CISSP concentrations are fresh new air flowing around. This exam creating fuzz everywhere even into US Army.

This time i will focus on ISSMP i.e. Information Systems Security Management Professional. This concentration requires that a candidate demonstrate two years of professional experience in the area of management, considering it on a larger enterprise-wide security model. This concentration contains deeper managerial elements such as project management, risk management, setting up and delivering a security awareness program, and managing a Business Continuity Planning program. A CISSP-ISSMP establishes, presents, and governs information security policies and procedures that are supportive to overall business goals, rather than a drain on resources. Typically the CISSP-ISSMP certification holder or candidate will be responsible for constructing the framework of the information security department and define the means of supporting the group internally.

CISSP-ISSMP professionals have a far more well-rounded and complete comprehension of
information security than other popular management credentials.

Domains of ISSMP:

• Security Management Practices
• Systems Development Security
• Security Compliance Management
• Understand Business Continuity Planning (BCP) & Disaster Recovery Planning (DRP)
• Law, Investigation, Forensics and Ethics