Calling All ISSAP Certification Holders - Help Shape the Exam

As an Information Systems Security Architecture Professional (ISSAP), your remit isn’t just to implement controls—it’s to architect trust. Your decisions knit together governance, risk and compliance (GRC) with identity, infrastructure, and system design to enable resilient, auditable and business aligned security outcomes. Contributing to the ISSAP Job Task Analysis (JTA) is a chance to exercise that strategic leadership—ensuring the certification continues to reflect the realities you manage every day across complex organizations.

What Your Input Will Directly Influence

Your feedback will guide how the ISSAP exam evaluates a candidate’s real world architectural mastery across the domains they practice:

• GRC Driven Architecture: Designing for governance, risk and compliance across regulated environments.
• Design Assurance: Verifying and validating security designs in complex enterprise architectures.
• Infrastructure & Systems: Architecting infrastructure and system security across hybrid and cloud ecosystems; identifying robust infrastructure and system requirements.
• Identity & Accountability: Architecting identity lifecycle, authentication, authorization, and accountability models that scale.
• Regulatory & Organizational Alignment: Translating legal, regulatory, organizational, and industry requirements into defensible architectural decisions.

Why Participate Now

Without direct input from active ISSAP practitioners, emerging architectural realities—identity centric design, regulatory driven architectures, hybrid dependencies—risk being underrepresented in future exam updates. Your voice ensures that the ISSAP is an accurate benchmark for advanced security architecture.

How to Contribute

1. Review the current ISSAP exam outline. Focus on where the blueprint aligns—or doesn’t—with modern practice.

2. Consider these guiding questions:

• Do you believe that the current ISSAP exam outline adequately covers the existing and emerging cybersecurity techniques and threats ISSAP practitioners are facing in their jobs today?
• If not, what sort of topics/content should be added to the ISSAP exam outline?
• What content currently on the ISSAP exam outline is no longer relevant to today’s professionals?

3. Send your feedback to ISSAPjta@isc2.org with your member ID no later than February 24, 2026. Responses will be compiled for the JTA Committee to support the ISSAP JTA Workshop, tentatively scheduled for March 17-19, 2026.

Professional Recognition & Benefits

Participation isn’t just an act of volunteering—it’s professional stewardship. Your contribution positions you as a trusted voice in advancing the standards that define enterprise level cybersecurity architecture. You’ll also earn CPE credit for your contribution (submit via the CPE portal after you participate).

Stay Engaged with Exam Development

If you’re energized by shaping the future of cybersecurity certifications, explore additional exam related volunteer opportunities with ISC2.