7/29/2019 HISP_DataSheet

1/2

raising standards worldwide

HISP Holistic Inormation Security Practitioner

HOLISTIC INFORMATION

SECURITY PRACTITIONER (HISP)BSI provides training and certifcation services or HISPThe Holistic Inormation Security

Practitioner (HISP) Training &

Certifcation program was created

to address the current shortage o

inormation security and compliance

proessionals. It provides practical skills

needed to help organizations address

inormation security and compliancerequirements by being able to

implement compliance rameworks that

are repeatable, sustainable and eective.

We are not looking to position the

HISP certifcation to replace existing

certifcations such as CISSP, CISA, CISM,

CFA, but rather we are looking to

complement such certifcations and also

oer CPEs or proessionals who already

hold such designations.

The HISP designation means that:

1) The proessional has a good

grounding in international best

practices or inormation security &

audit governance as well as general

IT governance (i.e. ISO 27002, ITIL,

CobiT and COSO).

2) The proessional takes a holistic

risk management approach to

inormation security.

3) The proessional is a hybrid inormation

security proessional, well balanced

between technical and business skills.

4) The proessional can unction

eectively in the capacity o a CISO

and CCO by tackling the challenge

o inormation security as a business

concern that is not solved by

technology alone, but by people,

process and technology.

5) The proessional is able to map

international best practices o

IS0 27002, ITIL, CobiT and COSO

to current and uture regulatory

compliance requirements.

The HISP designation is earned by

completing the ollowing steps:

Level 1

1) Attend the 5-day HISP Certifcation

course

2) Pass a certifcation exam, administered

on the fnal day o the course

Level 2

1) Write a Thesis

or

2) Use the eFortresses Compliantz tool

on one or two live projects

HOLISTIC APPROACH

Information provided by eFortresse

ISO1799/27001

ITIL/ISO200000

COBIT&COSO

HISP

HISP: Holistic Information Security Practitioner

SOX

SAS 70

NIST 800-53(FIPS 200)

PCI

FACT ActState

PrivacyLaws

HIPAAGLB

7/29/2019 HISP_DataSheet

2/2

BSI Group: Standards Inormation Training Inspection Testing Assessment Certiication

The BSI certifcation mark can be used on your stationery, literature

and vehicles when you have successully achieved certifcation.

How can we help?

Assessment and Certifcation

We are an accredited body, which ensures

that we look at your management system

rom an independent angle. Our highly

trained Client Managers will use their

industry knowledge to help you get the

best out o HISP.

Training

BSI, in conjunction with eFortresses, is

pleased to oer the Holistic Inormation

Security Practitioner (HISP) Certifcation

Course. Participants can claim 35

CPE credits (Continuing Proessional

Eduction) ater completing the course.

Our network o public and onsite

training can help you at ever stage o

the certifcation process.

For urther inormation on BSIs

Holistic Inormation Security

Practitioner training, visit:

www.bsiamericas.com/hisp

BSI SERVICES SUMMARY

Inormation and guidance

Standards and publications

Customer events

Training understanding, implementing, auditor

Management systems gap analysis, second party audits,assessment, certifcation, continual assessment

Business improvement tools

BSI Management Systems12110 Sunset Hills Road, Suite 200Reston, VA 20190-5902USA

Tel: 1 800 862 4977Fax: 1 703 437 9001Email: inquiry.msamericas@bsi-global.comwww.bsiamericas.com

BSI Management Systems Canada6205 Airport Road, Suite 102Mississauga, ONL4V 1E1

CanadaTel: 1 800 862 6752Fax: 416 620 9911Email: inquiry.canada@bsi-global.com

The matrix below illustrates how the HISP Curriculum encompasses domains ound in CISSP, CISM and CISA:

Domains CISSP CISM CISA HISP

Access Control Systems and Methodology Y Y Y

Applications and Systems Development Security Y Y

Business Continuity Planning (BCP) and Disaster Recovery Planning (DRP) Y Y Y

Cryptography Y Y - Partially

IS Audit Process Y Y - PartiallyInormation Security Program Management Y Y

Inormation Security Governance Y Y Y

IT Governance Y Y - Partially

IT Service Delivery and Support Y Y - Partially

Law, Investigation and Ethics Y Y

Operations Security Y Y

Physical Security Y Y

Protection o Inormation Assets Y Y

Response Management Y Y

Risk Management Y Y

Security Architecture and Models Y Y - Partially

Security Management Practices Y Y Y

Systems and Inrastructure Liecycle Management Y YTelecommunications and Network Security Y Y