SSCP

(ISC)2 Systems Security Certified Practitioner

ISC2Personnel certification (ISO 17024)GRC

Created per CertMap methodology · Updated 12 May 2026 · About the editorial team →

▾ Jump to …4 sections

Overview

What is SSCP?

The SSCP is ISC2's entry-level certification below the CISSP and targets technically active security professionals with initial work experience. Since October 2025, the exam uses Computerized Adaptive Testing (CAT), which customizes the exam experience individually and increases integrity. The SSCP covers seven technical domains, from access control through cryptography to network security, and positions itself as practical proof of operational security competence. It is less well-known than Security+ or GSEC, but benefits from ISC2's strong brand and serves well as an intermediate step toward the CISSP. The effort for annual certification maintenance (AMF + CPEs) is moderate.

Quick facts

AccreditationISO/IEC 17024 by ANAB

Languagesen · de · ja · ko · pt

RecognitionGlobal

Key details

Cost, prerequisites, exam & renewal

Cost over 5 years

Exam fee (acquisition)€229

AMF (5 years)€575

CPE time value (5 years)€8,000

5-year total€8,804

CPE effort: 20 h per year · 100 h over 5 years · Valued at 80 €/h.

How is TCO calculated? →

Classification

CertMap score and matching roles

Rating

Market recognition1 / 31 / 3

Scheme quality3 / 33 / 3

Practice evidence1 / 31 / 3

Maintenance3 / 33 / 3

Matching NICE roles

Systems Security Management Security Control Assessment Secure Software Development Secure Systems Development Software Security Assessment Systems Requirements Planning Systems Testing and Evaluation Digital Evidence Analysis Data Analysis Database Administration

Mapping from NIST NICE Framework SP 800-181, status 2025. NIST source ↗

This page follows CertMap methodology: editorial content is curated by hand. Score, costs and NICE mapping are aggregated from official provider documents. Score methodology → · TCO methodology →

Transparency: CertMap is operated by Daniel Thomas Heessel, who is also managing director of Threat‑Informed, a company specialising in Threat‑Informed Defense. He additionally offers consulting services on CertMap. CertMap currently receives no commissions from certification providers, no affiliate links, no sponsored placements. Podcast and interview guests are not paid for appearances and receive no affiliate commissions.

From the knowledge base

View all articles →

Methodology

About the CertMap editorial team

CertMap is an independent platform for comparing cybersecurity certifications, built on data-journalism standards that combine editorial curation with mechanical aggregation.

3 min read

Fundamentals