What is the GISP certification and how does it compare to the CISSP certification?

In the world of security certifications, what is the GISP and how alike is it to the CISSP? In this security management expert response, learn about scenarios when the GISP might be appropriate and how industry-relevant it may be.

Mike Rothman, Securosis

Honestly, I didn't know what the GISP certification was prior to this question, so thanks for forcing me to broaden my horizons a bit. The GISP certification comes from the SANS institute and is analogous to the (ISC)2's CISSP certification. Both are termed "intermediate"-level certifications and indicate a broad (though not necessarily deep) understanding of information security topics.

In fact, SANS offers a training course specifically for the CISSP exam that can also be used to prepare for the...

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

GISP test. Since there is a lot more name recognition for the CISSP (as opposed to the GISP), why bother with the GISP?

The only time it's worthwhile to consider the GISP is if you can't qualify for a CISSP, which usually means a lack of experience. The CISSP requires four years of relevant work experience, which a lot of people may not have. Thus the GISP becomes a potential substitute, for a couple of years anyway.

Though as I've written many times in the past, certifications don't necessarily indicate competence.

More information:

Check out the SearchSecurity.com guide to information security certifications.
Security certifications: Are they worth the trouble? Read more.

This was last published in October 2008

Vendor-neutral certification guide for infosec professionals

What CISO certifications are the most important to have?

SSL certificate (Secure Sockets Layer certificate)

CASP certification: Does CompTIA's security certification offer value?

Please create a username to comment.

Prevent cloud account hijacking with 3 key strategies

Security for SaaS applications starts with collaboration

An inside look at the CCSP cloud security cert

How to secure remote access for WFH employees

What's involved in VPN maintenance and management?

The pros and cons of 5G networks

Enterprise architect job still requires IT in critical role

Holy Grail still elusive in enterprise architecture strategy

Ensuring your cybersecurity teams are helping the business

Evaluate if Chromebooks are secure enough for business use

Set up Windows Remote Desktop on a Mac device

Microsoft Endpoint Manager gets better Mac, iPad management

The cloud shared responsibility model for IaaS, PaaS and SaaS

Microsoft's Azure Arc reaches GA milestone

Top 6 complexity challenges of operating a cloud at scale

SSE Enterprise Telecoms makes further investment in UK business connectivity, 5G

Forensic expert questions US claims that Julian Assange conspired to crack military password

Government remains in orbit to develop UK sat nav

Dig Deeper on Information security certifications, training and jobs

Vendor-neutral certification guide for infosec professionals

What CISO certifications are the most important to have?

SSL certificate (Secure Sockets Layer certificate)

CASP certification: Does CompTIA's security certification offer value?

Related Q&A from Mike Rothman

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.