CISSP Definition of Professional Experience

From: Timothy C Holtom (Timothy_at_tholtom.freeserve.co.uk)
Date: 05/16/03 

Date: 16 May 2003 06:20:50 -0700

I'm a Software Test Analyst, with about 12 years experience in the
Software Industry (mainly Defence and Financial). Most of this has
been either Application Development, Functional Testing or Consultancy
related.

Looking at the isc(2) website and their Common Body of Knowledge
(CBK), one of the areas given is Application Development. The
requirement for professional experience is 3 years experience (with
relevant degree) in one or more of the ten defined areas.

ISC(2) define Professional Experience "Work requiring special
education or intellectual attainment...." etc. etc. etc.

I am currently not a security professional, but want to become one.
Looking at the study material for CISSP it seems pretty tough, but I
think I have the aptitude to study for it and stand a reasonable
chance of passing it.

My question is, given the ISC(2) definition, would I qualify to take
the CISSP exam, given that my experience is NOT directly in security
but has an exposure to security (e.g. software development for a
military secure communications network, functional testing a secure
internet banking application, or consultancy assignments where there
was an element of security)

Simply put: Does Professional Experience mean IT Security
Professional Experience or can Professional Experience also mean
general IT experience.....

Thanks,

Tim

Relevant Pages

  • Re: CISSP Definition of Professional Experience
    ... Does Professional Experience mean IT Security ... I think you fit the criteria, but you should pose this question to someone ... It's a hard test meant for mid level security ...
    (comp.security.misc)
  • RE: CISSP without experience
    ... Valid professional experience includes information systems security-related ... or that which requires IS security knowledge and involves ... Clement Dupuis, CD ... CCCure Enterprise Security & Training Inc. ...
    (Security-Basics)
  • CISSP & requirements
    ... Prerequisites: REQUIRED: 4 years professional experience in information ... security or 3 years plus a college degree; RECOMMENDED: SCCP ...
    (alt.computer.security)
  • Re: How do you know when youre done with security testing?
    ... Security cannot be 'tested' into an application. ... favourite attack pattern and work backwards. ... like a user is going to be covered during functional testing. ... hood there is no way you can adequately test it. ...
    (comp.software.testing)
Quantcast