CISSP Certification Training in Singapore
The CISSP (Certified Information Systems Security Professional) certification was developed to meet the growing demands and rising complexity of the cybersecurity and IT industry.
The CISSP course provides in-depth, up-to-date knowledge aligned with the strict standards of (ISC)² (International Information System Security Certification Consortium, Inc.), a globally recognised leader in cybersecurity certifications.
As a gold-standard credential for security professionals, the CISSP certification is crucial for anyone pursuing a career in cybersecurity. It prepares individuals with the essential skills to safeguard organisations against advanced cyber threats.
The CISSP certification in Singapore provides comprehensive coverage of essential cybersecurity topics such as security principles, communication systems, infrastructure protection, fundamental cryptography, and operational security. Through this funded CISSP course, students also gain hands-on experience in developing, deploying, and overseeing effective security strategies. Flexible learning options, including CISSP online training, make it accessible for working professionals seeking to advance their expertise.
The Certified Information Systems Security Professional (CISSP) certification is a prestigious credential recognised both in Singapore and globally within the information security sector. Achieving CISSP certification demonstrates an information security professional’s comprehensive managerial and technical expertise in designing, engineering, and managing an organisation’s security framework.
CISSP training equips professionals with the essential skills and knowledge to uphold and advance an organisation’s security posture. This training often involves a CISSP course that covers the CISSP Common Body of Knowledge (CBK), which encompasses a broad spectrum of topics, assuring its applicability to different information security disciplines.
Course Outline
The 5-day course heavily focuses on the eight fundamental domains of Information Security.
Domain 1: Risk and Security Management
1.1 Recognise and apply availability, confidentiality, and integrity into practice.
1.2 Apply and assess security governance principles
1.3 Establish compliance requirements
1.4 Understand regulatory and legal issues that concern information security in a global context
1.5 Understand, promote, and adhere to professional ethics
1.6 Create, record, and put into practice security policies, processes, standards, and guidelines.
1.7 Analyse, identify and prioritise Business Continuity (BC) requirements
1.8 Enforce and contribute to personnel security guidelines and procedures
1.9 Apply and understand risk management concepts
1.10 Recognise and use threat modelling techniques and ideas
1.11 Introduce notions of risk-based management into the supply chain
1.12 Maintain and establish a security education, awareness and training program
Domain 2: Asset Security
2.1 Identify and classify assets and information
2.2 Determine and maintain asset ownership and information
2.3 Protect privacy
2.4 Ensure proper asset retention
2.5 Determine data security controls
2.6 Establish information and asset handling requirements
Domain 3: Security Architecture and Engineering
3.1 Manage and Implement engineering processes using secure design principles
3.2 Recognise the basic concepts of security models
3.3 Select controls based on systems security requirements
3.4 Recognise security capabilities of information systems (e.g., encryption/decryption, memory protection, Trusted Platform Module (TPM ),)
3.5 Reduce and evaluate security architectures, solution components, and designs’ vulnerabilities
3.6 Assess and mitigate weaknesses in web-based systems
3.7 Assess and mitigate weaknesses in mobile systems
3.8 Assess and mitigate weaknesses in embedded devices
3.9 Apply cryptography
3.10 Apply security principles to site and facility design
3.11 Implement facility and site security controls
Domain 4: Communication and Network Security
4.1 Use secure design principles while creating network architectures
4.2 Secure network components
4.3 Use secure channels for communication as specified by the design
Domain 5: Identity and Access Management (IAM)
5.1 Control logical and physical access to assets
5.2 Manage authentication and identification of people, devices, and service
5.3 Add identity management as a third-party service.
5.4 Put approval systems in place and oversee them
5.5 Monitor the identity and access provisioning lifespan
Domain 6: Testing and Security Assessment
6.1 Create and validate evaluations, audit plans, and tests
6.2 Oversee security control testing
6.3 Oversee security process data (e.g., administrative and technical)
6.4 Examine test output and generate a report
6.5 Manage or facilitate security audits
Domain 7: Security Operations
7.1 Support and understand investigations
7.2 Understand requirements for investigation types
7.3 Conduct monitoring and logging activities
7.4 Securely provisioning resources
7.5 Apply and understand foundational security operations concepts
7.6 Apply resource protection techniques
7.7 Conduct incident management
7.8 Maintain and operate detective and preventive measures
7.9 Support and implement patch and vulnerability management
7.10 Understand and Engage in change management processes
7.11 Apply recovery strategies
7.12 Apply Disaster Recovery processes
7.13 Test Disaster Recovery Plans
7.14 Take part in Business Continuity (BC) planning and exercises
7.15 Manage and implement physical security
7.16 Address personnel security and safety concerns
Domain 8: Software Development Security
8.1 Understand and incorporate security in the Software Development Life Cycle (SDLC)
8.2 Recognise and apply security controls in development environments
8.3 Evaluate the benefits of software security
8.4 Evaluate the security impact of acquired software
8.5 Implement and define secure coding guidelines and standards
This CISSP training course is targeted toward those who are experienced information security professionals in Singapore who wish to gain an internationally recognised accreditation while widening their knowledge, including:
- IT Consultants
- Information Security Officers
- Network Administrators
- Security Consultants
- Security Device administrators
- Security Engineers
- Security Managers
- Security Policy writers
- Privacy Officers
Recommended Prerequisites
- Minimum of 5 years of full-time, cumulative work experience in two or more of the eight CISSP domains.
- One year of experience may be waived with:
- A bachelor’s or master’s degree in computer science, IT, or related fields, or
- An approved credential from ISC²’s list.
- Part-time work and internships may count toward the experience requirement.
- Candidates pursuing CISSP purely for knowledge are not required to meet these prerequisites but should have foundational cybersecurity knowledge, preferably via any of the following:
- CCSP, CISM, CISA, CRISC
- CCNA, CASP+, CySA+, Security+
- CHFI, CCSK, CSA (EC-Council)
- OSCP/OSCE
You may view the full recommended prerequisites here.
Certification Exam
Exam Details
The structure of the CISSP certification examination is as follows:
No. of items: 100 – 150
Duration: 3 hours
Passing mark: 700 out of 1000 points
Languages Available: Chinese, English, German, Japanese, Spanish
Location: ISC2 Authorized PPC and PVTC Select Pearson VUE Testing Centers
Prerequisite
Participants must either have a prior full-time work experience of at least five years in 2 or more of the eight domains of the (ISC)2 (International Information Systems Security Certification Consortium) CISSP Common Body of Knowledge (CBK), or hold a 4-year college degree equivalent.
Funding
This course is available as a funded course with support from schemes including SkillsFuture, UTAP, and company sponsorships. Please send us an enquiry online to check your eligibility to take this as a funded course, or drop us a call.
| ✔ Full-Time Option |
Duration: 3 weekdays (9am – 5pm)
- E.g. Monday to Friday
Delivery: Facilitated Classroom / Virtual Training
Suitable for professionals who prefer intensive training with faster completion.
| ✔ Part-Time Option |
Duration: 5 weekends (9am – 5pm)
- E.g. Saturday, Sunday, Saturday, Sunday & Saturday
Delivery: Facilitated Virtual Training
Ideal for working professionals who need flexibility after office hours.
Delivery Mode: Facilitated Classroom / Virtual Training
2026
Jan
12 – 16
Apr
13 – 17
Jun
22 – 26
Jul
20 – 24
Oct
12 – 16
For part-time schedule, WhatsApp us at 9233 7408 or email us at enquiry@bridgingminds.net
Students will be required to complete an assessment on the last day of class.
After completing the course, students can proceed to undertake the
Certified Information Systems Security Professional (CISSP) Certificate examination at Pearson Vue..
Certification Obtained and Conferred by
- BridgingMinds Certificate of Attendance (upon achieving minimum 75% class attendance)
- WSQ Statement of Attainment (upon passing the relevant assessment)
- To download WSQ e-Certs, Learners can log in to MySkillsFuture portal via SingPass > go to Skills Passport > Certificates
Duration: 5 Days or 35.0hr(s)
Course Fee
| Course Fee w/o GST | $1,750.00 |
| Course Fee w. GST (9% effective 1st Jan 2024) | $1,907.50 |
| SME (Company Sponsored) – All Singaporean and Permanent Resident Employee | $682.50 |
| Singapore Citizens aged 40 years old and above | $682.50 |
| Singapore Citizens below 40 years old and Permanent Residents | $1,032.50 |
Exam Fee
- Exam Voucher is non-inclusive and optional. Please contact us for more info.
FAQ
Is CISSP recognised by the Singapore government?
Yes, the CISSP certification is globally recognised and highly valued in Singapore. It is well-aligned with international cybersecurity standards and widely accepted by employers across both government agencies and private sector organisations. Many public sector roles in Singapore list CISSP as a preferred or required qualification.
Is CISSP better than CISM for Singaporean professionals?
Both CISSP and CISM are highly respected certifications in Singapore’s cybersecurity landscape. CISSP is broader in scope, covering eight technical and managerial domains, making it ideal for hands-on security practitioners and architects.
CISM, by contrast, focuses more on governance, risk, and management. If your goal is a technical or engineering-oriented security career, CISSP is likely the stronger choice; if you are moving into a security management or leadership role, CISM may be more appropriate.
What is the "Work Experience" requirement?
To qualify for full CISSP certification, candidates must have at least 5 years of cumulative, paid, full-time work experience in 2 or more of the 8 domains of the (ISC)² CISSP Common Body of Knowledge (CBK). The 8 domains are: (1) Security & Risk Management, (2) Asset Security, (3) Security Architecture & Engineering, (4) Communication & Network Security, (5) Identity & Access Management, (6) Security Assessment & Testing, (7) Security Operations, and (8) Software Development Security.
Can I take the CISSP exam if I don't have 5 years of experience?
Yes, you can attempt and pass the CISSP exam even without the full 5 years of work experience. There are a few pathways to meet the experience requirement:
- A post-secondary degree (master’s or bachelor’s) in computer science, information technology, or a related field may waive up to one year of the required experience.
- Holding an additional certification from the (ISC)² approved list may also satisfy up to one year of experience. The full list can be found at: https://www.isc2.org/certifications/cissp/cissp-experience-requirements
- If you still cannot fulfil the 5-year requirement after these waivers, you will be awarded the Associate of (ISC)² designation upon passing the CISSP exam, giving you up to 6 years to accumulate the necessary experience and complete your full CISSP certification.
How much does the CISSP exam cost in SGD?
The CISSP exam fee is approximately SGD $1,150 (before GST). Prices are subject to change, so candidates should verify the latest fees directly with (ISC)² before registering.
What is the CISSP exam format?
The CISSP exam uses Computerised Adaptive Testing (CAT) and is structured as follows:
- Number of questions: 100 – 150
- Duration: Up to 3 hours
- Passing score: 700 out of 1,000 points
What are the 8 CISSP Domains covered in 2026?
The 8 CISSP CBK domains are: (1) Security & Risk Management, (2) Asset Security, (3) Security Architecture & Engineering, (4) Communication & Network Security, (5) Identity & Access Management (IAM), (6) Security Assessment & Testing, (7) Security Operations, and (8) Software Development Security.
How long does it take to prepare for the CISSP exam?
Most Singaporean professionals spend 3 to 6 months studying, assuming they are working full-time.
Most Singaporean professionals dedicate 3 to 6 months of preparation, assuming they are studying while working full-time. Those with extensive hands-on cybersecurity experience may require less time, while candidates newer to certain CISSP domains may benefit from a longer study period.
What is the "Official" CISSP textbook?
The (ISC)² CISSP Certified Information Systems Security Professional Official Study Guide, commonly referred to as the “Sybex” book, remains the primary and most widely recommended study resource for CISSP candidates. It is regularly updated to reflect the latest CBK domains.
What happens if my CISSP certification expires?
CISSP holders have a 90-day grace period after their certification expiry date to meet their Continuing Professional Education (CPE) and Annual Maintenance Fee (AMF) requirements. If the CISSP certification lapses beyond this grace period, the individual will need to retake and pass the CISSP exam to become certified again.
Is the CISSP exam available in Chinese in Singapore?
Yes. However, the English version is the standard format delivered via Computerised Adaptive Testing (CAT). The Chinese-language CISSP exam is typically administered as a fixed-form linear exam consisting of 250 questions over 6 hours, rather than the adaptive format.