Skip to main content

Next Level Certifications for CISSPs – ISSAP, ISSEP, ISSMP

ISC2’s advanced security certifications are officially upgraded – with all new adaptive training and examination outlines.

ISC2 offers three advanced security certifications, Information Systems Security Architecture Professional (ISSAP), Information Systems Security Engineering Professional (ISSEP) and Information Systems Security Management Professional (ISSMP). Each one a step above the renowned Certified Information Systems Security Professional (CISSP). These certifications hold the highest requirements of ISC2's nine certifications.

While advanced certifications are the logical next step for many CISSPs, those with a career specialization in architecture, engineering or management, who may not yet hold the CISSP but meet the experience requirements, can also become certified at this level.

Adaptive Training for Advanced Security Certifications

The newly released online self-paced training courses for advanced certifications are interactive, adaptive and aligned to the latest exam outlines. The courses offer personalized instruction that customizes the learning experience as you progress. Since the release of the first adaptive training, ISC2 and users have seen improved learning outcomes and 97% of participants say they would recommend the training.

The host platform supports candidates by identifying areas that require further review and providing targeted support to maximize your understanding of content. You set the pace and confidence level for each item along the way, directing the content to adapt to your knowledge base. You’ll receive immediate feedback and engage with dynamic course material that progresses based on your knowledge level. You can be assured that your study time is optimized as the platform identifies areas requiring further review and provides targeted support.

Additional ISSAP, ISSEP, ISSMP Learning Resources

More than user-friendly, the latest version of the online self-paced training includes a recently revised official eTextbook (ISSAP, ISSEP, ISSMP)and all-new study questions eBooks:

With all this content, and a significant (66%) reduction in training cost, these advanced certifications have never been more accessible. Training package prices vary depending on the duration of access, textbook needs and more. Each offering includes the ISC2 Education Guarantee which permits learners who don’t pass the exam on their first attempt to access the same training again at no cost within one year from the end of the initial training.

Revised ISC2 Exam Outlines

As of August 1, new exam outlines are in place for the ISSAP, ISSEP and ISSMP certifications. The updated adaptive training is aligned to this new version of the exam outlines. The domains and domain weights, along with their subdomains, have been revisited and revised based on the latest Job Task Analysis (JTA). JTAs are a methodical and critical process of determining the tasks performed by security professionals who are engaged in the profession defined by the certification. The complete exam outlines are available now:

ISSAP - ISSAP Exam Outline

  • Domain 1: Governance, Risk, and Compliance (GRC) (21%)
  • Domain 2: Security Architecture Modeling (22%)
  • Domain 3: Infrastructure and System Security Architecture (32%)
  • Domain 4: Identity and Access Management (IAM) Architecture (25%)

ISSEP - ISSEP Exam Outline

  • Domain 1: Systems Security Engineering Foundations (24%)
  • Domain 2: Risk Management (20%)
  • Domain 3: Security Planning & Engineering (22%)
  • Domain 4: Systems Security Implementation, Verification, and Validation (14%)
  • Domain 5: Secure Operations, Change Management, and Disposal (15%)

ISSMP - ISSMP Exam Outline

  • Domain 1: Leadership and Organizational Management (21%)
  • Domain 2: Systems Lifecycle Management (15%)
  • Domain 3: Risk Management (20%)
  • Domain 4: Security Operations (18%)
  • Domain 5: Contingency Management (12%)
  • Domain 6: Law, Ethics, and Security Compliance Management (14%)

To become credentialed in ISSAP, ISSEP or ISSMP, you must hold the CISSP and have two additional years of experience in one or more of the exam outline domains. If you don’t have the CISSP, you must have a minimum of seven years cumulative, full-time experience in two or more of the domains. More information to set yourself up for exam success is available at https://www.isc2.org/training