Help Shape The CSSLP Exam

[ This article was originally published here ]

(ISC)² regularly conducts Job Task Analysis (JTA) studies to review and update the content outline (or exam blueprint) of its credentialing examinations.  A JTA is the methodical process used to determine tasks that are performed by credential holders and knowledge and skills required to perform those tasks successfully. Results of the JTA study link a candidate’s examination score directly to the domain knowledge being tested.

A JTA Study Workshop for CSSLP has tentatively been scheduled in early February 2022.  In preparation for the upcoming study, we would like to hear from our CSSLP members in good standing. Please comment on the new and emerging secure software lifecycle development issues that you feel should be addressed in the CSSLP exam. This is your opportunity to shape the content of the CSSLP exam. Thank you in advance for taking the time to share your feedback and experiences – it will help us to ensure the CSSLP certification continues to meet the needs of an ever- evolving software industry.

In preparation, please review the existing CSSLP Exam Outline. 

(ISC)² would appreciate you reviewing this Outline and answering the following questions:

  1. Do you believe that current CSSLP exam outline adequately covers the existing and emerging cyber security techniques and threats CSSLP practitioners are facing in their jobs today?
  1. If not, what sort of topics/content must be added to the Exam Outline so that it reflects the changing face of today’s cyber security field for certified secure software lifecycle professionals?

Also, please let us know if any important Tasks, Knowledge, and Skills are not covered by the current CSSLP Outline.

Send your comments by January 28th to If you're an (ISC)² member, please include your ID # in your email. Your comments will be compiled and presented to the JTA Committee for further review.

Thank you for your invaluable insights and help.