GICSP
GIAC Global Industrial Security Professional
Created per CertMap methodology · Updated 12 May 2026 · About the editorial team →
▾ Jump to …4 sections
Overview
What is GICSP?
The GICSP is the leading certification for cybersecurity in industrial control systems (ICS) and OT environments, developed in collaboration with industry partners. It specifically targets professionals at the intersection of IT and Operational Technology – individuals who must secure SCADA, PLCs, or critical infrastructure. The exam is open-book, consistent with GIAC's principle: apply knowledge rather than memorize. Without prior knowledge of OT systems, the material is challenging; the associated SANS training (ICS410) is expensive but very high-quality. For government agencies, energy providers, and industrial companies, this certification is often explicitly required.
Quick facts
Key details
Cost, prerequisites, exam & renewal
Cost over 5 years
Prerequisites
No formal prerequisites. Associated SANS course strongly recommended.
Exam format
82 questions + CyberLive, 3 hours, Open-Book, Proctored via Pearson VUE. Passing score: 71%.
Renewal & maintenance
Valid for 4 years. Renewal via 36 CPE credits or renewal exam ($479 USD). Each GIAC cert separate.
Classification
CertMap score and matching roles
Rating
Matching NICE roles
Mapping from NIST NICE Framework SP 800-181, status 2025. NIST source ↗
More certifications
More certifications
This page follows CertMap methodology: editorial content is curated by hand. Score, costs and NICE mapping are aggregated from official provider documents. Score methodology → · TCO methodology →
Transparency: CertMap is operated by Daniel Thomas Heessel, who is also managing director of Threat‑Informed, a company specialising in Threat‑Informed Defense. He additionally offers consulting services on CertMap. CertMap currently receives no commissions from certification providers, no affiliate links, no sponsored placements. Podcast and interview guests are not paid for appearances and receive no affiliate commissions.
From the knowledge base
View all articles →About the CertMap editorial team
CertMap is an independent platform for comparing cybersecurity certifications, built on data-journalism standards that combine editorial curation with mechanical aggregation.
Certification vs. Certificate: What's the Difference?
Personnel certification per ISO/IEC 17024 versus a training certificate. Why the distinction matters.
BSI IT-Grundschutz: Practitioners, Advisors, and the Accreditation Question
What distinguishes Practitioner from Advisor, and where does accreditation sit in the BSI path?
1:1 with the CISO
Need the full picture for your case?
60 minutes of personal strategy instead of weeks of self-research. Vendor-independent, with a written report.