Sounds like a good plan. I failed the CISSP in 2010 and never retook. I am deciding between CISM and CCSP of which is more my strength and is easier. I am full time worker and mom so I need to plan better and study the right stuff. If you know how this might compare to CISM by Isaca maybe one is better than the other for me.
Thanks and congrats.
just compare the Guide to CISM certification (http://www.isaca.org/info/CertificationPlanningGuide/cism_planning_guide.html?icid=bani_1223388&appe...) with the CCSP Exam outline (https://www.isc2.org/-/media/ISC2/Certifications/Exam-Outlines/CCSP-Exam-Outline.ashx). You will quickly see that there are pretty big differences between them. The first focuses on the more General security management concepts and the latter only talks about cloud concepts. If I were you I would start by asking myself where I am heading to. If you are heading for a management Position in the next months, maybe CISM would be more appropriate. If you are rather interested for cloud technology, pick the last one.
I really don't know which one is "easier" - CCSP was not easy, but can be mastered if you dedicate some time. By the way, I am also working in full-time and mainly learned after work in the evenings and during weekends.
I also networked with someone who passed both exams. He did say that CISM was less technical in nature. I am also learning now the CISM is more geared for the manager. I just started the free learning library on Cybrary so I think I'm definitely headed in the right direction! 1. I've already done IT management before and 2. About 50% of what is being talked about I know already. Thanks to the CISSP exam and also the annual cyber security exams my company makes me take.
I think I will pursue CCSP cloud security if I go into that arena or figure out what jobs call for that certification. It doesn't hurt to have both at some point.
Very Good Advice..!!
(ISC)² and the Cloud Security Alliance (CSA) developed the Certified Cloud Security Professional (CCSP) credential to ensure that cloud security professionals have the required knowledge, skills, and abilities in cloud security design, implementation, architecture, operations, controls, and compliance with regulatory frameworks
Thanks! Wish you all the luck for your exam!
Congratulations on passing your exam. As someone who has passed many exams, I am particularly frustrated with the CCSP. It doesn't seem like any (ISC)2 exam I've taken or written exam questions for. I went through the video course 2x and read the CBK, answered questions; even got the official Q&A. First time, missed by 30. Second time, missed by 20 and that is when I felt best and knew I had answered the questions correctly. Still, no joy. Of course I can't find out the logic the writers behind the questions used, but something doesn't add up right now. I'm taking it again in two weeks
I hold both the CISM and the CCSP. They are surely different animals all together. As previously stated the CISM is more management oriented. As I recall, there was an emphasis on understanding IT organizations, so you could steer your IS staff to the correct people to get the required data/documents/audit findings etc. There was also emphasis on understanding IT business in general.
The CCSP of course was cloud oriented. Much of it centered on differences between old school Data Center type organizations and more modern cloud centric organizations. As A CISA and also a CISSP, I had to wrangle some of my old thought process and get it aligned with more current cloud thought. Not as easy as you might think.