Text size
  • Small
  • Medium
  • Large
Contrast
  • Standard
  • Blue text on blue
  • High contrast (Yellow text on black)
  • Blue text on beige
Your location:

CESG Certified Professional scheme

The CESG Certified Professional (CCP) scheme is the UK Government’s approved standard of competence for cyber security professionals and provides an independent assessment and verification process for those working in Information Assurance (IA).

Licensed by CESG, the BCS assessment process enables IA professionals to demonstrate they have the skills and experience required to carry out their role effectively and to a consistently high standard.

The scheme also provides those working in IA with a clearly defined career development path. CCP certification is also a pre-requisite for membership of the CESG Listed Advisor Scheme (CLAS).

Who are CESG?

CESG is the information security arm of GCHQ and is the UK Government’s National Technical Authority for Information Assurance, providing the definitive voice on the technical aspects of information security and advice across the UK Government.

Who is the scheme aimed at?

The scheme is aimed at anyone working or looking to work in the field of information assurance. It covers seven IA roles at practitioner, senior practitioner, principal practitioner and lead practitioner levels, which are aligned to levels 3, 4, 5 and 6 of the Skills Framework for the Information Age (SFIA):

  • Security and information risk advisor
  • IA architect
  • Accreditor
  • IA auditor
  • IT security officer
  • Communications security officer
  • Penetration tester

What is the application process?

The process involves rigorous independent assessment and requires good preparation. When you have decided which role and level you would like to apply for, read the additional information provided in the useful links section on the right to prepare your application. Start your application


Level:
Role: Practitioner Senior
Principal Lead
Security information risk advisor
Written submission and exam*

Written submission and interview n/a

Written submission and interview

IA architect
IA auditor
Accreditor
IT security officer
Communication security officer
Penetration tester
Written submission, mandated qualification** and interview Written submission, mandated qualification** and interview

 
*Applicants must have passed the BCS Certificate in Information Security Management Principles or an industry equivalent examination for all practitioner levels. ** Applicants for the penetration tester role at senior and principal level must hold at least one mandated qualification.

For further details refer to CESG Certified Professional Scheme - qualification requirements.

What fees are involved?

There is an application fee for each role and level plus a revalidation fee applies after 18 months. There is also an examination fee for practitioner applications. Information about fees

How long does my certification last?

This scheme lasts for three years. Eighteen months into your certification period you must provide an updated CV and CPD evidence to ensure the skills in your certified role/level are being maintained. After successfully completing this review you will get a new certificate covering a further two years.

What are the benefits of certification?

Can I become an assessor for this scheme?

Depending on your skills and experience, we would welcome your application to become an assessor for the CCP scheme (click on the CCP scheme tab).

How do I join the CESG Listed Advisor Scheme (CLAS)?

Please contact CLAS directly.

Where can I read more?

You can read more in this leaflet and you may also find this case study of interest.