EH-Net

Hi all,

I want to pass my CISSP but at the moment I am put off that I need 5+ in the 10 KBD. I know I can still take CISSP and then have 6 years to get the 5 years’ experience but what happen if I don’t get a job I will have to study and take CISSP again :( at the moment I am stuck as I can’t get CISSP without experience but no one will give me experience.

I have done a degree in Information Security and covered security and hope I might be able to get a year drop off for this.

But my other jobs have been small amount of admin work and I don’t know if they will qualify as experience.

Any advice on what I can do?

The experience requirements are here:

https://www.isc2.org/cissp-professional-experience.aspx

Take a look and see if any of your other experiences fit in. Presuming that you mean sysadmin when you say admin, you can likely justify that for at least a portion of the experience requirement. Most IT-related work has some security aspect to it. You can also email or call them and ask them directly whether your experience will count.

Your degree will likely take a year off, as you said. If they won't accept that, go get the security+ cert, which will definitely do so.

If you just can't get there, you can also look at the SSCP, which has a much lower experience requirement:

https://www.isc2.org/sscp/default.aspx

Thanks will do

Also the CIW Web Foundations (formerly CIW Associate) cert counts for a year of experience.

There are a whole list of them here:

https://www.isc2.org/credential_waiver/default.aspx

I think the sec+ is likely one of the easiest and cheapest ones on the list to get. It's also important to remember that you can only get one year taken off off the experience requirement, no matter how many degrees, certs, etc... you may have.

I wasnt aware of that! Thanks for the info.

if you have 5+ years in IT it's not hard to shoehorn those years into one or more of the 10 domains.