ITTA offers the Certified Information Systems Security Professional (CISSP), a widely used tool certification for information security architects and managers. The course covers the 8 Common Body of Knowledge (CBK) domains: security and risk management, asset security, security architecture and engineering, communication and network security, identity and access management, security assessment and testing, security operations, software development security. Delivered in Geneva, Lausanne and interactive virtual classroom by working CISSPs in the Swiss industry.
FILTER BY
- Domains
- Editors
- Location
- Format
- Level
- Certifying
- Confirmed training
This course is the most comprehensive review of information security concepts and industry best practices, and covers the eight domains of the official CISSP CBK.
Certifying
Ask any security manager at a Geneva bank, a Vaud insurer, an international organisation in Geneva, or a large Swiss hospital which security certification carries authority with their executive committee: the answer is almost always the same. The Certified Information Systems Security Professional, better known as CISSP, has become over four decades the de facto standard for information security architects and managers. Issued by ISC2, a US-based non-profit specialising in cybersecurity certifications, CISSP attests to transverse coverage of information security, from governance to technical, from legal to operational.
In French-speaking Switzerland, this certification appears regularly in job offers for Chief Information Security Officer (CISO), security manager, security architect or cybersecurity consultant. Its international recognition also makes it an asset for Swiss profiles working in multinational environments or applying to Geneva-based international organisations.
CISSP content is structured around eight Common Body of Knowledge (CBK) domains, kept up to date by ISC2 to reflect current cybersecurity issues.
Our CISSP training in the ITTA catalogue:
The CISSP course at ITTA is designed as a complete exam preparation but also as a genuine upskilling on the transversality of the role. The trainer covers the full CBK with concrete examples drawn from real environments (banking, healthcare, industry, public sector). You work on typical ISC2 questions, known for their “best answer among valid answers” formulation: a format requiring specific training beyond simple theoretical revision.
The CISSP exam is demanding: you must justify several years of professional experience in two of the eight domains, pass a computer-based exam at a Pearson VUE centre, and obtain endorsement from an existing CISSP member. Our course covers this administrative path and guides you on exam strategy (CAT computer-adaptive test, time management, distractor elimination).
CISSP is a transverse certification covering the full cybersecurity perimeter. Our catalogue offers a complete ecosystem for security profiles, complementary or preparatory to CISSP. The audit and cybersecurity sub-domain regroups our specialised training (governance, audit, compliance, ISO 27001). For profiles starting their security path before CISSP, CompTIA Cybersecurity (Security+, CySA+, PenTest+, CASP+) is a coherent ramp. On the editor side, Microsoft Security Compliance & Identity offers an operational view of Microsoft security products (Defender, Sentinel, Purview, Entra).
For profiles wanting to complement CISSP with adjacent certifications, ISC2 offers the CCSP (Certified Cloud Security Professional) for cloud, CISSP-ISSAP for architecture, and CISSP-ISSMP for management. These constitute a natural follow-on for existing CISSPs seeking specialisation.
Our CISSP audience is mainly composed of experienced security profiles: security managers (CISO) formalising their experience with a recognised certification, security architects working on large-scale projects, cybersecurity consultants answering RFPs requiring the certification, IT auditors broadening their scope to operational security, and security project leaders wanting a full perimeter understanding. More junior profiles preparing CISSP ahead of eligibility (5 years required) can obtain Associate of ISC2 status after passing the exam, then convert to full CISSP once experience is validated.
How many years of experience are needed for CISSP?
ISC2 requires five years of paid professional experience in two of the eight CBK domains. A university degree in computer science or information security, or an ISC2-approved certification, allows a one-year reduction. Profiles without the required experience can sit the exam and obtain Associate of ISC2 status meanwhile.
What is the real difficulty of the exam?
The exam is known as difficult, not from pure technicality but from question format. CISSP tests the ability to think like a security manager and choose the best answer among several technically correct answers. Preparation must include typical question sessions and understanding ISC2’s “manager mindset”.
Is the exam available in English?
Yes, the CISSP exam is available in English, French and several other languages. Our course is delivered in French but technical vocabulary is cross-referenced with English, since most reference resources (official books, ISC2 materials) are in English.
Is certification maintenance required?
Yes. CISSP requires three-year maintenance with CPE (Continuing Professional Education): you must accumulate 120 CPE credits over three years through training, conferences, reading, publications or professional activities. ISC2 regularly verifies compliance.
Is CISSP relevant for a cloud or DevSecOps profile?
Yes, the CBK already covers cloud security and integration of security in software development. For deeper specialisation, ISC2 offers the CCSP (cloud). CISSP remains a broad foundation that cloud or DevSecOps profiles then complement with specific technical certifications.
Our CISSP sessions are scheduled throughout the year in Geneva and Lausanne, and in interactive virtual classroom with a live trainer. Group sizes stay small, allowing the trainer to address each learner’s questions attentively, which matters on a transversal certification. For security teams from the same organisation preparing CISSP as a cohort, we offer in-house sessions tailored to your industry context (banking, healthcare, industry, public sector). The exam itself is then sat at a Pearson VUE centre according to your personal schedule.
Switzerland presents several characteristics that make CISSP particularly relevant: density of international organisations in Geneva, major banking and financial sector, multinational headquarters in the Lake Geneva region, cantonal and federal public sector with strong regulatory requirements, university health sector with high data protection stakes. In these contexts, CISSP is often a job-profile prerequisite or a discriminating criterion in final selection. Our course addresses these contexts with examples anchored in Swiss reality, not limited to American or Anglo-Saxon references in official ISC2 materials.
The new Federal Act on Data Protection (revFADP) in effect, FINMA sectoral requirements for finance, recommendations from the National Cybersecurity Centre (NCSC), and progressive alignment with NIS2 for European subsidiaries create a dense regulatory environment that values CISSP-certified profiles.
Monday to Friday
8:30 AM to 6:00 PM
Tel. 058 307 73 00
ITTA
Route des jeunes 35
1227 Carouge, Suisse
Monday to Friday, from 8:30 am to 06:00 pm.
