Certified Secure Software Lifecycle Professional (CSSLP) Domain Refresh FAQ
Why are changes being made to the Certified Secure Software Lifecycle Professional (CSSLP) exam?
(ISC)² has an obligation to its membership to maintain the relevancy of its credentials. These enhancements are the result of a rigorous, methodical process that (ISC)²: follows to routinely update its credential exams. This process ensures that the examinations and subsequent continuing professional education requirements encompass the topic areas relevant to the roles and responsibilities of today’s practicing software development professional.
How is the CSSLP exam changing?
This certification is geared towards software development and security professionals responsible for applying best practices to each phase of the SDLC – from software design and implementation to testing and deployment. As a result of the content refresh, we have updated some of the domain names to describe the topics accurately. For details on the exam domain and subdomain changes, review the (ISC)² CSSLP Domain Refresh guide. As a result of the content refresh, some of the domain names have been updated to describe the topics accurately. The weights for the domains are also changing.
Why do domains for (ISC)² credential exams change?
Domains change because it is a reflection of a change in the knowledge, skills and abilities, as indicated by experts through the Job Task Analysis process.
When will these changes go into effect?
The changes will begin on September 15, 2020.
In what language will the refreshed CSSLP exam be available?
The refreshed CSSLP exam will be available in English only.
Will this change the number of questions or the time required to take the CSSLP exam?
The CSSLP exam will now have 125 items, and the exam time has been changed from four to three hours. A passing grade remains 700 out of 1,000.
If I have been studying for the CSSLP exam with material that focuses on the current domains, will I be sufficiently prepared to take the new exam without additional study?
(ISC)² exams are experience-based that include experience-based questions that cannot be learned by studying alone. If you already have the experience in the domains covered in CSSLP and believe that you have sufficiently studied those domains, you should feel confident that you are qualified to take the new exam and pass it. (ISC)² cannot guarantee you will pass the exam.
Do these updates affect the experience requirement for the CSSLP?
No. For the CSSLP, a candidate is required to have a minimum of four years cumulative work experience in one or more of the eight domains of the CSSLP CBK.
Keep ahead with a Training Seminar that uses the new, refreshed CSSLP courseware
As official partners of (ISC)², Cycubix has exclusive access to the new and refreshed CSSLP classroom materials. Benefit from the most up-to-date CSSLP content by registering for our next Official (ISC)² Certified Secure Software Lifecycle Professional (CSSLP) CBK Training Seminar .
The CSSLP Domain Refresh FAQ content was originally posted on the (ISC)² website
Learn more about our official (ISC)² CSSLP training
In addition, we offer custom cybersecurity training, security awareness training, corporate cybersecurity training, cybersecurity consultancy to ensure we adapt to your company’s specific needs. Discover all our cyber security trainings and online cyber security trainings available at Cycubix