I'm looking to go for the Certified CISO certification & training as I'm an aspiring CISO. Any recommendations and additional certifications that I should be doing along with that? I already have CISSP.
Sort by:
If you really want an executive level certification that is close to CISO, ISACA CISM or GIAC GSLC/GSTRT are considered the next step. However, I argue at this point in your career you should take a more practical approach. Many certifications at that level provide the same type of wide range knowledge in the concepts. Take training courses and summits that focus on real world trends and insights into the position. If you can, also find a mentor that can provide input and help guide you to the right path as a CISO.
CCISO
YouTube is an excellent source for learning resources. So, before you take the exams, which can be really challenging, be sure to get that extra knowledge.
First, you need to get your certifications up to speed. Start with the basics and move to the advanced level. Do one a month for the rest of 2025 and you will lay a solid foundation for your cyber security career path. CISSP, CISM, CISA, CCSP, CRISC, etc.
Second, go to LinkedIn and do a search for CISO jobs. Look at the requirements that are listed by companies that are hiring a CISO. The criteria may include, experience, certifications, the correct degree, etc. While in reality, you do not need all of these items to run a team, you will need these items to get the interview!
Example from a LinkedIn CISO job posting:
Qualifications:
Education: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (Master’s degree or relevant certifications preferred).
Experience: 10+ years of experience in information security or IT, with at least 5 years in a leadership role overseeing cybersecurity programs.
Certifications: Preferred certifications include CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CISA (Certified Information Systems Auditor), or equivalent.
Technical Skills: Deep understanding of cybersecurity frameworks, threat landscapes, encryption, network security, cloud security, and endpoint protection.
Leadership Skills: Proven ability to lead cross-functional teams, manage budgets, and drive strategic initiatives.
Communication: Exceptional verbal and written communication skills, with the ability to explain complex security concepts to non-technical stakeholders.
Problem-Solving: Strong analytical skills with a proactive approach to identifying and resolving security challenges.
Regulatory Knowledge: Familiarity with industry-specific compliance requirements and data protection regulations.
If you're looking to learn more about CISO training, there are free online resources available. Alternatively, if you prefer a more immersive experience with hands-on sessions and fieldwork, consider university-offered programs. Top institutions like NYU Tandon and Carnegie Mellon offer specialized programs in this field. I've personally benefited from one such program at NYU.
https://cynomi.com/academy/tools/
https://secure-anchor.com/consulting/
https://fractionalciso.com/how-to-become-a-virtual-ciso/