Certified Authorization Professional

Why Trust Techopedia

What Does Certified Authorization Professional Mean?

A certified authorization professional (CAP) is a vendor-neutral certification that tests, validates and certifies an individual’s ability to understand, implement and maintain secure authorization for information systems.

Advertisements

This certifications is meant for experienced ICT professionals in security and information assurance whose jobs involve Governance, Risk and Compliance (GRC). The certification is developed, maintained and monitored by the International Information Systems Security Certification Consortium ((ISC)2).

Techopedia Explains Certified Authorization Professional

CAP certifies and validates an individual's ability to understand, apply and/or implement a risk management program for IT systems within an organization.

The key points of CAP assessment include:

  • Risk management frameworks
  • Types of information systems
  • Selecting security controls
  • Security control implementation
  • Assessing the effectiveness of security controls
  • Information system authorization
  • Monitoring security controls

To qualify for certification, candidates need to have a minimum of two years of cumulative, paid work experience in one or more of the seven areas above.

Advertisements

Related Terms

Margaret Rouse
Technology Specialist
Margaret Rouse
Technology Specialist

Margaret is an award-winning writer and educator known for her ability to explain complex technical topics to a non-technical business audience. Over the past twenty years, her IT definitions have been published by Que in an encyclopedia of technology terms and cited in articles in the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine, and Discovery Magazine. She joined Techopedia in 2011. Margaret’s idea of ​​a fun day is to help IT and business professionals to learn to speak each other’s highly specialized languages.