CISSP – Certified Information Systems Security Professional

Industry-recognized as the management-tier security cert. Required for many CISO and senior security architect roles. 5-year experience requirement keeps the bar high. Significant salary bump reported (median $20–40k uplift in U.S. data).

Notorious as a difficult exam. CAT (computer adaptive) format, 100–150 questions, can fail you in 100 questions if confidence is low. Pete Zerger CCSP/CISSP videos + Destination Cert + 11th Hour book named as standard 2024 prep.

Worth it primarily for the HR signal. Actual technical content is broad-but-shallow ("a mile wide and an inch deep" — frequent quote). Practitioners report learning more from OSCP / SANS GIAC if technical depth is the goal.

Total cost is a sticking point: $749 exam + ~$50/yr AMF + endorsement requirement. Some find the renewal grind (120 CPEs over 3 years) worse than the exam itself. Still, the credential opens C-suite-adjacent doors.

Studying for CISSP forces you to learn the regulatory/compliance side of security (GDPR, HIPAA, SOX) most engineers ignore. Even if you don't pass, the prep itself is widely regarded as valuable for senior-track careers.