouraged to supplement their education and experience by reviewing relevant resources that pertain to the CBK and identifying areas of study that may need additional attention.
View the full list of supplementary references at www.isc2.org/certifications/References.
Examination Policies and Procedures
ISC2 recommends that CCSP candidates review exam policies and procedures prior to registering for the examination. Read the comprehensive breakdown of this important information at www.isc2.org/Register-for-Exam.
Reference : https://www.isc2.org/certifications
There are no reviews yet.