DoD 8570 and CSSLP Certification
Cyberspace is the new battlefield, where commercial and DoD assets have become virtual targets for our adversaries. The DoD 8570 Information Assurance Training, Certification and Workforce Management program addresses this threat by proactively educating and certifying commercial contractors, and military and civilian personnel to perform their critical duties as Information Assurance professionals.
Under the 8570 Mandate, all personnel with "privileged access" to DoD systems must obtain an ANSI-approved commercial certification. (ISC)² was the first organization to receive ANSI accreditation under ISO/IEC Standard 17024 and has since received accreditation for each of its credentials. Learn more by reviewing the comprehensive overview of the DoD Directive 8570.1.
IASAE Level I & II and CSSLP
In order to determine which certification is relevant, a classification grid has been constructed to pinpoint what duties the individual fulfills and what certifications are appropriate for their specific job function. The grid below provides guidance for assessing the proper certification commensurate with personnel job responsibilities.
CSSLP validates a candidate's competency in application security within the entire Software Development Life Cycle (SDLC). A CSSLP provides assurance that software is developed with security built into each phase of the software lifecycle to help mitigate risks from hackers. The CSSLP examination tests the breadth and depth of a candidate's knowledge by focusing on the eight CSSLP CBK domains.