ISHPI – Official Site

Systems Security Certified Practitioner

Advance Your Career With Essential Cybersecurity Skills

Effective November 1, 2018, the SSCP will be based on a new exam outline.  Learn more or view the SSCP FAQs.

You’re dedicated to your work in IT or information security, but it’s time to take your career to the next level. Take a big step forward with the SSCP!

This well-known, global IT security certification offers instant credibility. And it’s an excellent way to expand your cybersecurity knowledge — particularly if you’re in a hands-on, operational IT role or you’re building a foundation in information security.

The SSCP shows you have the technical skills to implement, monitor and administer IT infrastructure using information security policies and procedures. You’re skilled in protecting the confidentiality, integrity and availability of data. You matter!

Prove you’re an integral part of this exciting, constantly-changing field. Pursue your SSCP today.

Get To Know The SSCP

Get the Needed Experience

To qualify for SSCP certification, you must have:

  • A minimum of one year of cumulative work experience
  • In one or more of the seven domains of the SSCP Common Body of Knowledge (CBK)

A one year prerequisite pathway will be granted for a candidate who received a degree (bachelors or masters) in a cybersecurity program. Don’t have the required work experience yet? You can take and pass the SSCP exam to earn an Associate of (ISC)2 designation. Then, you’ll have up to two years to earn your required work experience for the SSCP.

Create an Account at Pearson VUE and Schedule Your Exam

To schedule an exam, you must create an account at Pearson VUE. Pearson VUE is the leading provider of global, computer-based testing for certification and licensure exams. You can find details on testing locations, policies, accommodations and more on their website. Once you’ve set up your account and are ready to register, you’ll need to:

  • Complete the Examination Agreement. You agree to the truth of your assertions regarding professional experience. You also legally commit to the adherence of the (ISC)² Code of Ethics.
  • Review the Candidate Background Questions.
  • Pay the exam fee.
Pass the Exam

This is the day to show your greatness! You’ll have three hours to complete the 125 exam questions. You must pass the exam with a scaled score of 700 points or greater. Want more details? Read our exam scoring FAQs.

Subscribe to the Code of Ethics and Get Endorsed

Let’s say you pass the exam. Then what? Before this IT security certification can be awarded, you have to:

  • Subscribe to the (ISC)² Code of Ethics.
  • Have your application endorsed.

Your endorsement form must be completed and signed by an (ISC)² certified professional. He or she needs to be an active member who can confirm your professional experience. (ISC)² can endorse you if you can’t find a certified individual. You have nine months from the date of the exam to complete these steps. If you don’t, you have to retake the exam to get certified. Want to learn more? Read our endorsement assistance guidelines.

Yes, you can earn other starter IT security certifications. But as other SSCPs will tell you, none of those certifications will give you the sense of achievement you’ll feel with the SSCP.

Here are powerful reasons to become an SSCP:

  • Respect. The SSCP certification validates your knowledge and experience. It’s a way to be taken more seriously. SSCPs have a voice in decisions, and their managers and peers value their advice.
  • New career opportunities. The SSCP can spark career growth. It can lead to higher pay, promotions, more complex work, exciting challenges, project lead roles and even better jobs.
  • Growth and learning. The SSCP not only proves your knowledge, it helps you develop new skills you can instantly apply in your day-to-day work. And you’ll stay up-to-date on emerging security threats.
  • A path to the CISSP and/or a career in information security. The SSCP is an excellent way to prepare for the CISSP. It’s also a strong foundation for a career in information security. You’ll build confidence, learn new skills and get familiar with the format of the (ISC)2 exams.
  • A broader perspective. You’ll better understand the business side of things: from risk management, to business continuity planning. And because the SSCP is vendor neutral, you can apply your real-world knowledge across platforms. You’ll bring more value to those you’re serving.
  • Community of professionals. You’ll become a member of the (ISC)2 community. You’ll gain access to an amazing network of peers and ways to better yourself.
What the Industry Is Saying About the SSCP

DoD 8570 Approved

The SSCP is DoD 8570 approved. It’s listed in three categories on the DoD 8570 matrix:

  • IAT Level 1
  • IAT Level II
  • CND Infrastructure Support

The SSCP certification is accredited by the American National Standards Institute (ANSI). This means it complies with the International Organization for Standardization and International Electrotechnical Commission (ISO/IEC) 17024 Standards. Why is accreditation important when choosing a certification program? Visit the Institute for Credentialing Excellence website for details.

You have hands-on, technical IT skills and some practical security knowledge. Sound familiar?

The SSCP is an excellent step for you if you:

  • Want to validate your skills and experience, so you can advance your career and earn more respect.
  • Are serious about the exciting field of information security.
  • Love a challenge and are always looking for ways to better yourself.
  • Want to expand your knowledge and confidence, so you can deal with new IT security threats and better protect your organization.
  • Want to join a global community of subject matter experts. As a member of (ISC)2, you gain access to networking, professional development and more.
  • Need to comply with government or industry regulations. (The SSCP is DoD 8570 approved.)
The SSCP is ideal for those working in roles such as:

  • Network security engineer
  • Systems/network administrator
  • Security analyst
  • Systems engineer
  • Security consultant/specialist
  • Security administrator
  • Systems/network analyst
  • Database administrator

The exam outline is a free resource that details the major topics and subtopics within the domains that are covered on the SSCP exam. Reviewing this outline will help you determine which topics you may feel less confident about and develop a study plan around those topics. Note: Effective November 1, 2018, the SSCP exam will be based on a new exam outline. The domains and their weights have changed. Please refer to the SSCP Exam Outline for details or view the SSCP FAQs.

If your exam is prior to November 1, download:
If your exam is on or after November 1, download:

For a complete list of acronyms and terms you may encounter during your (ISC)² exam, reference the translated (ISC)² Certification Acronym and (ISC)² Certification Terms glossaries.

Classroom-Based Training
  • Ideal for hands-on learners. We offer the most thorough review of the SSCP CBK, industry concepts and best practices.
  • Five-day training event delivered in a classroom setting. Eight hours a day.
  • Led by authorized instructors.

Get details on Classroom-Based Training.

Private On-Site Training

  • A cost-effective and convenient training solution if your organization has 10 or more employees taking the exam.
  • Tailored to your team’s schedule, budget and certification requirements.
  • Conveniently taught in your office space or a local venue.
  • Led by authorized instructors.

Get details on Private On-Site Training.

SSCP Training Course Overview

Our training helps you fully prepare for this IT security certification. You will:

  • Review, refresh and expand your knowledge of maintaining and securing IT networks, systems and servers.
  • Identify areas you need to study for the SSCP exam.

You can expect an in-depth review of the seven domains of the SSCP CBK — including discussion of industry best practices and timely IT security concepts. (ISC)² authorized instructors lead all our training. You’re learning from industry experts who understand you. They know how to make the content highly relatable. And they go through a rigorous process to teach to our CBK. Plus, we use proven adult learning techniques to reinforce topics. This approach increases how much information you retain. Our techniques are highly interactive. They focus on real-world learning activities and scenarios, so you get the most out of training.

Self-Study Tools

In addition to training, (ISC)² offers resources to help you with self-study. Resources include:

Once you’ve earned this world-class IT security certification, you become a member of (ISC)2. You enter one of the largest communities of information security professionals in the world. You gain access to unparalleled global resources and networking. Quite simply, you have endless opportunities to grow and refine your craft. But certification is a privilege that must be earned and maintained.

To remain in good standing with your SSCP, you need to:

  • Abide by the (ISC)² Code of Ethics.
  • Earn and post Continuing Professional Education (CPE) credits.
  • Pay your Annual Maintenance Fee (AMF).

Here’s a closer look at each.

Abiding by the (ISC)² Code of Ethics

You agree to fully support and follow the (ISC)² Code of Ethics.

Earning and Posting CPE Credits

Cybersecurity is constantly changing. (You know this well!) You need to earn CPE hours to stay well-rounded and keep up your expertise. Over the three-year SSCP certification cycle, you must earn and post a minimum of 60 CPE credits. CPEs may sound like a big task. However, (ISC)² makes it easy for you to earn your CPE credits on a regular basis. (ISC)² offer access to:

  • Live educational events around the world.
  • Online seminars that can be taken in the comfort of your home or office. They’re available exclusively to (ISC)² members.
  • And many more learning opportunities.
Paying Annual Maintenance Fees (AMFs)

Once you earn this IT security certification, you must pay USD $65 each year of your three-year certification cycle. Your payment is due before your certification or recertification annual anniversary date. Your payments help ensure that (ISC)² has the financial resources to:

  • Be a functional, dynamic entity for leading information security professionals (like you) far into the future.
  • Develop more CPE opportunities.
  • Continue to meet the certification needs and requirements of information security professionals.
  • Maintain member records.
How to Regain Membership if Your SSCP Ceases

If you wish to regain membership, you’ll need to:

  • Pay any outstanding AMF payments. (This needs to take place before you sit for the exam.)
  • Retake and pass the exam to become certified again.
  • Contact Member Services to reactivate your certification after you pass the exam.

Do you have questions about maintaining your CISSP certification? Ask Member Services.

What Certification Do You Want To Learn About Next?