Candidates must have 5 years of experience in any of the three of the five CCSIO Domains given below,
- Governance, risk, compliance
- Information Security Controls & Audit Management
- Security Program Management & Operations
- Information Security Core competencies
- Strategic Planning, finance, procurement, and third party management