CISSP-ISSAP: (ISC)² CISSP-ISSAP
Browse certifications
Exam Resources
Official learning paths, exam details, skills measured, and community resources to supplement your study.
About the CISSP-ISSAP Exam
Enterprise security architecture mastery
The (ISC)² CISSP-ISSAP concentration validates expertise in designing, developing, and analysing security solutions at the enterprise level, covering governance architecture, security modelling, infrastructure security, IAM architecture, application security, and security operations architecture.
Who Should Take This Exam?
The CISSP-ISSAP is designed for experienced professionals seeking advanced validation. 2+ years of hands-on experience recommended.
Typical study time: 8-12 weeks of intensive study
Exam Quick Facts
| Detail | Value |
|---|---|
| Exam Code | CISSP-ISSAP |
| Title | (ISC)² CISSP-ISSAP |
| Provider | Pearson VUE |
| Validity | 3 years (CPE required) |
| Question Types | Multiple choice, Advanced innovative |
Exam Domains & Weights
The CISSP-ISSAP exam covers 6 domains. Focus your study time based on the weights below — higher-weighted domains have more exam questions.
| Domain | Weight | Practice Qs |
|---|---|---|
| Architect for Governance, Compliance, and Risk Management | 20% | 40 |
| Security Architecture Modelling | 16% | 32 |
| Infrastructure Security Architecture | 19% | 38 |
| Identity and Access Management (IAM) Architecture | 16% | 32 |
| Architect for Application Security | 15% | 30 |
| Security Operations Architecture | 14% | 28 |
| Total | 100% | 200 |
💡 Study tip: Architect for Governance, Compliance, and Risk Management carries the most weight (20%) — start there. Security Operations Architecture has the least (14%), but don’t skip it — exam questions can come from any domain.
Practice Exam — 200 Questions
Prepare for the CISSP-ISSAP with our 200-question practice exam covering all 6 exam domains. Every question includes detailed explanations and maps to official exam objectives.
What you get:
- ✅ Exam simulation mode with timer
- ✅ Spaced repetition for weak areas
- ✅ Detailed explanations for every question
- ✅ Progress tracking across domains
- ✅ 20 free questions — no account needed
ISC² Certification Path
Start with CC (Certified in Cybersecurity) for entry-level, then SSCP for technical security, then CISSP for management. CISSP concentrations (ISSAP, ISSEP, ISSMP) come after CISSP.
Related ISC² Certifications
If you’re studying for the CISSP-ISSAP, you might also be interested in these ISC² certifications:
- CC: (ISC)² Certified in Cybersecurity — 200 practice questions
- CCSP: (ISC)² CCSP — 200 practice questions
- CGRC: (ISC)² CGRC — 200 practice questions
- CISSP-ISSEP: (ISC)² CISSP-ISSEP — 200 practice questions
- CISSP-ISSMP: (ISC)² CISSP-ISSMP — 200 practice questions
Study Tips
- Start with the heaviest domain — focus your time where the exam focuses its questions
- Use our practice exam — try the 20 free questions first to gauge your readiness
- Review explanations — don’t just check if you got it right; read why each answer is correct
- Simulate exam conditions — use the timed exam mode to practice under pressure