Text size
  • Small
  • Medium
  • Large
  • Standard
  • Blue text on blue
  • High contrast (Yellow text on black)
  • Blue text on beige
Your location:

CESG Certified Professional scheme

The CESG Certified Professional (CCP) scheme is the UK Government’s approved standard of competence for cyber security professionals and provides an independent assessment and verification process for those working in Information Assurance (IA).

Licensed by CESG, the BCS assessment process enables IA professionals to demonstrate they have the skills and experience required to carry out their role effectively and to a consistently high standard.

The scheme also provides those working in IA with a clearly defined career development path. CCP certification is also a pre-requisite for membership of the CESG Listed Advisor Scheme (CLAS).

Who are CESG?

CESG is the information security arm of GCHQ and is the UK Government’s National Technical Authority for Information Assurance, providing the definitive voice on the technical aspects of information security and advice across the UK Government.

Who is this scheme aimed at?

The scheme is aimed at anyone working or looking to work in the field of information assurance. It covers seven IA roles at Practitioner, Senior Practitioner and Lead Practitioner levels, which are aligned to levels 2, 4 and 6 of the Skills Framework for the Information Age (SFIA):

  • Security and Information Risk Advisor
  • IA Architect
  • Accreditor
  • IA Auditor
  • IT Security Officer
  • Communications Security Officer (ComSO)
  • Penetration Tester (register your interest to take part in a pilot for this new role)

What is the application process?

The process involves rigorous independent assessment and requires good preparation. When you have decided which role and level you would like to apply for, read the additional information provided in the Useful links section on the right to prepare your application. Start your application

Assessment required:
Level applied for:
Practitioner Senior Practitioner Lead Practitioner
Written submission

Examination √* - -
Expert interview -

* All roles at Practitioner level must have a pass in the Certificate in Information Security Management Principles or an industry equivalent examination.

What fees are involved?

There is an application fee for each role and level plus a revalidation fee applies after 18 months. There is also an examination fee for Practitioner applications.
Information about fees

How long does my certification last?

This scheme lasts for three years. Eighteen months into your certification period you must provide an updated CV and CPD evidence to ensure the skills in your certified role/level are being maintained. After successfully completing this review you will get a new certificate covering a further two years.

What are the benefits of certification?

Can I become an Assessor for this scheme?

Depending on your skills and experience, we would welcome your application to become an Assessor for the CCP scheme (click on the CCP Scheme tab).

How do I join the CESG Listed Advisor Scheme (CLAS)?

Please contact CLAS directly.

Where can I read more?

You can read more in this leaflet.