What is a CISSP?
A CISSP is an independent information security specialist who is certified by the International Information System Security Certification Consortium (ISC)². A CISSP offers a minimum of five years of direct, full-time security work experience in at least two of the (ISC)² information security domains and can be found via Upwork.
How do you hire a CISSP?
You can source CISSP talent on Upwork by following these three steps:
- Write a project description. You’ll want to determine your scope of work and the skills and requirements you are looking for in a CISSP.
- Post it on Upwork. Once you’ve written a project description, post it to Upwork. Simply follow the prompts to help you input the information you collected to scope out your project.
- Shortlist and interview a CISSP. Once the proposals start coming in, create a shortlist of the professionals you want to interview.
Of these three steps, your project description is where you will determine your scope of work and the specific type of CISSP you need to complete your project.
How much does it cost to hire a CISSP?
Rates can vary due to many factors, including expertise and experience, location, and market conditions.
- An experienced CISSP may command higher fees but also work faster, have more-specialized areas of expertise, and deliver higher-quality work.
- A contractor who is still in the process of building a client base may price their CISSP services more competitively.
Which one is right for you will depend on the specifics of your project.
How do you write a CISSP job post?
Your job post is your chance to describe your project scope, budget, and talent needs. Although you don’t need a full job description as you would when hiring an employee, aim to provide enough detail for a contractor to know if they’re the right fit for the project.
Job post title
Create a simple title that describes exactly what you’re looking for. The idea is to target the keywords that your ideal candidate is likely to type into a job search bar to find your project. Here are some sample CISSP job post titles:
- Senior security administrator needed for FinTech company
- Certified security specialist wanted to oversee company’s risk management efforts
- Network security specialist needed to lead our security architecture program
Project description
An effective CISSP job post should include:
- Scope of work: From software development to overseeing risk management, list all the deliverables you’ll need.
- Project length: Your job post should indicate whether this is a smaller or larger project.
- Background: If you prefer experience with certain industries, certifications, or environments, mention this here.
- Budget: Set a budget and note your preference for hourly rates vs. fixed-price contracts.
CISSP job responsibilities
Here are some examples of CISSP job responsibilities:
- Develop and manage company’s security operations
- Establish security governance and risk management for Fortune 1000 company
- Oversee company’s business continuity and disaster recovery planning
CISSP job requirements and qualifications
Be sure to include any requirements and qualifications you’re looking for in CISSP. Here are some examples:
- Bachelor’s degree in IT or IS
- Minimum three years overseeing corporate risk management program
- Understanding of all required certifications for department security staff