ISC2's CAP

Certified Authorization Professional

• 100% Exam Coverage • Interactive E-Book • Pre-Assessment Test • 307 Practice Questions with Full Explanations • 107 Interactive Quizzes • Chapter by Chapter Study Guide & Notes • Articles, How Tos, Tips, Flash Cards • Test History and Performance Review and Powerful Analytics • Study Planner • Continuously Updated

The ISC2 CAP certification is an industry recognized, vendor neutral credential. The certification is proof of a person's competence across a spectrum of skills including security authorization, Risk Management Framework (RMF), Plan of Action and Milestones (POAM), and security control assessment plan. uCertify’s guaranteed certification prep for CAP is comprehensive and helps you not only earn your certification in the shortest time possible, but to also gain the knowledge required on the job. Here’s what to expect from your uCertify prepkit:

ISC2 CAP test prep and exam questions 100% test pass guarantee

100% Test Pass Guarantee.

You will pass your exam in the first attempt or we will refund your money in full. Read More...
 Buy Now Try it Online
Or Download

Prepare for the following certification

The Certified Authorization Professional certification exam is a standalone certification from ISC2.

The certification is targeted at authorization officials, system owners, information owners, information system security officers, and certifiers as well as all senior system managers. The exam covers risk management approach to security authorization, RMF steps, relationship between RMF and SDLC, security control assessment, and Plan of Action and Milestones (POAM).

The Certified Authorization Professional certification exam is appropriate for commercial markets, civilian and local governments, and the U.S. Federal government including the State Department and the Department of Defense (DoD).

Skills Measured

  • Understanding the risk management approach to security authorization
  • Understanding the relationship between RMF and SDLC
  • Categorizing the system
  • Identifying common (inheritable) controls
  • Developing a security control monitoring strategy
  • Determining security control effectiveness
  • Performing initial remediation actions
  • Developing the final security assessment report and addendum
  • Determining security impact of changes to system and environment
  • Developing Plan of Action and Milestones (POAM)

Related Certifications

CAP Course Duration

This is a self-paced, independent study program, so there are no minimum or maximum restrictions placed by uCertify. The amount of time you will take depends on your existing knowledge of the area and related experience, as well as your availability. We recommend at least 2-3 weeks if you have at least two years of direct full time security professional work experiencein one or more of the seven domains of the ISC2 CAP CBK.

Related Exams

CAP Course/Exam Objectives

  • Chapter 1: Understanding Security Authorization of Information Systems
    • Understand the Risk Management approach to security authorization
    • Understand and distinguish among the Risk Management Framework (RMF) steps
    • Understand roles and responsibilities of security professionals
    • Understand the security authorization process
    • Understand the relationship between the RMF and SDLC
    • Understand legal, regulatory, and other requirements for Security Authorization
    • Understand common controls and security control inheritance
    • Understand Ongoing Monitoring Strategies
  • Chapter 2: Categorize Information Systems
    • Categorize the system
    • Describe the information system, including the security authorization boundaries
    • Register the system
  • Chapter 3: Establish Security Control Baseline
    • Identify and document common controls
    • Select and document security controls
    • Develop a security control monitoring strategy
    • Review and Approve a Security Plan
  • Chapter 4: Apply Security Controls
    • Implement selected security controls
    • Document security control implementation
  • Chapter 5: Assess Security Control
    • Prepare for security control assessment
    • Establish a security control assessment plan
    • Determine security control effectiveness
    • Develop the initial security assessment report
    • Perform initial remediation action
    • Develop the final security assessment report and addendum
  • Chapter 6: Authorize Information System
    • Develop Plan of Action and Milestones (POAM)
    • Assemble a security authorization package
    • Determine risks
    • Determine the acceptability of risks
    • Obtain security authorization decisions
  • Chapter 7: Monitor Security Controls
    • Determine security impact of changes to systems and environment
    • Perform ongoing security control assessments
    • Conduct ongoing remediation actions
    • Update key documentation
    • Perform periodic security status reporting
    • Perform ongoing risk determination and acceptance
    • Decommission and Remove System

Career Prospects

A CAP certified professional has several career opportunities open up to them, including:

  • Authorization Professional
  • Accreditation professional
  • Chief Security Officer

CAP Exam FAQ's

What certificate do I earn on passing the vendor certification?
If you pass ISC2's CAP exam you will get credit towards the following certification:
What is the exam registration fee?
395

Prices vary from region to region. A suggested average is US$395, but you should contact ISC2 directly for exact pricing. You may call (866) 462-4777 in the U.S. For international contact numbers, click here

Where do I take the exam?
The ISC2 CAP exam is administered by Pearson VUE at testing centers worldwide. Click here to find a testing center near you.
What is the format of the exam?
The exam consists of linear, fact based, multiple choice questions.
How many questions are asked on the exam?
The exam contains 125 questions.
What is the duration of the exam?
180 minutes

(on a scale of 0-1000)

What is the exam's retake policy?

In the event that you fail your first attempt at passing the CAP certification, ISC2's retake policy is:

  • Candidates who do not pass the exam the first time will be able to retest after 30 days.
  • Candidates that fail a second time will need to wait 90 days prior to sitting for the exam again. In the unfortunate event that a candidate fails a thirds time, the next available time to sit for the exam will be 180 days after the most recent exam attempt.
What is the validity of the certification?
The Certified Authorization Professional has no expiration. The certification holder is certified for life unless the ISC2 changes their policy. Click here for more information.
Where can I find more information on this exam?
You can find more information about the CAP here: https://www.isc2.org/cap/default.aspx
CAP Course Includes Free Buy
Chapters 1 7
Practice Tests 1 2
Total Questions (inc. quizzes) 30 307
Interactive Quizzes 15 107
Final Test No Yes
Articles, How Tos.., Tips No Yes
Study Notes Sample 465
Customers who are interested in CAP are also interested in

Overall Customer Rating!

 
 

4.6 out of 5 Pass Ratio: 97.23%.
9 out of 10 customers who purchased this course would recommend the product to their friends.

Our Customers are talking!


This prepkit as well as the others in the series really helped me pass my exams. Of all the things I purchased Practice questions, Mock tests, tutorials and exercises were really great. I can surely say that this is the best exam guide for the CPS and CAP exam. You really don't need anything else.

Bobby Torrens

I would definitely recommend this CAP prepkit for a newcomer to the ISC-2 certification realm. It lays the basic details and covers all the topics needed by a CAP aspirant, and I can surely say that you can pass the exam with this prepkit alone.

N.Srikantam

All Thanks to ucertify.... I achieved my ISC-2 CAP certification with their prepkit. I really like the sample questions and detailed study notes which are really comprehensive and easy to learn.

Harry Thomas