ISC2

CCSP

Certified Cloud Security Professional

An advanced cloud security certification from ISC2 for security professionals designing and managing secure cloud environments. Highly valued for cloud security architect and engineer roles.

$599Up to 3 hours

What's on the exam

CCSP Detailed Content Outline (effective August 2022)

Cloud Concepts, Architecture, and Design

17%

Cloud computing concepts and roles · Cloud reference architecture · Security concepts and design principles · Trusted cloud services and certifications · Cost-benefit and risk considerations

Cloud Data Security

20%

Cloud data lifecycle · Data storage architectures · Data classification and discovery · Encryption, tokenization, and masking · Data retention, deletion, and archiving

Cloud Platform and Infrastructure Security

17%

Cloud infrastructure components · Risk analysis and assessment · Security controls design · Business continuity and disaster recovery · Network and compute security

Cloud Application Security

17%

Secure software development lifecycle · Application security testing · DevSecOps and supply chain · Identity and access management · APIs and verified secure software

Cloud Security Operations

16%

Physical and logical infrastructure operations · Operational controls and monitoring · Change and configuration management · Security operations center practices · Digital forensics and incident management

Legal, Risk, and Compliance

13%

Legal requirements and risks · Privacy issues and regulations · Audit processes and assurance · Enterprise risk management · Vendor and contract management

Frequently asked questions

How much does the CCSP cost?

The CCSP costs $599. US$599 exam fee plus an ISC2 annual maintenance fee after certification; confirm current pricing with ISC2.

How long is the CCSP and how many questions does it have?

100–150 items — Up to 3 hours.

What do you need to pass the CCSP?

700 on a scale of 1000.

Can you retake the CCSP?

Tiered waiting periods; up to 4 attempts per 12-month period.

What is the best way to study for the CCSP?

Study the official blueprint, not random material: the exam is weighted by domain (Cloud Concepts, Architecture, and Design 17%, Cloud Data Security 20%, Cloud Platform and Infrastructure Security 17%, Cloud Application Security 17%, Cloud Security Operations 16%, Legal, Risk, and Compliance 13%). Spaced-repetition flashcards built domain-by-domain against that blueprint are the most time-efficient way to cover everything the exam tests.

Program in development

We're building a blueprint-complete program for this exam. Meanwhile, explore live programs across 11 exam.

Explore programs →

At a glance

Format: Computerized adaptive testing (CAT)
Questions: 100–150 items
Duration: Up to 3 hours
Passing: 700 on a scale of 1000
Eligibility: 5 years of cumulative IT experience including 3 years in information security and 1 year in a CCSP domain (Associate of ISC2 path available without experience)
Validity / renewal: 3 years — maintained via CPE credits and annual maintenance fee
Where you take it: Pearson VUE test centers
Retake policy: Tiered waiting periods; up to 4 attempts per 12-month period
Cost: $599 — US$599 exam fee plus an ISC2 annual maintenance fee after certification; confirm current pricing with ISC2

Official sources

ISC2 CCSP Certification ↗

Fees, policies, and blueprints change — always confirm details with the official source before registering.