Text size
  • Small
  • Medium
  • Large
  • Standard
  • Blue text on blue
  • High contrast (Yellow text on black)
  • Blue text on beige
Your location:

CESG Certified Professional scheme

The CESG Certified Professional (CCP) scheme is the UK Government’s approved standard of competence for cyber security professionals and provides an independent assessment and verification process for those working in Information Assurance (IA).

Licensed by CESG, the BCS assessment process enables IA professionals to demonstrate they have the skills and experience required to carry out their role effectively and to a consistently high standard.

The scheme also provides those working in IA with a clearly defined career development path. CCP certification is a requirement for the CESG approved Certified Cyber Security Consultancy scheme.

Who are CESG?

CESG is the information security arm of GCHQ and is the UK Government’s National Technical Authority for Information Assurance, providing the definitive voice on the technical aspects of information security and advice across the UK Government.

Who is the scheme aimed at?

The scheme is aimed at anyone working or looking to work in the field of information assurance. It covers six Cyber Security / IA roles at practitioner, senior practitioner, principal practitioner and lead practitioner levels, which are aligned to levels 3, 4, 5 and 6 of the Skills Framework for the Information Age (SFIA):

  • Security and Information Risk Advisor
  • Cyber Security / IA Architect
  • Accreditor
  • Cyber Security / IA Auditor
  • IT Security Officer
  • Communications Security Officer

What is the application process?

The process involves rigorous independent assessment and requires good preparation. When you have decided which role and level you would like to apply for, read the additional information provided in the useful links section on the right to prepare your application. Start your application

Role: Practitioner Senior
Principal Lead
Security Information Risk Advisor
Written submission and exam*

Written submission and interview n/a

Written submission and interview

Cyber Security / IA Architect
Cyber Security / IA Auditor
IT Security Officer
Communication Security Officer

*Applicants must have passed the BCS Certificate in Information Security Management Principles or an industry equivalent examination for all practitioner levels.

For further details refer to CESG Certified Professional Scheme - qualification requirements.

What fees are involved?

There is an application fee for each role and level plus a revalidation fee applies after 18 months. There is also an examination fee for practitioner applications. Information about fees

How long does my certification last?

Certification lasts for three years. Eighteen months into your certification period you must provide an updated CV and CPD evidence to ensure the skills in your certified role/level are being maintained.

What are the benefits of certification?

Can I become an assessor for this scheme?

Depending on your skills and experience, we would welcome your application to become an assessor for the CCP scheme (click on the CCP scheme tab).

Where can I read more?

You can read more in this leaflet and you may also find this case study of interest.

This qualification is not regulated by the following United Kingdom Regulators - Ofqual, Qualification in Wales, CCEA or SQA.