The Holistic Information Security Practitioner (HISP) Training & Certification program was created to address the current shortage of Information Security and Compliance professionals, with practical skills needed to help organizations address Information Security and Compliance requirements, by being able to Implement Compliance frameworks that are repeatable, sustainable and effective.We are not looking to position the HISP certification to replace existing certifications such as CISSP, CISA, CISM, CFA, but rather we are looking to complement such certifications and also offer CPEs for professionals who already hold such designations.

The HISP designation means that:

• The professional has a good grounding in International best practices for Information Security & Audit Governance as well as general IT Governance i.e. ISO/IEC 27002, ITIL, CobiT and COSO.
• The professional takes a Holistic risk management approach to Information Security.
• The professional is a hybrid Information Security professional, well balanced between technical and business skills.
• The professional can function effectively in the capacity of a CISO, CCO by tackling the challenge of Information Security as a business concern that is not solved by technology alone, but by People, Process and Technology.
• The professional is able to map International best practices of ISO/IEC 27002, ITIL, CobiT and COSO to current and future regulatory compliance requirements.

The HISP designation is earned by completing the following steps:

Level 1

• Attend the 5-day HISP Certification Course
• Pass the HISP certification exam, administered on the final day of the Course, on behalf of the HISP Institute

Level 2

• Write a Thesis

The Matrix below illustrates how the HISP Curriculum encompasses domains found in CISSP, CISM and CISA: