Information Systems Security Management Professional

From Wikipedia, the free encyclopedia

Information Systems Security Management Professional is a designation awarded by the International Information Systems Certification Consortium ((ISC)^2).

For experienced information security professionals with an International Information Systems Security Certification Consortium ((ISC)2) credential in good standing, the (ISC)² ISSMP Concentration demonstrates acquired rigorous knowledge of select Common Body of Knowledge(CBK) domains in Security Management.

The major domains of the CBK covered by ISSMP certification are:

  • Enterprise Security Management Practices
  • Enterprise-Wide System Development Security
  • Overseeing Compliance of Operations Security
  • Understanding Business Continuity Planning (BCP), Disaster Recovery Planning (DRP) and Continuity of Operations Planning (COOP)
  • Law, Investigations, Forensics and Ethics

Candidates for the ISSMP certification must have the CISSP certification, demonstrate 2 years of professional experience in the area of management, and pass the subject-matter exam. Professional experience may be audited for accuracy before the certification is awarded. Current Concentrations for CISSPs include the:

ISSAP, Concentration in Architecture

ISSEP, Concentration in Engineering

ISSMP, Concentration in Management

[edit] See also