CCNP Security vs. CCSP
Date: Feb 9, 2011
The Cisco Certified Security Professional (CCSP) certification is a well-known, well-established credential in the IT field. It’s popular with employers and IT professionals alike. In late 2010, Learning@Cisco announced major changes impacting CCSP credential holders and those currently seeking this certification. Effective 2011, Learning@Cisco will phase out the CCSP, to replace it with the Cisco Certified Network Professional Security (CCNP Security) cert.
Billed by Cisco as an “evolution of the CCSP certification,” the CCNP Security credential is specifically designed to meet educational needs for Cisco Network Security Engineers and ensure minimum quality standards for skills in areas such as ongoing support, maintenance and service, and deployment. The CCNP credential also ensures that credential holders have the skills necessary to effectively manage compliance mandates, cybersecurity performance, and more.
As the migration from CCSP to CCNP Security goes forward, CCSP credential holders and seekers as well as those trying to decide which certification path (CCSP or CCNP Security) to pursue should be aware of migration dates, prerequisite credentials, exams, migration details, and recertification requirements. Here they come!
Noteworthy Migration Dates
Most critically, credential seekers should track the deadlines associated with their targeted certifications. Cisco established a firm “cut-off” date, after which new CCSP certifications will no longer be issued. Many of the CCSP examinations will sunset in 2011 as well. If you’re currently seeking a CCSP, you’ll want to make a note of the following dates that will impact your credentialing time frame:
- CCSP credential seekers: Examinations for the CCSP certification will be available to credential seekers until May 2011. Learning@Cisco will no longer issue new CCSP certifications after October 2011.
- Current CCSP credential holders: Current CCSP certifications will continue to remain active for the three-year period (providing all requirements are met) following their certification date. Thus, new certifications issued in 2011 will remain valid until 2014.
Prerequisite Credentials
Both the CCSP and CCNP Security require credential holders to possess the Cisco Certified Network Associate Security (CCNA Security) or any Cisco Certified Internetwork Expert (CCIE) certification as a prerequisite for certification.
Examinations
Both the CCSP and CCNP Security require the credential seeker to pass a total of four examinations. The CCSP path consisted of three core examinations and one elective examination, of the credential seeker’s choosing. All four of the CCNP Security examinations are mandated (in other words, there are no elective options).
Those who are in the process of earning CCSP certification may be able to apply some completed CCSP exams toward a CCNP Security credential. By doing so, it’s possible for CCSP credential seekers to obtain both the CCSP and CCNP Security certification. The following table shows how CCSP exams map to the CCNP Security certification.
Table 1 Examinations
|
CCSP Exam |
Type |
Last Test Date |
Credit Given for Corresponding CCNP-Security Exam |
|
Securing Networks with Cisco Routers and Switches (SNRS) |
Core |
April 8, 2011 |
Securing Networks with Cisco Routers and Switches (SECURE) v1.0 |
|
Securing Networks with ASA Foundation (SNAF) |
Core |
April 8, 2011 |
Deploying Cisco ASA Firewall Solutions (FIREWALL) v1.0 |
|
Implementing Cisco Intrusion Prevention Systems (IPS) v6.0 |
Core |
May 31, 2011 |
Implementing Cisco Intrusion Prevention System (IPS) v7.0 |
|
Securing Networks with ASA Advanced (SNAA) |
Elective |
April 8, 2011 |
Deploying Cisco ASA VPN Solutions (VPN)* v1.0 |
|
Implementing Cisco NAC Appliance (CANAC) |
Elective |
No longer available |
Not applicable |
|
Implementing Cisco Security Monitoring, Analysis and Response System (MARS) |
Elective |
Not yet announced |
Not Applicable |
* This exam is a core, required exam in the CCNP Security certification path.
Migration to CCNP Security for Current CCSP Credential Holders
Depending on the exams taken, current CCSP holders may already be qualified for the CCNP Security credential. If all of the CCSP exams you pass match the corresponding exams in the CCNP Security path (see exams in Table 1), you’ll qualify automatically for a CCNP Security. In that case, Cisco will notify you that you’ve also earned the CCNP Security credential.
If you’re a CCSP credential holder who took an elective that doesn’t map to a CCNP Security certification, you must take additional exams to earn the CCNP Security cert.
Recertification Requirements
Both the CCSP and the CCNP Security certifications are valid for a period of three years. Recertification requires credential holders to pass one of the following exams:
- Any current 642-XXX exam
- Current CCIE written exam
- Current CCIE lab exam
- Cisco Certified Design Expert (CCDE) written exam
- CCDE lab exam
- Pass Architect interview and Architect board review
Because the CCSP is being phased out, Cisco recommends that new credential seekers obtain the CCNP Security and not the CCSP certification. One of the major complaints is that while some CCSP credential holders will be able to migrate to the CCNP Security credential easily, there is no single test or easy migration path for all CCSP credential holders. CCSP credential holders with the right combination of exams under their belts will be the real winners because they’re eligible for both the CCSP and CCNP Security certifications. Unfortunately, some CCSP credential holders may have to take additional exams to earn the CCNP Security credential. If you have questions about the CCSP or CCNP Security migration, consult the information in the Resources section below.
Resources
Frequently Asked Questions about the new CCNP Security credential