The FITSP-Manager certification is intended for federal workforce personnel, both federal employees and contractors, whose role is primarily focused on the management and oversight of systems owned by, or operated on behalf of, the federal government of the United States. This role deals with high-level, cost-effective, risk-based IT security audit functions that assure program value is achieved within the ever-changing risk and evolving threat environments.
This role deals with high-level, cost-effective, risk-based IT security oversight functions that assure program value is achieved within the ever-changing risk and evolving threat environments. The Manager role is designed for candidates who act in an oversight capacity concerning IT security. Candidates for this are usually CISOs, CIOs, system owners, program managers, etc.
Candidates are tested on a comprehensive Federal Body of Knowledge (FBK), which consists of a library of federal statutes, regulations, standards, and guidelines. The FBK is divided into six domains and 18 IT security topic areas.
The exam is three hours long and consists of 150 multiple-choice questions focusing on the knowledge and skills that federal managers must know.
Additionally, a minimum of five years of generic information systems security experience is required. This experience can be inside or outside the federal government.