Difference between ISO 27001 certification and CISSP
Assign topic to the user
Answer:
I suppose that you mean Certified Information Systems Security Professional (CISSP). Basically, CISSP is developed specifically for the qualification of professionals in information security. However the philosophy of ISO 27001 is different because is not developed for the qualification of professionals, is developed for the certification of companies. Basically ISO 27001 is an International Standard that has requisites for the establishment of an Information Security Management System, and there are companies in all the world that implement these requisites to obtain the ISO 27001 certificate.
And there are many entities that offers a ISO 27001 Lead Auditor certification or ISO 27001 Lead Implementer certification for people that is interested in implement or audit ISO 27001, but as you know it is different from CISSP.
Anyway, the knowledge that you need to obtain CISSP generally is more technical, because ISO 27001 is rela ted to the management of the information security and there are things not only related to IT.
These articles can be interesting for you :
“Qualifications for an ISO 27001 Internal Auditor” : https://advisera.com/27001academy/blog/2015/03/30/qualifications-for-an-iso-27001-internal-auditor/
“How to become an ISO 27001 / ISO 22301 consultant” : https://advisera.com/27001academy/blog/2014/07/21/how-to-become-an-iso-27001-iso-22301-consultant/
“How to become ISO 27001 Lead Auditor” : https://advisera.com/27001academy/knowledgebase/how-to-become-iso-27001-lead-auditor/
Finally, maybe our online course can be also interesting for you “ISO 27001:2013 Foundations Course” : https://advisera.com/training/iso-27001-foundations-course/
Comment as guest or Sign in
Feb 10, 2016