CAISP

Certified AI Security Professional

Practical DevSecOpsSpecialty certificateAI Security

Created per CertMap methodology · Updated 1 June 2026 · About the editorial team →

▾ Jump to …4 sections

Overview

What is CAISP?

CAISP from Practical DevSecOps is a hands-on certification for AI security across the full lifecycle, from threat modeling through LLM vulnerabilities to pipeline and supply chain hardening. The exam is practical: five challenges in six hours plus 24 hours for the report. It covers the OWASP LLM Top 10, MITRE ATLAS, STRIDE threat modeling, model signing and SBOMs, as well as the governance frameworks NIST AI RMF, ISO/IEC 42001, and the EU AI Act. Strength: a real practical exam instead of multiple choice, and a broad, current curriculum. Limitation: the provider is considerably smaller than GIAC or ISACA, so market recognition is still a niche. The certification is a lifetime credential with no recertification, which weakens currency assurance.

Suitable for

Security Engineers and AppSec Specialists

DevSecOps Engineers

AI Red Teamers and Penetration Testers

Cybersecurity Engineers with AI focus

Quick facts

Languagesen

RecognitionGlobal

TagsAI · LLM · Hands-on · DevSecOps

Key details

Cost, prerequisites, exam & renewal

Cost over 5 years

Exam fee (acquisition)€1,103

5-year total€1,103

How is TCO calculated? →

Classification

CertMap score and matching roles

Rating

Market recognition1 / 31 / 3

Scheme quality2 / 32 / 3

Practice evidence2 / 32 / 3

Maintenance0 / 30 / 3

Matching NICE roles

Design and DevelopCybersecurity Architecture

Oversee and GovernSystems Security Management

Design and DevelopSecure Systems Development

Protect and DefendDefensive Cybersecurity

Mapping from NIST NICE Framework SP 800-181, status 2025. NIST source ↗

More certifications

In AI Security

AAIAISACA AAIRISACA AAISMISACA AIGPIAPP CAIPCertNexus GAIPSGIAC GASAEGIAC GOAAGIAC OSAI+OffSec PECB 42001FPECB PECB 42001LIPECB PECB 42001SLIPECB PECB LAIRMPECB SecAI+CompTIA

This page follows CertMap methodology: editorial content is curated by hand. Score, costs and NICE mapping are aggregated from official provider documents. Score methodology → · TCO methodology →

Transparency: CertMap is operated by Daniel Thomas Heessel, who is also managing director of Threat‑Informed, a company specialising in Threat‑Informed Defense. CertMap currently receives no commissions from certification providers, no affiliate links, no sponsored placements. Podcast and interview guests are not paid for appearances and receive no affiliate commissions.

From the knowledge base

View all articles →

Deep Dive

Nobody is an AI security expert yet.

Which path fits your background, and the certifications that actually count. Three ways into a field where nobody has a ten-year head start.

7 min read

Methodology

About the CertMap editorial team

CertMap is an independent platform for comparing cybersecurity certifications, built on data-journalism standards that combine editorial curation with mechanical aggregation.

3 min read

Fundamentals