Editorial Policy

§ 01Our editorial mission

To provide accurate, neutral, comparative information about the CISSP and adjacent cybersecurity credentials so that security professionals can make informed certification decisions without sales pressure.

We do not sell training. We are not paid to recommend specific certifications. Our content is built to be useful first.

§ 02Sources we use

For factual claims — exam fees, requirements, domain weightings, maintenance policies, dates — we rely on primary issuer documentation. Specifically:

• CISSP, CCSP, SSCP, CC: ISC2 (isc2.org), official exam outlines, candidate handbook
• CISM, CISA, CRISC, AAIA, AAISM: ISACA (isaca.org)
• Security+, SecurityX: CompTIA (comptia.org)
• CEH, CCISO: EC-Council (eccouncil.org)
• OSCP: OffSec (offsec.com)
• CCNP Security: Cisco Learning Network (learningnetwork.cisco.com)
• SC-200: Microsoft Learn (learn.microsoft.com)
• PMP: Project Management Institute (pmi.org)

For salary data, we use the most recent ISC2 Cybersecurity Workforce Study, U.S. Bureau of Labor Statistics data, and aggregated job-market surveys, citing the source where relevant.

For news content, we link to named primary sources — original press releases, public filings, official announcements. We do not republish copyrighted material.

§ 03Update cadence

• Comparison pages are reviewed at least annually for exam fees, requirements, and policy changes. Significant changes (new exam version, fee increase, etc.) are updated within 30 days of issuer announcement.
• Pricing data is reviewed quarterly against issuer sites.
• Salary data is updated annually when the relevant workforce studies publish.
• News content is timestamped and not retroactively edited (except for corrections, which are noted on the page).

§ 04Author attribution

Articles are written under the byline of named authors. Where a piece is the work of an editorial team rather than a single author, we use the byline "CISSP Resource Center Editorial Team."

We do not use AI to generate published content without human review. Editorial staff review and edit any AI-assisted drafts for accuracy, voice, and factual integrity before publication.

§ 05Corrections policy

If you find a factual error on this site, please email us with the page URL and the specific issue. We aim to:

• Acknowledge correction requests within 5 business days
• Issue substantive corrections within 14 days of confirming the error
• Add a visible correction note to the affected page when the correction is material

Minor corrections (typos, broken links) are made silently. Material corrections (incorrect facts, outdated claims that misled readers) are noted on the page with a dated correction line.

To submit a correction, see our Contact page.

§ 06Conflicts of interest

We do not currently participate in any certification training affiliate programs. We do not accept compensation from certification issuers in exchange for coverage.

If this changes — for example, if we add affiliate links to training providers — that relationship will be disclosed both on the relevant page and in this policy. We will never accept compensation in exchange for biased coverage or for hiding negative information about a credential.

§ 07Trademark and fair-use stance

We reference trademarked certification names (CISSP, CISM, CISA, CRISC, CCSP, and others) for the purpose of accurate identification and comparison under nominative fair use. We do not claim affiliation with the trademark holders. All trademarks remain the property of their respective owners; see our Terms of Use for the full notice.

§ 08Independence statement

CISSP Resource Center is independently operated. We are not affiliated with ISC2, ISACA, CompTIA, EC-Council, OffSec, Cisco, Microsoft, PMI, or any other certification body referenced on this site. We do not receive funding, content, or editorial direction from any of these organizations.