C|CISO is the first of its kind certification that recognizes an individual’s accumulated skills
in developing and executing an information security management strategy in alignment with
C|CISO equips information security leaders with the most effective toolset to defend
organizations from cyber-attacks.
To rise to the role of the CISO, strong technical knowledge, and experience is more
imperative now than ever before but it must be accompanied by the ability to communicate in
business value. C|CISOs understand that their information security decisions often have a
direct impact on their organization's operational cost, efficiency, and agility. As organizations
introduce new technologies, C|CISOs will develop and communicate a strategy to avoid the
potential risks stemming from their implementation to the organization's operations.
C|CISOs are certified in the knowledge of and experience in the following C|CISO Domains:
1. Governance (Policy, Legal & Compliance)
2. IS Management Controls and Auditing Management (Projects, Technology & Operations)
3. Management – Projects and Operations
4. Information Security Core Competencies
5. Strategic Planning and Finance
The CCISO certification is an industry-leading program that recognizes the real-world experience
necessary to succeed at the highest executive levels of information security.
Bringing together all the components required for a C-Level positions, the CCISO program
combines audit management, governance, IS controls, human capital management, strategic
program development, and the financial expertise vital to leading a highly successful IS program.
Material in the CCISO Program assumes a high-level understanding of technical topics and
doesn’t spend much time on strictly technical information, but rather on the application of
technical knowledge to an information security executive’s day-to-day work. The CCISO aims
to bridge the gap between the executive management knowledge that CISOs need and the
technical knowledge that many aspiring CISOs have. This can be a crucial gap as a practitioner
endeavors to move from mid-management to upper, executive management roles. Much of this
is traditionally learned as on the job training, but the CCISO Training Program can be the key to a
successful transition to the highest ranks of information security management.
A core group of high-level information security executives, the CCISO Advisory Board, contributed
by forming the foundation of the program and outlining the content that would be covered by
the exam, body of knowledge, and training. Each segment of the program was developed with
the aspiring CISO in mind and looks to transfer the knowledge of seasoned professionals to the
next generation in the areas that are most critical in the development and maintenance of a
successful information security program.