The Holistic Information Security Practitioner (HISP) Training & Certification program was created to address the current shortage of Information Security and Compliance professionals, with practical skills needed to help organizations address Information Security and Compliance requirements, by being able to implement Compliance frameworks that are repeatable, sustainable and effective.

We are not looking to position the HISP certification to replace existing certifications such as CISSP, CISA, CISM, CFA, but rather we are looking to complement such certifications and also offer CPEs for professionals who already hold such designations.

The HISP designation means that:

1. The professional has a good grounding in International best practices for Information Security & Audit Governance as well as general IT Governance i.e. ISO 27002, ISO 27001, ITIL, CobiT and COSO.
2. The professional takes a Holistic risk management approach to Information Security.
3. The professional is a hybrid Information Security professional, well balanced between technical and business skills.
4. The professional can function effectively in the capacity of a CISO, CCO by tackling the challenge of Information Security as a business concern that is not solved by technology alone, but by People, Process and Technology.
5. The professional is able to map International best practices of IS0 27002, ISO 27001, ITIL, CobiT and COSO to current and future regulatory compliance requirements.

The HISP designation is earned by completing the following steps:

Level 1 (Training track)

• Attend the 5-day HISP Certification Course - public, private onsite or web-based.
• Pass a certification exam, administered on the final day of a Course.

or

Level 1 (Pre-requisite track)

• Register for one of the certification exams hosted by HISPI
• Pass a certification exam, administered by HISPI.
• Provide evidence to HISPI that you currently possess one or more of the following certifications and that you are in good standing with their Certifying bodies:
• CISSP
• CISA
• CISM

Level 2

• Master HISP (MHISP)
• Please click here to view the course outline

For additional information regarding the HISP training program, including latest course outlines, public class calendar etc, please visit the authorized training center sites listed below.

The matrix below illustrates how the HISP Curriculum encompasses domains found in CISSP, CISM and CISA:

Currently, there are a limited number of companies that are authorized to deliver the HISP Certification Course. The authorized training center program is currently being managed by eFortresses, Inc the author of the HISP Certification Courseware.

• eFortresses, Inc (Courseware Author)
• BSI Management Systems, Reston, Virginia
• BSI Management Systems, Toronto, Canada
• Besecure, Athens, Greece
• Advanced Server Management Group, Inc. (ASMGi)
• Information Technology Security Training & Solutions ("I(TS)2"), Riyadh, Saudi Arabia
• LiquidNexxus, London, UK

Please click here on policy on how to become a authorized HISP trainer