Cissp Experience Requirements

Talha HussainTalha Hussain Member Posts: 5 ■□□□□□□□□□
Hey Folks! im considering to go for the cissp but i have a doubt about my experience that do i have a relevant experience or not! icon_rolleyes.gificon_rolleyes.gif i have 5 years of experience in below mention Technologies do u think they are consider as a infosec experience for cissp and i they are what domain it is.

* Administration of Symantec Endpoint Protection
* Administration of TMG Server
* Administration of Symantec Backup Exec Server and disaster recovery plans
* Administration of Cisco Switches, routers and ASA (5510)
* Administration of Active Directory Server


  • Options
    Nabsh07Nabsh07 Member Posts: 72 ■■□□□□□□□□
    Yes you do have experience in operations security, incident response, BCP.
  • Options
    jt2929jt2929 Member Posts: 244 ■■■□□□□□□□
    Without seeing your actual resume, I would say no, you do not meet the experience requirement.
  • Options
    beadsbeads Member Posts: 1,531 ■■■■■■■■■□
    Send it to the ISC(2) and let them make the determination. From what has been posted on this board and what I know from real life no one has been, reasonably, denied. Meaning that I don't think the ISC(2) puts much thought into the vetting process.

    The question is do you have five years of security experience not the products used during that time. We cannot vet your experience without a resume so your likely to get a wide variety of responses. Most people without much experience tell me they "just make something up", take the exam and have the ISC(2) do the validation.

    Breathe easy.

    - b/eads
  • Options
    dhay13dhay13 Member Posts: 580 ■■■■□□□□□□
    I emailed ISC2 to ask about my experience and got a generic answer...here is the copy/paste of their response

    We do not require proof of work experience prior to sitting for the exam. Once your registration is complete and payment has been submitted on the Pearson VUE site, the next step is to sit for your exam. Once you obtain a passing score, you may then submit your endorsement documentation to programs@isc2.org. If at that time you do not have the required work experience for your certification, you may choose to become an Associate of (ISC)2 until you obtain the required experience.
    Should you have additional questions, please feel free to contact me.
  • Options
    mnashemnashe Member Posts: 136 ■■■□□□□□□□
    It seems like you would. I hope you would as we both have very similar experience.

    Administration of Active Directory - If you are creating user accounts and assigning permissions to resources, that seems (at least to me) to satisfy the Identity and Access Management domain

    Administration of Cisco routers, switches, ASA - This should satisfy the Communication and Network security domain

    I'll let someone else correct me if I'm wrong.
  • Options
    TechGuru80TechGuru80 Member Posts: 1,539 ■■■■■■□□□□
    Shouldn't even really be a question...you only have to have 5 years total between at least two domains...or 4 plus degree or specific certifications. You shouldn't have any issues.
  • Options
    dhay13dhay13 Member Posts: 580 ■■■■□□□□□□
    i have a B.S. and Security+ so should only need 4 years. i have about 3.5 years actively managing AD, users and groups, permissions, etx., and another 8 years or so managing firewalls, and general system hardening. in addition to that i have about 1.5 years of vulnerability scanning and remediation. that is what i sent to ISC2 and they gave the generic response posted above. i don't think i will have any issue but i wanted to get it directly from them.
  • Options
    TechGuru80TechGuru80 Member Posts: 1,539 ■■■■■■□□□□
    Even if you didn't get accepted...you would have 6 years to get the experience. Seems pretty cut and dry based on what you have said you have done.
Sign In or Register to comment.