Holistic Information Security Practitioner
This article has multiple issues. Please help improve it or discuss these issues on the talk page. (Learn how and when to remove these template messages)(Learn how and when to remove this template message)
The Holistic Information Security Practitioner certification course is an integration course that provides practical education on the integration of best practices for Information Security Management, Information Systems Auditing, and multiple Regulatory Compliance requirements as well as how to map multiple regulatory requirements to the internationally accepted framework of ISO/IEC 27002. The class introduces ISO/IEC 27002:2013, CobiT, COSO[disambiguation needed] and ITIL, and then explains a methodology to map regulations such as Data Protection Act 1998 (UK), EU Directive on Privacy, Basel II, HIPAA, U.S. Federal Financial Institutions Examination Council, GLB Act, FIPS 200, Sarbanes-Oxley, FACT Act, PCI Data Security, California SB 1386, OSFI, PIPEDA, PIPA, Canadian Bill C-168 to the ISO 27002 framework.
The Holistic Information Security Practitioner (HISP) Certification Course was originally authored by eFortresses, Inc.: an Atlanta, Georgia-based Cyber Security & Governance, Risk management and Compliance solutions company, specializing in Information Security and Regulatory Compliance. The training aspect of the HISP Certification Course was delivered by eFortresses and a number of authorized training partners including BSI Management Systems, currently the training and certification aspect is managed exclusively by the Holistic Information Security Practitioner Institute, an independently run organization.
The Holistic Information Security Practitioner Institute is also the oversight body of the Cloud Assurance Assessor Program (CAAP). The CAAP provides assurance of the qualifications for those purporting to have the necessary skills as independent Cloud Assessors.