Certified Information Systems Security Examiner


Download the brochure
 
CISSE

Description

In an era of pervasive digitization and widespread automation, information systems security auditing is no longer the exclusive domain of IT specialists. The rising stakes of this type of engagement require the entire audit team to rigorously assess cyber-risk control and the robustness of the ISMS. The CISSE – Certified Information Systems Security Auditor meets this need by demystifying InfoSec auditing and equipping both IT auditors and non-technical professionals with the competencies required to assess, test, and report on the actual level of risk control.

In other words, CISSE is an InfoSec-audit–oriented certification that is accessible to non-technical profiles while remaining technically rigorous. It equips you to plan and execute end-to-end InfoSec audits in accordance with ISO 19011 (risk-based approach), aligned with globally recognized best practices in information security auditing.

By the end of the program, you will be able to translate requirements and controls (organizational, human, physical, technical, operational) into concrete audit tests, gather robust evidence, evaluate control effectiveness, and produce relevant, actionable recommendations.

Submit Your Application

Why Choose CISSE ?

Digitization and regulatory pressure have created a shortage of competent InfoSec auditors. CISSE positions you as a rare, sought-after profile—able to rigorously assess cyber risk and the robustness of an ISMS, whether or not you come from an IT background.

You master the essentials that matter in an InfoSec audit: network security, security policies & procedures, security management practices, risk and control assessment, incident response management, etc. — knowledge you can apply on day one in the field.

You can identify and mitigate risks, protect critical assets, and uphold Confidentiality, Integrity, and Availability (CIA). Your audits lead to measurable recommendations that strengthen resilience.

CISSE boosts your credibility and visibility, recognizing you as a trusted reference in information security auditing. Your certified status is instantly verifiable online with a single click.

What You Will Learn

Plan risk-based IS audits

Translate requirements into tests and collect evidence

Assess governance and the ISMS

Assess technical controls and the digital environment

Assess the human factor and risk culture

Assess business continuity and security incident management

Why Getting Certified?

In today’s highly competitive professional environment, earning a recognized certification is no longer a luxury—it is a strategic career move. Getting certified means

Officially validating your skills

a certification demonstrates your mastery of a field according to recognized standards.

Boosting your employability

recruiters favor certified candidates who can be immediately operational and credible.

Standing out in a crowded market

among similar profiles, certification instantly positions you as a qualified expert.

Strengthening your professional credibility

with colleagues, employers, clients, and partners, certification builds trust.

Supporting career advancement

certification opens doors to higher-responsibility positions and international opportunities.

Investing in personal growth

: beyond technical skills, certification builds confidence and motivation to excel.

Adding value to your organization

certified professionals help improve overall performance and establish best practices.

Eligibility Criteria

CISSE – Certified Information Systems Security Examiner is open only to candidates who meet the following requirements:

Academic Level: hold at least a Bachelor’s degree (or equivalent) in auditing, information technology, information systems security, networking/telecom, risk management, compliance, or a related field.

  • Professional Experience: have a minimum of two (2) years of professional experience in risk management, compliance, internal audit, or any other control and assessment function.
  • Commitment to GECB Principles: adhere to the GECB Code of Ethics, fully comply with exam rules, and commit to continuing professional education (CPE) in accordance with GECB policies.
Submit Your Application

Program Overview

The CHRM – Certified Human Resource Manager program is structured into 7 key competencies, covering the strategic and managerial dimensions required to transform HR into a driver of governance and organizational performance.

Domain 1 — InfoSec Audit Fundamentals

You will learn to frame an audit (objectives, scope, criteria), ask the right questions, and record reliable evidence in a clear, structured way.

Domain 2 — Risk-Based Planning

You will learn to focus on what matters most: set priorities, build a simple audit plan and calendar, and decide what to check first based on risk.

Domain 3 — Audit Tools & Techniques

You will learn to run interviews, review documents, observe processes on site, and capture findings supported by verifiable facts.

Domain 4 — Governance & ISMS Audit

You will learn to check whether security is organized and steered: written rules, clear roles, measurable objectives, and management follow-up over time.

Domain 5 — People Security & Culture

You will learn to verify that people have the right access, that joiners/movers/leavers are handled properly, and that awareness actually reduces risky behavior.

Domain 6 — Physical & Environmental Security

You will learn to assess how sites and equipment are protected: access to sensitive areas, visitor handling, server-room safeguards, and safe destruction of paper and media.

Domain 7 — Technical Controls & Cybersecurity

You will learn to confirm that essential digital protections work: access management, updates, workstation/server protections, and useful logging for incident review.

Domain 8 — Applications, Data & Cloud

You will learn to judge whether software is built and tested safely, sensitive data is identified and protected, and cloud use has clear responsibilities.

Domain 9 — Security Operations, Incidents & Resilience

You will learn to evaluate the ability to detect problems, respond quickly, communicate, recover to normal, and keep the business running through plans and regular exercises.

Certification Toolkit

499 USD

With your enrollment in CISSE – Certified Information Systems Security Examiner, you gain access to a comprehensive suite of learning and professional tools designed by GECB to ensure your success:

  • CISSE Reference Manual: a structured guide to plan and conduct end-to-end information security audits.
  • CISSE MCQ Practice Bank: unlimited access to an exclusive bank of 1,500+ professional-grade questions aligned with the program’s 9 modules, to test your knowledge and build mastery.
  • Online Learning Tools: study at your own pace on the GECB practice platform, with progress tracking, regular updates, and 24/7 access.
  • Final Online Exam: take your remotely proctored CISSE exam online, securely, from the location of your choice—available on demand.
  • Instant Results & Digital Certificate: upon passing, receive an official, verifiable digital certificate, immediately shareable on LinkedIn, your résumé, and with employers.
  • 3-Year Certification Validity: the CISSE credential is valid for three (3) years, with unlimited renewal based on continuing education and active membership in the GECB certified community.

Submit Your Application
 

What They Say About Us

Deepak M, Senior IT Risk Manager
The CISSO program provided me with the tools to effectively analyze and mitigate complex cyber security risks. The comprehensive curriculum and practical case studies prepared me to handle the dynamic challenges of today’s information security issues. I'm now leading the IS security team at my firm, thanks to these advanced skills."
Gordon A, Cyber security Strategist
The CISSO certification has been pivotal in mastering the modern challenges of information systems security and cyber security. The modules on Cloud Computing Security and e Security of connected objects (IoT) equipped me with cutting-edge methods to safeguard my organization’s sensitive IT assets
Rajesh G, Senior Risk Analyst
The CISSO program provided me with an in-depth understanding of various aspects of information security risks, best practices and methodologies. The recognition that comes with being a certified information systems security officer has enhanced my professional standing and made me a trusted advisor within my organization
Mario T, Credit Risk Specialist
The CISSO program covers all critical aspects of information systems security risks, from network security, application security to Security in remote work environments. This comprehensive learning experience has empowered me to handle diverse risk challenges with confidence and precision. I highly recommend
Eric G, Director of Cyber security Risk Management
Earning the CISSO certification has allowed me to contribute more strategically to my organization’s IS risk management practices. The advanced knowledge and skills gained have been pivotal in implementing effective IS risk mitigation strategies and enhancing our overall cybersecurity risk posture. Thanks to GECB team

Information Systems Security Office

Information Systems Security Office">

Certified Risk-Based Internal Auditor

Certified Manager of Internal Audit

Certified Manager of Internal Audit">

CISSE Certification Exam

The CISSE exam is conducted online and remotely proctored.

Use a laptop equipped with a webcam and a reliable internet connection

Take your exam from anywhere by selecting a convenient date within the official GECB exam windows.

Get your results instantly upon completion.

Receive your premium digital certificate and share your achievement immediately.

Verify the authenticity of your certification anytime online.

Enjoy certified status for 3 years with no additional renewal fees.

Format

Multiple Choice Questions (MCQ)

Languages available

English, French, Spanish

Number of questions

100

Exam duration

120 minutes

Passing score

70%
Last modified: Saturday, 27 September 2025, 1:38 PM