https://community.isc2.org/t5/Exam-Preparation/Advise-on-CSSP-eligibility/m-p/64173#M4092 Bottom Line Up Front: Sit down with a dear, trusted CCSP certified friend and go through you last ten years of experience, investigating your IT Service delivery tasks and mapping your experience to the CCSP domains.<BR /><BR />IT has a lot of information security in it - design Active Directory for five years —- what about all that RBAC? Security groups within security groups? Ran an E-Policy Orchestration Server? Squashing virus infections and getting angry at McAfee(Trellix) when it didn’t work? Scoped the traceable requirements for a software project? Did it have security requirements? Managed a patching strategy prioritising CVEs? Telling the vendors update your OSS components please rather than giving me excuses as to why you’re not vulnerable… I have to track them you know - and hang on what do you mean you’re not …”generally” vulnerable…? You’ll need to analyse your tasks and see what your friend thinks is admissible.<BR /><BR />The current guidance is clear as mud - but you need 5 years IT experience, of which 3 years must be in “information security” and one year in one of the six CCSP domains.<BR /><BR />Bottom line down below is your CS degree counts a year, the other certificate you might consider is CSAs CCSK which counts a year and you then need a years experience in one domain of the CCSP.<BR /><BR /><A href="https://www.isc2.org/certifications/ccsp/ccsp-certification-exam-outline" target="_blank">https://www.isc2.org/certifications/ccsp/ccsp-certification-exam-outline</A><BR /><A href="https://www.isc2.org/certifications/ccsp/ccsp-experience-requirements" target="_blank">https://www.isc2.org/certifications/ccsp/ccsp-experience-requirements</A><BR /><BR /> Fri, 03 Nov 2023 16:40:38 GMT Early_Adopter 2023-11-03T16:40:38Z https://community.isc2.org/t5/Exam-Preparation/Advise-on-CSSP-eligibility/m-p/64152#M4091 <P>I am not sure if there is way to get advise on CSSP eligibility. could anyone help me in this regard based on my profile below:&nbsp;<BR /><BR /><STRONG>Achieved Certification in 2023:</STRONG></P><P>1- (CEH) EC-Council certified hacker&nbsp;<BR />2- (BTL1) Blue Team Level 1 Certification<BR />3- (CC) ISC2 Certification in Cyber Security&nbsp;<BR /><BR /><STRONG>Education:</STRONG><BR />Specialist diploma in Information Technology and Forensics (2023)<BR />Bachelor in Computer Science - 4 Years (2004)<BR /><BR /><STRONG>Work Experience:</STRONG><BR /><U><EM>NO experience in cyber security</EM> </U>but 15 year working experience in IT Service delivery<BR /><BR />I would really appreciate one can provide an advise How i can take CCSP from here.&nbsp;<BR />Thank you&nbsp;</P> Fri, 03 Nov 2023 10:08:46 GMT https://community.isc2.org/t5/Exam-Preparation/Advise-on-CSSP-eligibility/m-p/64152#M4091 shahid737 2023-11-03T10:08:46Z https://community.isc2.org/t5/Exam-Preparation/Advise-on-CSSP-eligibility/m-p/64173#M4092 Bottom Line Up Front: Sit down with a dear, trusted CCSP certified friend and go through you last ten years of experience, investigating your IT Service delivery tasks and mapping your experience to the CCSP domains.<BR /><BR />IT has a lot of information security in it - design Active Directory for five years —- what about all that RBAC? Security groups within security groups? Ran an E-Policy Orchestration Server? Squashing virus infections and getting angry at McAfee(Trellix) when it didn’t work? Scoped the traceable requirements for a software project? Did it have security requirements? Managed a patching strategy prioritising CVEs? Telling the vendors update your OSS components please rather than giving me excuses as to why you’re not vulnerable… I have to track them you know - and hang on what do you mean you’re not …”generally” vulnerable…? You’ll need to analyse your tasks and see what your friend thinks is admissible.<BR /><BR />The current guidance is clear as mud - but you need 5 years IT experience, of which 3 years must be in “information security” and one year in one of the six CCSP domains.<BR /><BR />Bottom line down below is your CS degree counts a year, the other certificate you might consider is CSAs CCSK which counts a year and you then need a years experience in one domain of the CCSP.<BR /><BR /><A href="https://www.isc2.org/certifications/ccsp/ccsp-certification-exam-outline" target="_blank">https://www.isc2.org/certifications/ccsp/ccsp-certification-exam-outline</A><BR /><A href="https://www.isc2.org/certifications/ccsp/ccsp-experience-requirements" target="_blank">https://www.isc2.org/certifications/ccsp/ccsp-experience-requirements</A><BR /><BR /> Fri, 03 Nov 2023 16:40:38 GMT https://community.isc2.org/t5/Exam-Preparation/Advise-on-CSSP-eligibility/m-p/64173#M4092 Early_Adopter 2023-11-03T16:40:38Z https://community.isc2.org/t5/Exam-Preparation/Advise-on-CSSP-eligibility/m-p/64198#M4093 <P>Honestly your reply was an eye-opener for me. I didn't realized that I'd been doing a lot of Security stuff&nbsp;<SPAN>without me knowing. Implementation of 802.1x,&nbsp; MDM, ClearPass,&nbsp;</SPAN><SPAN>incident handling, Digital signature, encryption, spam control and monitoring, Key Escrow, Account and access management,&nbsp; and list just go on and on...&nbsp;</SPAN></P><P>&nbsp;</P><P>Thank you so much for giving me a direction.&nbsp;<BR />You are really a "<SPAN>Community Champion"&nbsp;<BR /><BR /><BR /></SPAN></P> Sat, 04 Nov 2023 12:41:20 GMT https://community.isc2.org/t5/Exam-Preparation/Advise-on-CSSP-eligibility/m-p/64198#M4093 shahid737 2023-11-04T12:41:20Z https://community.isc2.org/t5/Exam-Preparation/Advise-on-CSSP-eligibility/m-p/64206#M4094 NP, it’s a pleasure to be able to help out. Best of luck with the CCSP. Sat, 04 Nov 2023 22:14:57 GMT https://community.isc2.org/t5/Exam-Preparation/Advise-on-CSSP-eligibility/m-p/64206#M4094 Early_Adopter 2023-11-04T22:14:57Z