Can anyone from ISC2 provide any reason why it takes so long to process a self endorsement from a current CISSP into another certification? I've passed my CCSP exam on the 3rd of this month, self-certified on the 7th, and was told that it could take six weeks to review my self-endorsement. An intern should be able to write a script that verifies from the member database that the member is indeed a CISSP in good standing and issue the credential and digital certificate immediately. Is ISC2 so unsure of their own member database that they can't trust it immediately and must rely on a manual process?
I'm annoyed at the wait, but also genuinely curious as to what the process possibly could be.
In the general case, endorsement can not be automated because each cert requires experience in one or more of its domains. Since the domains differ for each cert, endorsement for one cert does not guarantee meeting the experience requirement for any other cert. CISSP to CCSP is the exception due to the special rule exempting the experience requirement.
But, even automating CISSP to CCSP would need to get investment attention, which is likely difficult given that that process is only used 4 times per day, whereas AMF payments are done 600 times per day and renewal mailings are done 200 times per day. (source: changes to member counts).
Even if your numbers of four per day are accurate, it would still be worth doing. If it takes 30 minutes to review one application, that's two hours per day saved. That time could be spent manually reviewing twenty other people per week. In one thread cited, Samantha stated back in December of last year that they were looking at making improvements, but it doesn't appear that they've done anything.
If they were serious about their customer services, this is a simple change that could have been done quite a while ago, but for whatever reason they've made their choice. I've sent e-mails to customer service asking the same question but they just go ignored.
The point of this thread was to solicit an actual answer from someone official, but based on reading previous threads, it doesn't look likely to happen. I'd be thrilled to be wrong on this.
As several other people have stated, ISC2 is fortunate that there are quite a number of people whose employment and/or extra salary is predicated on maintaining one or more of these certs.
It's just frustrating. I'd love this to be an organization I could be proud of my membership in, but their inability to communicate or automate their business processes makes it difficult to respect.