Enhancements include new exam outlines and AI-powered adaptive training to help CISSPs and experienced cybersecurity professionals further demonstrate their expertise

Alexandria, Va., August 21, 2025 – ISC2 – the world’s leading nonprofit member organization for cybersecurity professionals – today announced updated exam outlines and the launch of new AI-driven adaptive, self-paced courses for its three most advanced security certifications, Information Systems Security Architecture Professional (ISSAP), Information Systems Security Engineering Professional (ISSEP) and Information Systems Security Management Professional (ISSMP). The exam updates incorporate the latest best practices in each domain, ensuring the certifications remain aligned with current industry needs. The self-paced courses will support professionals in preparing for these updated exams, helping CISSPs and other experienced professionals deepen their expertise, validate specialized skills and position themselves for greater impact and leadership in their organizations.

“Our most advanced certifications are designed for CISSPs looking to take the next step, as well as for senior professionals aiming to achieve the highest professional education standards in cybersecurity.” said ISC2 Chief Operating Officer Casey Marks. “We’re committed to ensuring these certifications remain relevant and impactful. These comprehensive updates reflect our ongoing investment in our certification programs and our commitment to our members that their qualifications are recognized as world-class.”

Revised Exam Outlines

The updated exam outlines developed through a rigorous Job Task Analysis (JTA) and reviewed by global subject matter experts, reflect the evolving cybersecurity challenges and industry expectations. The revised domains provide a clearer, modernized roadmap of the knowledge required to lead effectively in each specialization.

The following exam outlines are available now:  

ISSAP Exam Outline  

  • Domain 1: Governance, Risk, and Compliance (GRC)
  • Domain 2: Security Architecture Modeling
  • Domain 3: Infrastructure and System Security Architecture
  • Domain 4: Identity and Access Management (IAM) Architecture

ISSEP Exam Outline  

  • Domain 1: Systems Security Engineering Foundations
  • Domain 2: Risk Management
  • Domain 3: Security Planning and Engineering
  • Domain 4: Systems Security Implementation, Verification, and Validation
  • Domain 5: Secure Operations, Change Management, and Disposal

ISSMP Exam Outline  

  • Domain 1: Leadership and Organizational Management
  • Domain 2: Systems Lifecycle Management
  • Domain 3: Risk Management
  • Domain 4: Security Operations
  • Domain 5: Contingency Management
  • Domain 6: Law, Ethics, and Security Compliance Management

New Adaptive Online Self-Paced Training

Available for all three advanced certifications, ISC2’s adaptive online self-paced training delivers content based on each learner's progress, strengths and areas for improvement, providing candidates a more targeted study experience. The launch of courses for ISSAP, ISSEP, and ISSMP completes the rollout of adaptive training across all nine ISC2 certifications. 

The updated training includes:

  • Personalized content paths powered by AI
  • Real-time feedback and progress tracking
  • The official ISC2 eTextbook
  • A new eBook of study questions
  • Access to the ISC2 Education Guarantee, which provides repeat course access if a candidate doesn’t pass their exam within one year

Now more affordable than ever, with prices reduced by up to 66% and flexible access options to suit different learning needs. Online Self-Paced Training for ISSAP, ISSEP, and ISSMP starts at U.S. $595, with additional discounts available for ISC2 members and candidates. 

A Pathway for Experienced Cybersecurity Leaders

To qualify for these certifications, a candidate must either (1) hold the CISSP and have two years’ cumulative, full-time experience in one or more of the exam outline domains, or (2) have a minimum of seven years cumulative, full-time experience in two or more of the relevant domains. 

For more details on exam outlines, training packages and how to get started, visit: https://www.isc2.org/certifications.

+++

About ISC2 

ISC2 is the world’s leading member organization for cybersecurity professionals, driven by our vision of a safe and secure cyber world. Our more than 265,000 certified members, and associates, are a force for good, safeguarding the way we live. Our award-winning certifications – including cybersecurity’s premier certification, the CISSP® – enable professionals to demonstrate their knowledge, skills and abilities at every stage of their careers. ISC2 strengthens the influence, diversity and vitality of the cybersecurity profession through advocacy, expertise and workforce empowerment that accelerates cyber safety and security in an interconnected world. Our charitable foundation, the Center for Cyber Safety and Education, helps create more access to cyber careers and educates those most vulnerable. Learn more, get involved or become an ISC2 Candidate to build your cyber career at ISC2.org. Connect with us on X, Facebook and LinkedIn.

© 2025 ISC2 Inc., ISC2, CISSP, SSCP, CCSP, CGRC, CSSLP, HCISPP, ISSAP, ISSEP, ISSMP, CC, and CBK are registered marks of ISC2, Inc. 

Media Contact: 
Amanda Steinman 
Senior Corporate Communications Manager 
ISC2 
asteinman@isc2.org