The Certified Authorization Professional (CAP) is an information security professional who advocates for the management of security risks in search of authorization of the information system to support the mission and operations of an organization in accordance with legal requirements and regulatory.
The broad spectrum of topics included in the Common Knowledge Body (CBK) of the CAP guarantees its relevance in all disciplines in the field of information security. The selected candidates are competent in the following 7 domains:
Information Security Risk Management Program
Categorization of Information Systems (IS)
Selection of Security Controls
Implementation of Security Controls
Assessment of Security Controls
Authorization of Information Systems (IS)
Continuous Monitoring