EC-Council's Certified Chief Information Security Officer (CCISO) Program has certified leading information security professionals around the world.
What is included in the offer?
- Instructor led training modules
- Official e-courseware (self-study materials) from EC-Council
- Official Training Completion Certificate from EC-Council
- Official transcript from EC-Council
- International exam voucher
- Remote proctoring exam (you can write the exam at the comfort of your home or office anywhere in the world)
A core group of high-level information security executives, the CCISO Advisory Board, formed the foundation of the program and outlined the content covered by the exam, body of knowledge, and training. Some members of the Board contributed as authors, others as exam writers, others as quality assurance checks, and still others as instructors. Each segment of the program was developed with the aspiring and sitting CISO in mind and looks to transfer the knowledge of seasoned executives to the next generation of leaders in the areas that are most critical in the development and maintenance of a successful information security program.
CCISO Outline
CCISO Domain Details
CCISOs are certified in the knowledge of and experience in the following CCISO Domains:
Domain 1
Governance, Risk, Compliance
Domain 2
Information Security Controls and Audit Management
Domain 3
Security Program Management & Operations
Domain 4
Information Security Core Competencies
Domain 5
Strategic Planning, Finance, Procurement, and Third-Party Management
Job Roles
- Director, Chief Information Security Officer (CISO)
- Deputy CISO
- VP & Chief Information Security Officer
- Chief Information Security Officer (VP)
- System Dir, Info Sys. Security - CISO
- Chief Privacy Officer
- ASSOCIATE VICE PRESIDENT AND CHIEF INFORMATION SECURITY OFFICER
- Chief Security Officer
- CIO COO
- Assistant Executive Director - Chief Information Security Officer
- CISO Threat Intel
- Chief Technical Officer (CTO)
- Chief Data Officer
- VP, Information Security
- Chief Compliance Officer
- Senior Cyber Security CIO SME
- Regional Chief Information Officer
OhPhish
About OhPhish
OhPhish is a great way for CCISOs to jumpstart the security awareness programs at their companies at no cost. OhPhish is a simple and user-friendly solution for driving phishing simulations and online trainings. Launching phishing simulations is made easy through pre-existing phishing templates and connectors for authoritative identity repositories (like Active Directory). The solution not only sends customized emails and campaigns, but also tracks responses and actions (like clicking links or opening attachments) in real time, giving trends as well as detailed reports by user, department, or other key demographics.
Why CCISO?
The CCISO Certification is an industry-leading program that recognizes the real-world experience necessary to succeed at the highest executive levels of information security. Bringing together all the components required for a C-Level positions, the CCISO program combines audit management, governance, IS controls, human capital management, strategic program development, and the financial expertise vital to leading a highly successful IS program. The job of the CISO is far too important to be learned by trial and error. Executive level management skills are not areas that should be learned on the job.
Material in the CCISO Program assumes a high-level understanding of technical topics and doesn't spend much time on strictly technical information, but rather on the application of technical knowledge to an information security executive's day-to-day work. The CCISO aims to bridge the gap between the executive management knowledge that CISOs need and the technical knowledge that many sitting and aspiring CISOs have. This can be a crucial gap as a practitioner endeavors to move from mid-management to upper, executive management roles. Much of this is traditionally learned as on the job training, but the CCISO Training Program can be the key to a successful transition to the highest ranks of information security management.
About the Exam
There are three cognitive levels tested on the CCISO exam but only two tested on the EISM exam:
Level 1 - Knowledge: This cognitive level of questions is used to recall memorized facts. This is the most basic cognitive level rarely accepted on certifications as it merely recognizes the candidate's ability to memorize information. It can be effectively used when asking for basic definitions, standards or any concrete fact. This level appears on both the CCISO and EISM exam.
Level 2 - Application: This cognitive level of questions is used to identify the candidate's ability to understand the application of a given concept. It differs from Knowledge based questions in the sense that it requires the understanding and correct applicability of a given concept - not just the concept itself. This type of question often quires additional context before the actual question is provided in the stem. This level appears on both the CCISO and EISM exam.
Level 3 - Analysis: This cognitive level of questions is used to identify the candidate's ability to identify and resolve a problem given a series of variables and context. Analysis questions differ greatly from Application based questions in the sense that they require not only the applicability of a concept but also how a concept, given certain constrain can be used to solve a problem. This level appears on the CCISO and not on the EISM exam.
Passing Score
In order to maintain the high integrity of our certifications exams, EC-Council Exams are provided in multiple forms (I.e. different question banks). Each form is carefully analyzed through beta testing with an appropriate sample group under the purview of a committee of subject matter experts that ensure that each of our exams not only has academic rigor but also has "real world" applicability. We also have a process to determine the difficulty rating of each question. The individual rating then contributes to an overall "Cut Score" for each exam form. To ensure each form has equal assessment standards, cut scores are set on a "per exam form" basis. Depending on which exam form is challenged, cut scores can range from 60% to 78%.
Exam Details
Number of Questions: 150
Test Duration: 2.5 Hours
Test Format: Multiple Choice
Test Delivery: ECC Exam Portal
Categories: ec-council-ilearn service product