Maybe the CEO's $500K+ annual compensation package is being renegotiated.
I agree with dpark75.
I have already reached out to several clients that I am assisting in filling security positions, and had discussions regarding the perceived value of the ISC2 certs. They have universally agreed with me and will no longer include the CISSP as a job pre-requisite. I also work with several cybersecurity graduate students that have come to me for guidance in advancing their careers. ISC2 will not be in those conversations.
I am an older guy and I recall a similar scenario with Novell with their CNE cert. As it got watered down, companies de-valued the certificate. Hopefully one of those 6 figure executives will see that ISC2 does not have a product without it's members.
Wayne, you mean the "paper CNE" effect, which became the "paper MCSE". The constant push to expand membership and not to better the profession... seems to be exposing itself yet again.
Until yesterday, I'd tend to enthusiastically recommend the CISSP to friends / colleagues, so it'll be hard to suddenly change my stance. To soften the blow, I'll go like something like this : -
The CISSP certification is a must-have --- at least, you'll feel that way at the start. You're likely to get posted in a good organization, hopefully one that will bear the costs of your AMFs. Earn more certifications from (ISC)2 & there won't even be additional AMFs; just keep in mind that the examinations aren't free.
Once you're certified, you'll face the ultimate test. Unlike other organizations which only require that you earn CPEs to maintain a certification, (ISC)2 challenges holders to 'hack' their way into its portal and add these using their own judgement. (To ensure high standards, your CPEs may be audited --- but if any are flagged, you just have to earn more)
To ensure members stay sharp, (ISC)2 may intentionally create errors when you attempt to pay your AMF --- once you report this everything should be okay. Failing to noticing this is no cause for concern, so long as you're ok paying a double amount later on.
It may not be a win-win situation --- but (ISC)2 definitely wins.
I'll try to keep a cheerful face when I'm saying all this, and if the person feels compelled to take the CISSP after hearing it, I'll know I should have been an actor...
Can we please have a justification for the increase and the benefits to be gained from the boards perspective?
For now, I'm going to assume (ISC)2's board did a cost-benefit analysis that somehow yielded the following results: -
Proposal: Remove the requirement to maintain AMFs to individual certifications --- by increasing the base AMF amount.
(For all we know, they may have just tossed a coin to accept such a proposal)
On a serious note, a justification by (ISC)2 is needed. I'm also wondering if it would be feasible to opt out of member benefits to get the cost reduced --- the only thing that matters to me after this AMF hike is the certification, given that other resources are usually available elsewhere, often for free...
Yeah at least ISACA let you pay a reduced 'admin' only fee to keep your certs valid without the so called 'member benefits'.
I would not be surprised if a legal challenge is being considered against this price increase and the ISC2 board; possibly crowdfunded by the members.
Some people will accept the hike, some people will leave ISC2, and some may fight it.
Why would you say that out loud. For crying out loud, don't give them any ideas of further increases.