(ISC)² Code Of Ethics

Posted: January 26, 2014 in Analysis
Tags: , ,

This is an interesting feeling came in to my mind while I’m a looking at the Official ISC2 guild to the CISSP CBK third edition. It’s about the code of ethics we have to adhere as CISSPs. We have code of ethics Preamble and four ethics canons.

Code of Ethics Preamble1:

  • The safety and welfare of society and the common good, duty to our principals, and to each other, requires that we adhere, and be seen to adhere, to the highest ethical standards of behavior.
  • Therefore, strict adherence to this Code is a condition of certification.

Code of Ethics Canons1:

  • Protect society, the common good, necessary public trust and confidence, and the infrastructure.
  • Act honorably, honestly, justly, responsibly, and legally.
  • Provide diligent and competent service to principals.
  • Advance and protect the profession.

It’s happened me to know in-depth of the canons, then I found a nice article on eHow.com by By Jennifer Gigantino. It explains above canons in details.

First Canon

The first canon of the (ISC)2 Code of Ethics is to “protect society, the commonwealth, and the infrastructure.” In short, CISSPs must promote public trust in information and systems, as well as the understanding of proper information security measures. They must also discourage unsafe information security practices and strengthen the integrity of the public infrastructure.

Second Canon

The second canon is to “act honorably, honestly, justly, responsibly, and legally.” CISSPs must tell the truth, as well as honor all commitments and agreements. Their advice must be given prudently and without unnecessary alarming. They must be objective and fair with those they deal with and in the advice they give, and when resolving laws in different jurisdictions, the laws of the current jurisdiction must take precedence.

Third Canon

The third canon is to “provide diligent and competent service to principals.” This means that CISSPs must avoid conflicts of interest while respecting the trust placed in them as well as the value of systems and information. CISSPs are also obligated to render services only when they are fully competent and qualified to do so.

Fourth Canon

The fourth canon is to “advance and protect the profession.” A CISSP must respect the reputations of other professionals and sponsor those best qualified for advancement. Conversely, a CISSP should avoid professional association with those who degrade the profession. Above all, a CISSP should keep his own skills and knowledge sharp and current while giving generously of his time and knowledge to others.

I hope this explains everything about what a CISSP can do and cannot do from the ethical prospective.


1 https://www.isc2.org/ethics/default.aspx


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s