CISSP-ISSAP: Information Systems Security Architecture Professional

Recognition for Advanced Expertise in Information Security Architecture 

CISSP-ISSAP requires a candidate to demonstrate 2 years of professional experience in the area of architecture and is an appropriate credential for Chief Security Architects and Analysts who may typically work as independent consultants or in similar capacities. The architect plays a key role within the information security department with responsibilities that functionally fit between the C-suite and upper managerial level and the implementation of the security program. The candidate would generally develop, design, or analyze the overall security plan. Although this role may typically be tied closely to technology, it may be fundamentally closer to the consultative and analytical process of information security. 

Who should obtain the ISSAP certification?

The ISSAP is ideal for CISSPs working in positions such as, but not limited to:

  • System architect
  • Chief technology officer
  • System and network designer
  • Business analyst
  • Chief security officer

To qualify for the CISSP-ISSAP, you must have at least 2 years of cumulative paid, full-time professional work experience in the area of architecture, maintain your CISSP credential in good standing, and pass the ISSAP examination. 

Please Note: The Associate of  (ISC)² designation is not available for the CISSP concentrations (CISSP-ISSAP, CISSP-ISSEP, and CISSP-ISSMP).

What domains are in the ISSAP CBK?

The ISSAP examination domains and weights are:

Domains Weights
1. Access Control Systems and Methodology 21%
2. Communications and Network Security 22%
3. Cryptography 11%
4. Security Architecture Analysis 25%
5. Technology Related Business Continuity Planning (BCP) and Disaster Recovery Planning (DRP) 11%
6. Physical Security Considerations 10%
Total 100%

PLEASE NOTE: Effective July 1, 2017, the CISSP-ISSAP exam will be based on a new exam outline. The domains and their weights have changed. Please refer to the ISSAP Exam Outline and our FAQs for details.

ISSAP Exam Information

Length of exam     3 hours
Number of questions 125
Question format Multiple choice questions
Passing grade 700 out of 1000 points
Exam Language English
Testing center Pearson Vue Testing Center
Study tools

Official (ISC)² Guide to the CISSP-ISSAP CBK Textbook

Official (ISC)² Training Seminar  

Exam outline


Want More Information?

* required

First Name *
Last Name *
Country *

Email *
Phone *


Note: By clicking Submit, your information will be sent to an (ISC)² Certification Consultant who will contact you shortly.

Privacy Policy