Membership Policies and Procedures

The following policies and procedures assist and guide members and Associates of (ISC)² through their membership.

• (ISC)² Certification and Membership Maintenance Policy (ISC)² Certification and Membership Maintenance Policy
  1. Purpose

     This policy establishes the requirements for (ISC)² certified members and associates of (ISC)² to maintain their membership, certification and associate status.

  2. Revision History

     Version 3.0

  3. Scope

     This policy applies to all This policy applies to all certified (ISC)² certified members and associates of (ISC)².

  4. Policy

     In order to maintain membership, certification and associate status, certified members and associates of (ISC)² must earn a minimum amount of continuing professional education (CPE) credits for each of their three-year certification cycles, as well as pay an annual maintenance fee (AMF). Both requirements are needed to ensure your membership, certification and associate status remain in good standing.

  4.1 Continuing Professional Education (CPE) Requirement

  4.1.1 Certified members are required to earn and submit CPE credits over their three-year certification cycle. All CPE activities must be earned and completed no later than 90 days after the certification expiration date (end of three years certification cycle) For more information on CPEs, download the CPE Handbook.

   

  Certification	Type	Suggested Annual	3-Year Total
  CISSP	Group A	30	90
  	Group A or B	10	30
  	Total Required	40	120
  CSSLP, CCSP	Group A	20	60
  	Group A or B	10	30
  	Total Required	30	90
  SSCP, CAP, HCISPP	Group A	15	45
  	Group A or B	5	15
  	Total Required	20	60
  CISSP-ISSAP, ISSEP, ISSMP	Group A	N/A	20*
  	Total Required		20*
  Concentrations	*If you hold a CISSP concentration, 20 Group A CPE credits in the CISSP three-year cycle must be directly related to your concentration. If you hold more than one concentration, you must earn 20 credits in each concentration. CPEs required for a concentration are automatically counted toward the CISSP CPE requirement.
  Associates Program	Type	Required Annual	3-year Total
  Associates of (ISC)²	Group A	15	N/A

   

  4.1.2 Associates of (ISC)² are required to earn and submit 15 CPE credits within their one year cycle. All CPE activities must be completed or earned no later than 90 days after the expiration date (last day of the one-year associate cycle).  For more information on CPEs, please download the CPE Handbook.

  4.1.3 (ISC)² allows certified members and associates of (ISC)² a 90-day grace period after the cycle expiration date to earn and submit required CPEs earned within their 1-year or 3-year cycle. CPEs earned during the 90-day grace period may be submitted and accepted for certification or associate status maintenance. After the 90-day grace period expires and the certified member or associate fails to submit the required CPEs earned during their 1-year or 3-year certification cycle, the certified member or associate will be placed in suspended status.

  4.2 Annual Maintenance Fee (AMF) Requirement

  4.2.1 Certified members (single certified or multi-certified) are required to pay an AMF in the amount of U.S. $125 which are due on the member’s start date of their certification cycle and due on the same date each year. A member’s start date for their certification cycle is the anniversary of their certification. Associates of (ISC)² are required to pay an AMF in the amount of U.S. $50, which is due on the anniversary date of the associate’s cycle and due on the same date each year.

  4.2.2 Candidates who pass their exams and whose endorsements have been approved for (ISC)² certification must pay their first AMF of U.S. $125 before certification is granted. Once a certified member, AMFs will be due each year on the anniversary date of their certification being awarded.

  Candidates who pass their exams and are applying for associate designation must first pay their first year’s AMF of U.S. $50 before their associate designation is granted. Once an associate, AMFs will be due each year on the anniversary date of their associate status being awarded.

  4.2.3 For certified members with multiple certifications on multiple cycle dates, the earliest certification anniversary will be the start date for all of your certifications and due date for their AMFs. For example, if a member obtained the CISSP certification on September 1, 2010, and a CAP certification on January 13, 2012, the member’s certification anniversary would be September 1 each year.

  4.2.4 (ISC)² allows certified members and associates of (ISC)² a 90-day grace period from the cycle start date to pay in full a past due AMF. After the 90-day grace period expires and they fail to pay the past due AMF, the member’s certification or associate designation will be suspended. This applies for each year of the three-year certification cycle. Once suspended, individuals may no longer be allowed to use the certificate designation, display the certificate itself or imply in any way that they are currently certified.

  4.2.5 Once paid, the AMF is non-refundable.

  4.3 Failure to Meet Requirements

  4.3.1 In order to be reinstated once a certification or designation is suspended, certified members and associates of (ISC)² are required to submit all outstanding CPE credits and pay all past due AMFs. Certified members and associates of (ISC)² are given a 90-day grace period from the end of their certification cycle to fulfill outstanding CPE credits and past due AMFs. After the 90-day grace period, suspended certified members and associates will also be responsible for a U.S. $600 reinstatement fee. Suspension status may be maintained for up to two consecutive years. After two years, certified members and associates of (ISC)² will be terminated, and all membership rights will be revoked. Terminated certified members and associates wishing to be reinstated will be required to retake and pass the examination and pay the U.S. $600 reinstatement fee.

  4.4 Hardship

  4.4.1 (ISC)² does not waive the CPE requirements or Annual Maintenance Fees.

  4.4.2 (ISC)² understands that occasionally there are certain extenuating circumstances that occur preventing members from completing all their recertification requirements by their expiration date. Some examples for such extenuating circumstances are the following:

  • Personal/Immediate family, or household person’s medical issues
  • Extended involuntary unemployment
  • Military deployment
  • Natural Disaster
  • Unexpected personal calamity
  • Death of Immediate Family Member (For purposes of this policy, “immediate family” is defined as the member’s or the member’s spouse’s parents, siblings, children, grandparents, grandchildren, the member’s spouse, and/or any other relative who resides in the member’s household) 

  4.4.3 Extension of the 90-day grace period will be evaluated on a case-by-case basis as it relates to a medical or military issue that prevents the cetified member or associate from fulfilling the AMF and CPE requirements on time. If certified members and associates have experienced hardships throughout their three-year certification cycle, they need to contact Member Services at membersupport@isc2.org.

  4.5 Retired Status

  4.5.1 (ISC)² allows a certified member who wishes to retain his/her affiliation with (ISC)² to be granted a retired designation upon his/her retirement from the security profession. To confer retired designation, a member must meet the following minimum qualifications, pay retired status application and any outstanding AMFs. For complete information on the retired status, please see the Retired Status Policy.

  4.5.1.1 Minimum Qualifications for Retired Designation

  • Currently a member in good standing
  • Should be 60 years of age or older, or is medically unable to continue to practice
  • No longer practices or employed as an information security professional (including consulting, private and public sector work)
  • Has been a credential holder (for credential seeking retired status for) in good standing for at least 10 years. For the following newer credentials, the first year of eligibility will start in the years stated below:
    • CISSP, SSCP, CSSLP and CAP: credentials currently eligible
    • HCISPP: 2023
    • CCSP: 2025

  4.5.1.2 Should not currently be the subject of an (ISC)² ethics action/investigation

  4.5.2 Member must complete a Retired Designation Application Form and submit to (ISC)² Clearwater Office via mail or email.

  4.5.3 Member must pay U.S. $100 Application Fee. Fee payment may be made by check, bank wire, money order drawn on a major U.S. bank or via a major credit card. Checks or money order should be made payable to (ISC)².

• (ISC)² Membership Reinstatement Policy (ISC)² Membership Reinstatement Policy
  1. Purpose

     This policy establishes requirements and procedures for (ISC)² membership reinstatement and reactivation of certification.

  2. Revision History

     Version 1.0

  3. Scope

     This policy applies to all (ISC)² certified members and Associates of (ISC)² (hereafter “Member(s)”).

  4. Policy

     (ISC)² allows a suspended or a terminated Member to regain certification under certain limited circumstances.

  4.1 Suspension Status

  4.1.1 Members are given a 90-day grace period from the due date (anniversary date of certification) to pay their AMFs. Failure to pay within the 90-day grace period will result in the Member’s certification being suspended. (ISC)² also allows a 90-day grace period after the cycle expiration date for a Member to submit required CPEs earned within the 1-year or 3-year certification cycle. Please see the (ISC)² Certification and Membership Policy for more information regarding CPE submissions.

  4.1.2 After the 90-day grace period expires and the Member fails to pay the AMF or submit the required CPEs, the Member’s certification or designation will be suspended. Once suspended, Members may no longer be allowed to use the certification designation, display the certificate itself or imply in any way that they are currently certified.

  4.1.3 Once suspended, a Member may be reinstated by submitting all outstanding CPEs and paying all past due AMFs through the member portal prior. Suspended Members will also be subjected to a U.S. $600 reinstatement fee prior to reinstatement.

  4.1.4 (ISC)² will hold a Member in suspension status for up to two consecutive years. After two years, Members will be terminated, and all membership rights will be revoked.

  4.2 Terminated Status

  4.2.1 Suspended Members who do not recertify after two years will be terminated.

  4.2.2 Terminated Members are required to retake and pass the certification examination to recertify. In addition, they must pay a U.S. $600 reinstatement fee and pay all outstanding AMFs prior to registering for the exam. Members can register for the exam at www.pearsonvue.com/isc2.

  A Member’s record will be reflected as “terminated” when the Member fails to meet renewal requirements (AMF and CPE) after two years. A Member may file an extension request or appeal the termination. If an extension or appeal is approved, the Member will need to pay a reinstatement fee of U.S. $600 and fulfill all other requirements.

  4.3. Hardship

  4.3.1 Extension of the 90-day grace period will be evaluated on a case-by-case basis as it relates to a medical or military issue that prevents the Member from fulfilling the AMF and CPE requirements on schedule. If Members have experienced hardships throughout their three-year certification cycle, they need to contact Member Services at membersupport@isc2.org.

• (ISC)² Voucher Policy (ISC)² Voucher Policy
  1. Purpose

     This policy details the terms of use, conditions, restrictions for (ISC)²  vouchers as a form of payment for products and services, and outlines internal procedures that guides the issuance and use of vouchers.

  2. Revision History

     Version 1.0

  3. Scope

     This policy applies to all (ISC)² certified members, candidates and associates who wish to use vouchers as a form of payment for (ISC)² products and services.

  4. Policy

     (ISC)² allows vouchers to be used as a form of payment for Annual Maintenance Fee (AMF), examination fees and training fees. Voucher numbers are not issued and released until invoice is paid in full. The following outlines the guidelines for all types of vouchers issued by ISC)².

  4.1 Exam and Training Vouchers

  4.1.1 Candidates can use the voucher to register for the exam and training of their choice.

  4.1.2 Vouchers have an expiration date – one year from the purchase date and cannot be extended. The candidate is responsible for tracking when the voucher expires; no notification will be sent.

  4.1.3 You must take your exam or training by the voucher expiration date. The examination and training fee will be forfeited on the date of expiration.

  4.1.4 Vouchers cannot be extended, refunded nor replaced. It cannot be used for any other certifications.

  4.1.5 Individuals using vouchers for payment for attendance at an examination or training session will be allowed to reschedule or cancel. However, the exam or training must be rescheduled for a date prior to the expiration date of the voucher.

  The standard U.S. $50 reschedule fee and U.S. $100 cancellation fee for exams will apply. Cancellations and reschedules must be done at least 24 hours prior to the exam start time by contacting Pearson VUE. If you are not in attendance to the exam, you will be marked as a “no-show” and the entire exam fee will be forfeited.

  4.2 Annual Maintenance Fee (AMF) Vouchers

  4.2.1 Corporations/companies can purchase multiple vouchers to pay for their employees’ AMF.

  4.2.2 Vouchers are purchased per individual/employee, and can be used as payment for their AMF.

  4.2.3 Membership vouchers have an expiration date – one year from the purchase date and cannot be extended. The individual who has been issued with a voucher is responsible for tracking when the voucher expires; no notification will be sent.

  4.2.4 The voucher must be used by the expiration date. It cannot be extended, refunded nor replaced.

  5.1 Responsibilities

  The (ISC)² Member Services Team works closely with Finance, Exams and Education Teams on the purchase, usage and administration of vouchers as form of payment for (ISC)² products and services.

• (ISC)² Retired Status Policy (ISC)² Retired Status Policy

  1. Purpose

     This policy establishes the retired status designation and outlines the correct procedure to change credentialed holder to retired status upon request by the member.

  2. Revision History

     Version 3.0

  3. Scope

     This policy applies to all (ISC)²certified members who request change of their credentials to retired status.

  4. Policy

     (ISC)² allows a certified member who wishes to retain his/her affiliation with (ISC)² to be granted a retired designation upon his/her retirement from the security profession. To confer retired designation, a member must meet the following minimum qualifications, pay retired status application and any outstanding AMFs.

  4.1 Minimum Qualifications for Retired Designation

  4.1.1 Currently a member in good standing

  4.1.2 Should be 60 years of age or older, or is medically unable to continue to practice

  4.1.3 No longer practices or employed as an information security professional (including consulting, private and public sector work)

  4.1.3.1 Has been a credential holder in good standing for at least 10 years. For the following credentials, the first year of retirement eligibility will start in the years stated below:

  • HCISPP: 2023
  • CCSP: 2025

  4.1.4 Should not currently be the subject of an (ISC)² ethics action/investigation

  4.2 Member must complete a Retired Designation Application Form and submit to (ISC)² Clearwater Office via mail or email.

  4.3 Member must pay U.S. $100 Application Fee. Fee payment may be made by check, bank wire, money order drawn on a major U.S. bank or via a major credit card. Checks or money order should be made payable to (ISC)².

  4.4 Reinstatement to active status is not anticipated; however, retired member must meet all of the following qualifications/requirements before reinstatement to an active status can be granted.

  4.4.1 Once retired designation is granted; he/she may be reinstated only once to active status.

  4.4.2 If the retired designation was held for two years or less (the two-year timeframe begins at the date the retired designation was approved (date on the retired certificate), the applicant must:

  • Request for reinstatement by contacting Customer Service Coordinators
  • Meet minimum CPE requirements
  • Abide by (ISC)² Code of Ethics

  4.4.3 If retired designation was held for more than two years (the two-year timeframe begins at the date Retired designation was approved (date on the retired certificate), the applicant must:

  • Pass the current credential examination. The standard examination fee will be charged with the payment due at the time of registration and payment made through Pearson VUE testing facility.
  • Complete the exam registration form as appropriate (All section of the Form may not be applicable.)
  • Member needs to request to be reinstated by contacting Customer Service Coordinators, after passing the current credential examination

   

  5. Responsibilities

     5.1 The (ISC)² Endorsement Team may confer the Retired Status designation to (ISC)² credential holders that meet the above qualifications as described in section 2.

     5.2 (ISC)² will notify the decision by email.

     5.2.1 If approved, Credential Holder will receive a new certificate indicating Retired Designation.

     5.2.1.1 Once granted Retired designation, the designee loses his/her credential active status for the reminder of the current certification cycle. There will be no refund of the AMF paid by the designee for the reminder of the certification cycle.

     5.2.2 If denied, the applicant will receive the denial letter with full explanation.

     5.2.2.1 The applicant may file an appeal to the Board using Board’s existing appeal procedure. The Board’s decision will be final.

  6. Procedure
     1. Take Application Fee Payment
     2. Terminate subscription for credential member is retiring
     3. Termination reason = retired
     4. Create Retire Status program profile
  7. Special Provision:
     • Non-members such as Fellow of (ISC)² designees are not eligible to apply for retired designation.
     • Credential holders who intend to continue part-time information security work (perhaps as a consultant) are not eligible for the retired designation.
     • Retired designees shall be subject to the same requirements as active members, except neither CPEs nor AMFs will be required.
     • Retired designees will have some of the same rights and privileges as active members in good standing with exception that they may NOT:
       • Vote in (ISC)² Board or other elections
       • Seek or hold office as (ISC)² Board of Director.
       • Act as an endorser for a candidate seeking (ISC)² certification
     • Retired designees should make every effort to return their credential certificate and ID card to (ISC)² as a means to assure that the designee is not misrepresenting credential.
     • Retired designees will keep their same (ISC)² ID Numbers.
     • Reinstated credential holders will not be required to pay outstanding AMFs or earn outstanding CPEs from previous certification cycles.
     • Retired designees reinstated to credential holder will have their retired status rescinded.
     • Retired designees can be reinstated to credential holder only one time. Credential holders can request Retired status a maximum two times (initial request and if they are reinstated to credential holder and second request.)
     • Retired designees must abide by (ISC)² Code of Ethics.
     • Retired designees must agree to follow (ISC)² Logo Usage Guidelines.
     • Retired designees must notify (ISC)² of their information changes, including address change.
     • There are no AMF or CPE requirements to retain the retired designation. 
     • The three-year Retired designation cycle begins on the first day of the month following the date when the Retired designation was issued.
  8. Retired Member Benefits:
  • May use the credential retired designation on business cards, websites, letter heads, letter salutations, and/or whenever the member name appears, such as in the press or personal documents
  • Maintain profile of contact information in the (ISC)² database
  • Continued access to member magazine       
  • Access to security reports
  • Free online events
  • Vulnerability Central
  • Member discounts   
  • Will continue to receive all (ISC)² official communications  

Additional Membership Information

The following resources offer more details and information on navigating (ISC)² membership.

• Code of Ethics
• AMF Overview
• CPE Overview
• Endorsement
• Exam Policies and Procedures
• Appeal Inquiries
• Certification Verification
• Contact Us