Download - HISP_DataSheet
-
7/29/2019 HISP_DataSheet
1/2
raising standards worldwide
HISP Holistic Inormation Security Practitioner
HOLISTIC INFORMATION
SECURITY PRACTITIONER (HISP)BSI provides training and certifcation services or HISPThe Holistic Inormation Security
Practitioner (HISP) Training &
Certifcation program was created
to address the current shortage o
inormation security and compliance
proessionals. It provides practical skills
needed to help organizations address
inormation security and compliancerequirements by being able to
implement compliance rameworks that
are repeatable, sustainable and eective.
We are not looking to position the
HISP certifcation to replace existing
certifcations such as CISSP, CISA, CISM,
CFA, but rather we are looking to
complement such certifcations and also
oer CPEs or proessionals who already
hold such designations.
The HISP designation means that:
1) The proessional has a good
grounding in international best
practices or inormation security &
audit governance as well as general
IT governance (i.e. ISO 27002, ITIL,
CobiT and COSO).
2) The proessional takes a holistic
risk management approach to
inormation security.
3) The proessional is a hybrid inormation
security proessional, well balanced
between technical and business skills.
4) The proessional can unction
eectively in the capacity o a CISO
and CCO by tackling the challenge
o inormation security as a business
concern that is not solved by
technology alone, but by people,
process and technology.
5) The proessional is able to map
international best practices o
IS0 27002, ITIL, CobiT and COSO
to current and uture regulatory
compliance requirements.
The HISP designation is earned by
completing the ollowing steps:
Level 1
1) Attend the 5-day HISP Certifcation
course
2) Pass a certifcation exam, administered
on the fnal day o the course
Level 2
1) Write a Thesis
or
2) Use the eFortresses Compliantz tool
on one or two live projects
HOLISTIC APPROACH
Information provided by eFortresse
ISO1799/27001
ITIL/ISO200000
COBIT&COSO
HISP
HISP: Holistic Information Security Practitioner
SOX
SAS 70
NIST 800-53(FIPS 200)
PCI
FACT ActState
PrivacyLaws
HIPAAGLB
-
7/29/2019 HISP_DataSheet
2/2
BSI Group: Standards Inormation Training Inspection Testing Assessment Certiication
The BSI certifcation mark can be used on your stationery, literature
and vehicles when you have successully achieved certifcation.
How can we help?
Assessment and Certifcation
We are an accredited body, which ensures
that we look at your management system
rom an independent angle. Our highly
trained Client Managers will use their
industry knowledge to help you get the
best out o HISP.
Training
BSI, in conjunction with eFortresses, is
pleased to oer the Holistic Inormation
Security Practitioner (HISP) Certifcation
Course. Participants can claim 35
CPE credits (Continuing Proessional
Eduction) ater completing the course.
Our network o public and onsite
training can help you at ever stage o
the certifcation process.
For urther inormation on BSIs
Holistic Inormation Security
Practitioner training, visit:
www.bsiamericas.com/hisp
BSI SERVICES SUMMARY
Inormation and guidance
Standards and publications
Customer events
Training understanding, implementing, auditor
Management systems gap analysis, second party audits,assessment, certifcation, continual assessment
Business improvement tools
BSI Management Systems12110 Sunset Hills Road, Suite 200Reston, VA 20190-5902USA
Tel: 1 800 862 4977Fax: 1 703 437 9001Email: [email protected]
BSI Management Systems Canada6205 Airport Road, Suite 102Mississauga, ONL4V 1E1
CanadaTel: 1 800 862 6752Fax: 416 620 9911Email: [email protected]
The matrix below illustrates how the HISP Curriculum encompasses domains ound in CISSP, CISM and CISA:
Domains CISSP CISM CISA HISP
Access Control Systems and Methodology Y Y Y
Applications and Systems Development Security Y Y
Business Continuity Planning (BCP) and Disaster Recovery Planning (DRP) Y Y Y
Cryptography Y Y - Partially
IS Audit Process Y Y - PartiallyInormation Security Program Management Y Y
Inormation Security Governance Y Y Y
IT Governance Y Y - Partially
IT Service Delivery and Support Y Y - Partially
Law, Investigation and Ethics Y Y
Operations Security Y Y
Physical Security Y Y
Protection o Inormation Assets Y Y
Response Management Y Y
Risk Management Y Y
Security Architecture and Models Y Y - Partially
Security Management Practices Y Y Y
Systems and Inrastructure Liecycle Management Y YTelecommunications and Network Security Y Y