CISSP candidates can earn certification with four years of professional experience instead of five if certain circumstances apply and with appropriate documentation.
The purpose of this is to recognize a broader breadth of relevant experience for qualified CISSP candidates who have received education and/or any credential deemed as approved, and apply it as recognized credit toward required work experience.
A candidate shall be permitted to earn CISSP certification with four years of relevant work experience:
Based on a candidate’s education
Candidates can substitute a maximum of one year of direct full-time security professional work experience if they have a four-year college degree or regional equivalent or an advanced degree in information security from the U.S. National Center of Academic Excellence in Information Assurance Education (CAE/IAE).
Or for holding an additional credential on the (ISC)² approved list below
Candidates can satisfy one year of full time work experience if they hold one of the approved certifications on the below (ISC)² approved list.
Approved Credentials include: