Description
About CISSP-ISSAP
The Information Systems Security Architecture Professional (ISSAP) is a CISSP who specializes in designing
security solutions and providing management with risk-based guidance to meet organizational goals. ISSAPs
facilitate the alignment of security solutions within the organizational context (e.g., vision, mission, strategy,
policies, requirements, change, and external factors).
The broad spectrum of topics included in the ISSAP Common Body of Knowledge (CBK®) ensure its relevancy
across all disciplines in the field of information security. Successful candidates are competent in the following
six domains:
• Architect for Governance, Compliance, and Risk Management
• Security Architecture Modeling
• Infrastructure Security
• Identity and Access Management Architecture
• Architect for Application Security
• Security Operations Architecture
Experience Requirements
Candidates must be a CISSP in good standing and have two years cumulative paid work experience in one
or more of the six domains of the CISSP-ISSAP CBK. You can learn more about CISSP-ISSAP experience
requirements and how to account for part-time work and internships at www.isc2.org/Certifications/CISSPISSAP/experience-requirements.
Accreditation
CISSP-ISSAP is in compliance with the stringent requirements of ANSI/ISO/IEC Standard 17024.
Job Task Analysis (JTA)
(ISC)² has an obligation to its membership to maintain the relevancy of the CISSP-ISSAP. Conducted at regular
intervals, the Job Task Analysis (JTA) is a methodical and critical process of determining the tasks that are
performed by ISSAP credential holders. The results of the JTA are used to update the examination. This
process ensures that candidates are tested on the topic areas relevant to the roles and responsibilities of
today’s practicing information security professionals.
There are no reviews yet.