ASIS International Board Certification Handbook

ASIS International
Board
Certification
Handbook
THE INFLUENCE
OF SECURITY
RISK MANAGEMENT
Understanding Security’s
Corporate Sphere of Risk Influence
ASIS International Board
Certification
Certification
Handbook
Handbook

ASIS INTERNATIONAL
CONTACT INFORMATION

ASIS is here to help! This handbook covers all the information on ASIS's
four certification programs. If you have questions after reviewing the
handbook, please contact the Certification Team at:

EMAIL: certification@asisonline.org

PHONE: +1 703.519.6200

WEBSITE: asisonline.org

ADDRESS:

ASIS International

1625 Prince Street

Alexandria, Virginia

22314-2882, USA

OFFICE HOURS: Monday through Friday,

9:00 am to 5:00 pm

Eastern Standard Time (except U.S.-based holidays).

2
 ASIS International Board
Certification
Certification
Handbook
Handbook

TABLE OF CONTENTS
ASIS International Board Certifications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6

ASIS Professional Certification Board (PCB). . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6

ASIS International Certification Programs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6

Certification vs. Certificate Programs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7

Why Choose an ASIS Certification?. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
Is ASIS Membership Required?. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
Which Certification Is Right for You? . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7

Eligibility Requirements for All Applicants. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8

Eligibility Requirement Changes in 2023 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

APP Board Certification in Security Fundamentals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10

APP Eligibility Requirements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10

APP Impact on Eligibility Requirements for Other ASIS Certifications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
APP Body of Knowledge. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10

CPP Board Certification in Security Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

CPP Eligibility Requirements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

CPP Body of Knowledge. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

PCI Board Certification in Investigations. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

PCI Eligibility Requirements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

PCI Body of Knowledge . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

PSP Board Certification in Physical Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30

PSP Eligibility Requirements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30

PSP Body of Knowledge. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30

Taking Remote Proctored Exams. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35

Applying for the Exams . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35

Application Documents You’ll Need. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35

Deadline Reminders. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35

3
 ASIS International Board
Certification
Certification
Handbook
Handbook

Application Fees. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

Fees for the CPP, PCI, and PSP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

Fees for the APP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
Refunds . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
Retesting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
Retest Fees for the CPP, PCI, and PSP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
Retest Fees for the APP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

Fee Adjustment Guidelines. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

Approval Notification from ASIS. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

Appealing a Decision . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

Scheduling Your Exam. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38

Making Your Exam Appointment. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38

Testing Accommodations for Candidates with Disabilities and Other Special Considerations . . . . . . . . 39
Extension Policies. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39
Cancellation Policy. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
“No Shows”. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40

On Exam Day . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41

Check-in at a Prometric Testing Center. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41

What to Bring and Not Bring to the Testing Center. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
Check-in for Remote Proctored Exams. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
Check-in ID Requirements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
During the Exam. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
Exam Results. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
Weather Emergencies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44

How Are the Exams Structured?. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44

Scoring the Exam . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44

Studying for the Exam . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45

Exam Preparation Resources. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45

Free Study Tools. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47

I Passed the Exam, Now What?. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47

Recertification. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47

4
 ASIS International Board
Certification
Certification
Handbook
Handbook

ASIS Application and Certificant Policies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47

Statement of Impartiality . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47

ASIS Certification Code of Professional Responsibility. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48

Attestation of Continued Eligibility for Certification . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48

Revocation of Certification. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49

Lifetime Designation. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50

Release of Candidate and Certificant Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51

ASIS Certificates. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51

Third-Party Intervention . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51

Filing a Complaint. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51

About Our Testing Partner . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51

5
 ASIS International Board
Certification
Certification
Handbook
Handbook

ABOUT THIS HANDBOOK

This handbook contains all the policies and proce- THE SAFETY ACT DESIGNATION
dures of ASIS’s four certification programs. All those
applying to take an ASIS certification exam must ASIS board-certified professionals, their employers,
agree to comply with the information contained in and their customers are protected from lawsuits
this manual. This handbook was updated 6 January involving the ASIS certification process that arise out
2025 and supersedes all previous versions. of an act of terrorism.

ASIS INTERNATIONAL BOARD ASIS PROFESSIONAL CERTIFICATION

CERTIFICATIONS BOARD (PCB)

ASIS International was the first organization to offer The ASIS certification programs are governed by
a credential specifically for security managers, and the Professional Certification Board (PCB). The PCB
our programs remain the global standard. Devel- establishes all policies related to the program includ-
oped by practitioners for practitioners, ASIS board ing eligibility requirements, exam content (body of
certifications provide you with a competitive edge. knowledge), and exam development. All PCB direc-
tors are CPP, PCI, PSP, and/or APP certified.
Distinguished by their global development and appli-
cation, ASIS certifications are transferable across all Directors of the PCB manage the certification pro-
industry sectors and geographic borders. The role grams by ensuring that standards are developed
and tasks of security managers are researched and and maintained, quality assurance is in place, and
documented to define each certification. In addition, the exams accurately reflect the duties and respon-
a job analysis is routinely conducted to ensure the sibilities of security professionals in the areas of
exams reflect current practices. security management, investigations, and physical
security. The PCB is a committee of the ASIS Global
Our requirements are demanding and consequent- Board of Directors. Directors of the PCB are chosen
ly, our certifications are held only by a distinguished through a nomination process. The board meets
group of professionals. Earning your CPP®, PCI®, PSP®, three times per year.
or APP® conveys to your peers, employees, and em-
ployer that you possess substantial, relevant experi-
ence as well as demonstrated and tested competence. ASIS INTERNATIONAL CERTIFICATION
PROGRAMS
AN INTERNATIONALLY RECOGNIZED,
GLOBALLY ACCREDITED PROGRAM Certification serves as a visible acknowledgment of
your demonstrated mastery of core security princi-
ASIS board certifications are developed and main- ples and skills essential to the best practice of securi-
tained through a rigorous process exemplified through ty management.
the program’s accreditation by the ANSI National
Accreditation Board (ANAB) against the International However, not all certifications are equal. To truly set
Organization for Standardization (ISO) 17024. yourself apart, you need a certification that encour-
ages professional growth. One that is globally recog-

6
 ASIS International Board
Certification
Certification
Handbook
Handbook

nized as the standard for professionalism. You need • Gain a competitive edge in job placement or
an ASIS board certification. advancement within your organization

By earning a CPP, PCI, PSP, or APP, your employer, • Realize deep personal satisfaction and profes-
clients, and colleagues will instantly recognize you as sional achievement
the “best of the best.” Earning an ASIS certification is
a milestone accomplishment that will help you reach • Broaden your knowledge base
your career goals.
• Keep updated on best practices
CERTIFICATION VS. CERTIFICATE PROGRAMS
• Achieve global recognition as a highly motivated
People are often unclear about the difference between expert in your field
a certification program and a certificate program. Both
programs promote the professional development of ASIS board-certified practitioners are leaders, willing
industry experts, but there are significant distinctions. mentors, and trusted strategic partners, serving
both their organizations and the profession.
Professional certification (such as the CPP, PCI, PSP,
and APP) is the voluntary process by which a third-par- Today, security professionals from 105 countries
ty organization grants a time-limited recognition and proudly maintain their ASIS board certifications.
use of a credential to an individual after verifying that
the individual has met predetermined and standard- IS ASIS MEMBERSHIP REQUIRED?
ized criteria, usually through eligibility requirements
and an exam. Most professional certification programs Membership to ASIS is not required; however, mem-
require that certificants recertify their designation after bers enjoy many advantages, including discounts on
a set amount of time to ensure they remain current all certification-related products and services includ-
and knowledgeable in the industry. ing exam fees, prep materials, study groups, and
more! And, once you get certified, as an ASIS mem-
A certificate program is a training program on a ber you will still receive discounts for your required
specialized topic for which participants receive a cer- continuing education credits. Before applying to take
tificate after completing the course. Some certificate an ASIS certification exam, become a member first.
programs require attendees to pass an assessment Right away, you’ll see the benefits!
of some kind to verify they’ve learned what the class
was teaching. Many certificate programs will provide WHICH CERTIFICATION IS RIGHT FOR YOU?
a “certificate of completion” at the end of the course.
ASIS offers a number of certificate programs, many ASIS offers four certifications for those in security-
of which can be used to acquire Continuing Profes- related fields:
sional Education (CPE) credits that can be used to
prepare for ASIS's certification programs or used to • Certified Protection Professional (CPP)
recertify your designation.
• Professional Certified Investigator (PCI)
WHY CHOOSE AN ASIS CERTIFICATION?
• Physical Security Professional (PSP)
• Elevate your professional stature and peer
recognition • Associate Protection Professional (APP)

7
 ASIS International Board
Certification
Certification
Handbook
Handbook

Some professionals hold one ASIS certification, some • Have been employed full time in a security-relat-
two, and some hold three (the APP cannot be held in ed role. Current employment is not required
conjunction with the CPP). Here is an overview of all
four programs: • Up to one year of internship experience can be
counted toward this requirement, provided it is
• The Certified Protection Professional (CPP) directly relevant to the certification and full time
program is designed for those who have demon- (internships can be unpaid for CPP, PCI, and PSP).
strated competency in all areas of security
management. • Not have been convicted of any felony criminal
offense that would reflect negatively on the secu-
• The Professional Certified Investigator (PCI) rity profession, ASIS, or the certification program.
program is designed for those whose respon-
sibilities include case management, evidence • Sign and agree to abide by the ASIS Certification
collections, and preparation of reports and testi- Code of Professional Responsibility (see pg. 48).
mony to substantiate findings.
• Agree to abide by the policies of the ASIS Certifi-
• The Physical Security Professional (PSP) pro- cation programs as described in this handbook
gram is designed for those whose primary and the ASIS Recertification Guide.
responsibility is to conduct threat surveys,
design integrated security systems that include ASIS certification exams are experienced-based.
equipment, procedures, and people, or install, Experience is defined as being personally engaged in
operate, and maintain those systems. security or loss prevention on a full-time basis or as
a primary duty. This includes:
• The Associate Protection Professional (APP)
program is designed for those with one or more a. E
 xperience as a security professional in the pro-
years of compensated security experience. tection of assets, in the public or private sector,
criminal justice system, government intelligence,
ASIS highly recommends reviewing the body of or investigative agencies.
knowledge for each program (outlined below). All
questions on the exams relate to one of the domains b. E
 xperience with companies, associations, govern-
listed in each program’s body of knowledge. Using ment, or other organizations offering services or
the body of knowledge, make an honest assessment products, including consulting firms, provided the
of your own experiences in each domain. Not only duties and responsibilities substantively relate to
will this help you decide which exam is right for you, the design, evaluation, and application of systems,
it will also help you structure your study needs. programs, or equipment, or development and
operation of services, for protection of assets in the
private or public sectors.
ELIGIBILITY REQUIREMENTS FOR
ALL APPLICANTS c. E
 xperience as a full-time educator on the faculty
of an accredited educational institution, provided
The following pages outline the eligibility require- the responsibilities for courses and other duties
ments and body of knowledge for each ASIS certifi- relate primarily to knowledge areas pertinent to
cation program. In addition to the specific eligibility the management and operation of protection of
requirements below, all applicants must: assets programs in the public or private sectors.

8
 ASIS International Board
Certification
Certification
Handbook
Handbook

ELIGIBILITY REQUIREMENT CHANGES a thorough review of the intended audience for the
IN 2023 APP, candidate data, and APP certification trends.
After the analysis, the PCB voted to change the ex-
(Updated 20 February 2024) In 2023, the PCB voted to perience requirement for the APP to require one or
reduce the eligibility requirements for the APP cer- more years of compensated security experience, no
tification program. These changes were made after higher education, effective 1 November 2023.

ELIGIBILITY REQUIREMENTS

APP* PSP PCI CPP

No Higher Education 1 year 5 (4) years 5 (4) years 7 (6) years

Bachelor's Degree 1 year 4 (3) years 4 (3) years 6 (5) years

Master's Degree 1 year 3 (3) years 3 (3) years 5 (4) years

Responsible Charge/Case Mgmt 0 years 0 years 2 years 3 years

Notes: Numbers in parentheses indicate requirements for those holding the APP.
*APP requires 1 year of compensated experience.

9
 ASIS International Board
Certification
Certification
Handbook
Handbook

ASSOCIATE PROTECTION PROFESSIONAL

APP BOARD CERTIFICATION IN SECURITY 2. The APP designation will be expired if a candidate
FUNDAMENTALS obtains the CPP (you cannot hold both designa-
tions at the same time).
ASIS International launched the Associate Protec-
tion Professional (APP®) certification program in 3. Those who are already PCI- and/or PSP-certified
2019, as part of ASIS International’s ongoing strategy will be eligible to take the APP exam (provided they
to offer professional development and educational meet the requirements of the individual program).
opportunities for professionals at all levels of the
security management field. 4. CPPs are not permitted to take the APP exam.

The Associate Protection Professional (APP®) desig- With With

nation is intended for those with one or more years CPP Master's Bachelor's No Degree
Degree Degree
of compensated security experience. If you have
already achieved another, approved, related certi- Current
experience 5 years 6 years 7 years
fication, you may be eligible to be approved for the required
APP with only six-months of compensated security
With an APP 4 years 5 years 6 years
experience. The exam will measure the profession-
al’s knowledge of security fundamentals, business With With
operations, risk management, and response man- PCI Master's Bachelor's No Degree
agement. (Updated 20 February 2024) Degree Degree
Current
APP ELIGIBILITY REQUIREMENTS experience 3 years 4 years 5 years
required

SECURITY EXPERIENCE EDUCATION With an APP 3 years 3 years 4 years

With With
Six months With approved, related
PSP Master's Bachelor's No Degree
Certification Degree Degree
Current
One year No higher education degree experience 3 years 4 years 5 years
required

With an APP 3 years 3 years 4 years

APP IMPACT ON ELIGIBILITY REQUIREMENTS FOR
OTHER ASIS CERTIFICATIONS
APP BODY OF KNOWLEDGE
The chart below shows how the eligibility require-
ments for the other ASIS certifications are altered for To be awarded the APP designation, a candidate
those holding the APP designation. must pass a comprehensive examination consisting
of approximately 125 multiple-choice questions.
1. Other eligibility requirements for the CPP, PCI, or The candidate will select one answer from the four
PSP still need to be met (e.g., responsible charge or choices offered. In total, there are 100 “live,” score-
case management). able questions and up to 25 pretest questions.
Knowledge in four major areas (domains) is tested.

10
 ASIS International Board
Certification
Certification
Handbook
Handbook

The importance of each domain, and the tasks, TASK 3: Develop and coordinate external rela-
knowledge, and skills within it, determines the tions programs with public sector law enforce-
specifications of the APP examination. The relative ment or other external organizations to achieve
order of importance of the domains determines the security objectives.
percentage of the total exam questions.
Knowledge of:

DOMAIN ONE 1. Roles and responsibilities of external organiza-

tions and agencies
SECURITY FUNDAMENTALS (35%)
2. Local, national, and international public/private
TASK 1: Implement and coordinate the organiza- partnerships
tion’s security program(s) to protect the organi-
zation’s assets. 3. Methods for creating effective working
relationships
Knowledge of:
TASK 4: Develop, implement, and coordinate em-
1. Security theory and terminology ployee security awareness programs.

2. Project management techniques Knowledge of:

3. Security industry standards 1. The nature of verbal and nonverbal communica-

tion and cultural considerations
4. Protection techniques and methods
2. Security industry standards
5. Security program and procedures assessment
3. Training methodologies
6. Security principles of planning, organization,
and control 4. Communication strategies, techniques,
and methods
TASK 2: Implement methods to improve the securi-
ty program on a continuous basis through the use 5. Security awareness program objectives
of auditing, review, and assessment. and metrics

Knowledge of: TASK 5: Implement and/or coordinate an investi-

gative program.
1. Data collection and intelligence analysis techniques
Knowledge of:
2. Continuous assessment and improvement pro-
cesses 1. Report preparation for internal purposes and
legal proceedings
3. Audit and testing techniques
2. Components of investigative processes

11
 ASIS International Board
Certification
Certification
Handbook
Handbook

3. Types of investigations (e.g., incident, miscon- 2. Protection personnel, technology, and processes
duct, compliance)
3. Regulations and standards governing or affect-
4. Internal and external resources to support inves- ing the security industry and the protection of
tigative functions people, property, and information

TASK 6: Provide coordination, assistance, and 4. Educational and awareness program design and
evidence such as documentation and testimony to implementation
support legal proceedings.
TASK 9: Conduct and/or coordinate an executive/
Knowledge of: personnel protection program.

1. Required components of effective documenta- Knowledge of:

tion (e.g., legal, employee, procedural, policy,
compliance) 1. Travel security program components

2. Evidence collection and protection techniques 2. Executive/personnel protection program

components
3. Relevant laws and regulations regarding re-
cords management, retention, legal holds, and 3. Protection personnel, technology, and processes
destruction practices (Note: No country-specific
laws will be on the APP exam) TASK 10: Develop and/or maintain a physical secu-
rity program for an organizational asset.
TASK 7: Conduct background investigations for
hiring, promotion, and/or retention of individuals. Knowledge of:

Knowledge of: 1. Resource management techniques

1. Background investigations and personnel 2. Preventive and corrective maintenance for

screening techniques systems

2. Quality and types of information and data sources 3. Physical security protection equipment, tech-
nology, and personnel
3. Criminal, civil, and employment law and
procedures 4. Security theory, techniques, and processes

TASK 8: Develop, implement, coordinate, and eval- 5. Fundamentals of security system design
uate policies, procedures, programs, and methods
to protect individuals in the workplace against TASK 11: Recommend, implement, and coordinate
human threats (e.g., harassment, violence). physical security controls to mitigate security risks.

Knowledge of: Knowledge of:

1. Principles and techniques of policy and proce- 1. Risk mitigation techniques (e.g., technology, per-
dure development sonnel, process, facility design, infrastructure)

12
 ASIS International Board
Certification
Certification
Handbook
Handbook

2. Physical security protection equipment, tech- DOMAIN TWO

nology, and personnel
BUSINESS OPERATIONS (22%)
3. Security survey techniques
TASK 1: Propose budgets and implement financial
controls to ensure fiscal responsibility.
TASK 12: Evaluate and integrate technology into
security program to meet organizational goals. Knowledge of:

Knowledge of: 1. Data analysis techniques and cost-benefit analysis

1. Surveillance techniques and technology 2. Principles of business management accounting,

control, and audits
2. Integration of technology and personnel
3. Return on investment (ROI) analysis
3. Plans, drawings, and schematics
4. Fundamental business finance principles and
4. Information security theory and systems financial reporting
methodology
5. Budget planning process
TASK 13: Coordinate and implement security pol-
icies that contribute to an information security 6. Required components of effective documenta-
program. tion (e.g., budget, balance sheet, vendor work
order, contracts)
Knowledge of:
TASK 2: Implement security policies, procedures,
1. Practices to protect proprietary information plans, and directives to achieve organizational
and intellectual property objectives.

2. Information protection technology, investiga- Knowledge of:

tions, and procedures
1. Principles and techniques of policy/procedure
3. Information security program components development
(e.g., asset protection, physical security, pro-
cedural security, information systems security, 2. Guidelines for individual and corporate behavior
employee awareness, and information de-
struction and recovery capabilities) 3. Improvement techniques (e.g., pilot programs,
education, and training)
4. Information security threats
TASK 3: Develop procedures/techniques to mea-
sure and improve departmental productivity.

13
 ASIS International Board
Certification
Certification
Handbook
Handbook

Knowledge of: 4. Generally accepted ethical principles

1. Communication strategies, methods, and 5. Guidelines for individual and corporate behavior
techniques
TASK 6: Provide advice and assistance in devel-
2. Techniques for quantifying productivity/metrics/ oping key performance indicators and negotiate
key performance indicators (KPI) contractual terms for security vendors/suppliers.

3. Project management fundamentals tools and Knowledge of:

techniques
1. Confidential information protection techniques
4. Principles of performance evaluations, 360 re- and methods
views, and coaching
2. Relevant laws and regulations
TASK 4: Develop, implement, and coordinate security
staffing processes and personnel development pro- 3. Key concepts in the preparation of requests for
grams in order to achieve organizational objectives. proposals and bid reviews/evaluations

Knowledge of: 4. Service Level Agreements (SLA) definition, mea-

surement, and reporting
1. Retention strategies and methodologies
5. Contract law, indemnification, and liability insur-
2. Job analysis processes ance principles

3. Cross-functional collaboration 6. Monitoring processes to ensure that organiza-

tional needs and contractual requirements are
4. Training strategies, methods, and techniques being met

5. Talent management and succession planning 7. Vendor qualification and selection process

6. Selection, evaluation, and interview techniques

for staffing DOMAIN THREE

TASK 5: Monitor and ensure a sound ethical cul- RISK MANAGEMENT (25%)
ture in accordance with regulatory requirements
and organizational objectives. TASK 1: Conduct initial and ongoing risk assess-
ment processes.
Knowledge of:
Knowledge of:
1. Interpersonal communication and feedback
techniques 1. Risk management strategies (e.g., avoid, as-
sume/accept, transfer, mitigate)
2. Relevant laws and regulations
2. Risk management and business impact analysis
3. Governance and compliance standards methodology

14
 ASIS International Board
Certification
Certification
Handbook
Handbook

3. Risk management theory and terminology (e.g., Knowledge of:

threats, likelihood, vulnerability, impact)
1. Business continuity standards
TASK 2: Assess and prioritize threats to address po-
tential consequences of incidents. 2. Emergency planning techniques

Knowledge of: 3. Risk analysis

1. Potential threats to an organization 4. Gap analysis

2. Holistic approach to assessing all-hazard threats TASK 6: Ensure pre-incident resource planning
(e.g., mutual aid agreements, tabletop exercises).
3. Techniques, tools, and resources related to inter-
nal and external threats Knowledge of:

TASK 3: Prepare, plan, and communicate how the 1. Data collection and trend analysis techniques
organization will identify, classify, and address risks.
2. Techniques, tools, and resources related to inter-
Knowledge of: nal and external threats

1. Risk management compliance testing (e.g., pro- 3. Quality and types of information and data sources
gram audit, internal controls, self-assessment)
4. Holistic approach to assessing all-hazard threats
2. Quantitative and qualitative risk assessments

3. Risk management standards DOMAIN FOUR

4. Vulnerability, threat, and impact assessments RESPONSE MANAGEMENT (18%)

TASK 4: Implement and/or coordinate recommended TASK 1: Respond to and manage an incident using
countermeasures for new risk treatment strategies. best practices.

Knowledge of: Knowledge of:

1. Countermeasures 1. Primary roles and duties in an incident com-

mand structure
2. Mitigation techniques
2. Emergency operations center (EOC) manage-
3. Cost-benefit analysis methods for risk treatment ment principles and practices
strategies
TASK 2: Coordinate the recovery and resumption
TASK 5: Establish a business continuity or continui- of operations following an incident.
ty of operations plan (COOP).

15
 ASIS International Board
Certification
Certification
Handbook
Handbook

Knowledge of: 2. Resource management techniques

1. Recovery assistance resources TASK 7: Coordinate and assist with evidence col-
lection for post-incident review (e.g., documenta-
2. Mitigation opportunities during response and tion, testimony).
recovery processes
Knowledge of:
TASK 3: Conduct a post-incident review.
1. Communication techniques and notification
Knowledge of: protocols

1. Mitigation opportunities during response and 2. Communication techniques and protocols of

recovery processes liaison

2. Post-incident review techniques TASK 8: Coordinate with emergency services

during incident response.
TASK 4: Implement contingency plans for com-
mon types of incidents (e.g., bomb threat, active Knowledge of:
shooter, natural disasters).
1. Emergency operations center (EOC) concepts
Knowledge of: and design

1. Short- and long-term recovery strategies 2. Emergency operations center (EOC) manage-
ment principles and practices
2. Incident management systems and protocols
3. Communication techniques and protocols
TASK 5: Identify vulnerabilities and coordinate of liaison
additional countermeasures for an asset in a de-
graded state following an incident. TASK 9: Monitor the response effectiveness to
incident(s).
Knowledge of:
Knowledge of:
1. Triage/prioritization and damage assessment
techniques 1. Post-incident review techniques

2. Prevention, intervention, and response tactics 2. Incident management systems and protocols

TASK 6: Assess and prioritize threats to mitigate TASK 10: Communicate regular status updates to
consequences of incidents. leadership and other key stakeholders through-
out incident.
Knowledge of:
Knowledge of:
1. Triage/prioritization and damage assessment
techniques 1. Communication techniques and protocols of
liaison

16
 ASIS International Board
Certification
Certification
Handbook
Handbook

2. Communication techniques and notification

protocols

TASK 11: Monitor and audit the plan of how

the organization will respond to incidents.

Knowledge of:

1. Training and exercise techniques

2. Post-incident review techniques

17
 ASIS International Board
Certification
Certification
Handbook
Handbook

CERTIFIED PROTECTION PROFESSIONAL

CPP BOARD CERTIFICATION IN SECURITY *Responsible charge means that the applicant has the
MANAGEMENT authority to make independent decisions and take
independent actions to determine operational meth-
The gold standard for more than 40 years, the odology and manage execution of a security-related
Certified Protection Professional (CPP®) credential project or process. This definition does not require the
provides demonstrable proof of knowledge and individual to supervise others and generally excludes
management skills in seven key domains of security. such positions as patrol officer or the equivalent.

Earning a CPP provides independent confirmation CPP BODY OF KNOWLEDGE

of your ability to assume leadership responsibilities
and effectively manage broad security concerns. To be awarded the CPP designation, a candidate
must pass a comprehensive examination consisting
CPP ELIGIBILITY REQUIREMENTS of approximately 225 multiple-choice questions.
The candidate will select one answer from the four
Candidates wishing to take the CPP examination choices offered. In total, there are 200 “live,” score-
must meet the following eligibility requirements: able questions and 25 pretest questions. Knowledge
in seven major areas (domains) is tested.
WORK EXPERIENCE
The importance of each domain, and the tasks,
Without a higher education degree: knowledge, and skills within it, determines the
specifications of the CPP examination. The relative
Seven years of security experience (or six years if order of importance of the domains determines the
you already hold an APP), with at least three years percentage of the total exam questions.
in responsible charge* of a security function

With a higher education degree: DOMAIN ONE

Master’s degree or international equivalent from SECURITY PRINCIPLES AND PRACTICES (22%)
an accredited institution of higher education and
five years of security experience (or four years if TASK 1: Plan, develop, implement, and manage
you already hold an APP), with at least three years the organization’s security program to protect the
in responsible charge* of a security function organization’s assets.

OR Knowledge of:

Bachelor’s degree or international equivalent 1. Principles of planning, organization, and control

from an accredited institution of higher education
and six years of security experience (or five years 2. Security theory, techniques, and processes (e.g.,
if you already hold an APP), with at least three artificial intelligence, IoT)
years in responsible charge* of a security function.
3. Security industry standards (e.g., ASIS/ISO)

18
 ASIS International Board
Certification
Certification
Handbook
Handbook

4. Continuous assessment and improvement 2. Methods for creating effective working

processes relationships

5. Cross-functional organizational collaboration 3. Techniques and protocols of liaison

6. Enterprise Security Risk Management (ESRM) 4. Local and national public/private partnerships

TASK 2: Develop, manage, or conduct the security TASK 5: Develop, implement, and manage work-
risk assessment process. force security awareness programs to achieve
organizational goals and objectives.
Knowledge of:
Knowledge of:
1. Quantitative and qualitative risk assessments
1. Training methodologies
2. Vulnerability, threat, and impact assessments
2. Communication strategies, techniques, and
3. Potential security threats (e.g., "all hazards," methods
criminal activity, terrorism, consequential)
3. Awareness program objectives and program
TASK 3: Evaluate methods to improve the security metrics
program on a continuous basis through the use of
auditing, review, and assessment. 4. Elements of a security awareness program (e.g.,
roles and responsibilities, physical risk, commu-
Knowledge of: nication risk, privacy)

1. Cost-benefit analysis methods

DOMAIN TWO
2. Risk management strategies (e.g., avoid, as-
sume/accept, transfer, spread) BUSINESS PRINCIPLES AND PRACTICES (15%)

3. Risk mitigation techniques (e.g., technology, per- TASK 1: Develop and manage budgets and financial
sonnel, process, facility design) controls to achieve fiscal responsibility.

4. Data collection and trend analysis techniques Knowledge of:

TASK 4: Develop and manage professional rela- 1. Principles of management accounting, control,
tionships with external organizations to achieve audits, and fiduciary responsibility
security objectives.
2. Business finance principles and financial reporting
Knowledge of:
3. Return on investment (ROI) analysis
1. Roles and responsibilities of external organiza-
tions and agencies 4. The lifecycle for budget planning purposes

19
 ASIS International Board
Certification
Certification
Handbook
Handbook

TASK 2: Develop, implement, and manage policies, 5. Principles of performance evaluations, 360 re-
procedures, plans, and directives to achieve orga- views, and coaching/mentoring
nizational objectives.
6. Interpersonal and feedback techniques
Knowledge of:
7. Training strategies, methodologies, and resources
1. Principles and techniques of policy/procedures
development 8. Retention strategies and methodologies

2. Communication strategies, methods, and 9. Talent management and succession planning

techniques
TASK 5: Monitor and ensure an acceptable ethical
3. Training strategies, methods, and techniques climate in accordance with regulatory require-
ments and organizational culture.
4. Cross-functional collaboration
Knowledge of:
5. Relevant laws and regulations
1. Governance standards
TASK 3: Develop procedures/techniques to mea-
sure and improve organizational productivity. 2. Guidelines for individual and corporate behavior

Knowledge of: 3. Generally accepted ethical principles

1. Techniques for quantifying productivity/metrics/ 4. Confidential information protection techniques

key performance indicators (KPI) and methods

2. Data analysis techniques and cost-benefit analysis 5. Legal and regulatory compliance

3. Improvement techniques (e.g., pilot/beta testing TASK 6: Develop performance requirements and
programs, education, training) contractual terms for security vendors/suppliers.

TASK 4: Develop, implement, and manage security Knowledge of:

staffing processes and personnel development pro-
grams in order to achieve organizational objectives. 1. Key concepts in the preparation of requests for
proposals and bid reviews/evaluations
Knowledge of:
2. Service Level Agreement (SLA) terms, metrics,
1. Interview techniques for staffing and reporting

2. Candidate selection and evaluation techniques 3. Contract law, indemnification, and liability insur-
ance principles
3. Job analysis processes
4. Monitoring processes to ensure that organiza-
4. Pre-employment background screening tional needs and contractual requirements are
being met

20
 ASIS International Board
Certification
Certification
Handbook
Handbook

DOMAIN THREE TASK 3: Manage or conduct surveillance processes.

INVESTIGATIONS (9%) Knowledge of:

TASK 1: Identify, develop, implement, and manage 1. Surveillance and countersurveillance techniques
investigative operations.
2. Technology/equipment and personnel to con-
Knowledge of: duct surveillance (e.g., Unmanned Aircraft Sys-
tems [UAS], robotics)
1. Principles and techniques of policy and proce-
dure development 3. Laws pertaining to managing surveillance processes

2. Organizational objectives and cross-functional TASK 4: Manage and conduct investigations requir-
collaboration ing specialized tools, techniques, and resources.

3. Types of investigations (e.g., incident, miscon- Knowledge of:

duct, compliance, due diligence)
1. Financial and fraud-related crimes
4. Internal and external resources to support inves-
tigative functions 2. Intellectual property and espionage crimes

5. Report preparation for internal/external purpos- 3. Crimes against property (e.g., arson, vandalism,
es and legal proceedings theft, sabotage)

6. Laws pertaining to developing and managing 4. Cybercrimes (e.g., distributed denial of service
investigative programs [DDoS], phishing, ransomware)

TASK 2: Manage or conduct the collection, pres- 5. Crimes against persons (e.g., workplace violence,
ervation, and disposition of evidence to support human trafficking, harassment)
investigative actions.
TASK 5: Manage or conduct investigative inter-
Knowledge of: views.

1. Protection/preservation of crime scene Knowledge of:

2. Evidence collection techniques 1. Interview and interrogation techniques

3. Requirements of chain of custody 2. Techniques for detecting deception

4. Methods for preservation/disposition of evidence 3. Nonverbal communication and cultural

considerations
5. Laws pertaining to the collection, preservation,
and disposition of evidence 4. Rights of interviewees

21
 ASIS International Board
Certification
Certification
Handbook
Handbook

5. Required components of written statements TASK 2: Develop, implement, manage, and evalu-
ate policies and procedures to protect individuals
6. Legal considerations pertaining to managing in the workplace against human threats (e.g.,
investigative interviews harassment, violence, active assailant).

TASK 6: Provide support to legal counsel in actual Knowledge of:

or potential criminal or civil proceedings.
1. Protection techniques and methods
Knowledge of:
2. Threat assessment
1. Statutes, regulations, and case law governing or
affecting the security industry and the protection 3. Prevention, intervention, and response tactics
of people, property, and information
4. Educational and awareness program design and
2. Criminal law and procedures implementation

3. Civil law and procedures 5. Travel security (e.g., flight planning, global
threats, consulate services, route selection, con-
4. Employment law (e.g., confidential information, tingency planning)
wrongful termination, discrimination, harassment)
6. Industry/labor regulations and applicable laws

DOMAIN FOUR 7. Organizational efforts to reduce employee sub-

stance abuse
PERSONNEL SECURITY (11% )
TASK 3: Develop, implement, and manage execu-
TASK 1: Develop, implement, and manage back- tive protection programs.
ground investigation processes for hiring, promo-
tion, and retention of individuals. Knowledge of:

Knowledge of: 1. Executive protection techniques and methods

1. Background investigations and personnel 2. Threat analysis

screening techniques
3. Liaison and resource management techniques
2. Quality and types of information sources (e.g.,
open source, social media, government databas- 4. Selection, costs, and effectiveness of proprietary
es, credit reports) and contract executive protection personnel

3. Screening policies and guidelines

4. Laws and regulations pertaining to personnel

screening

22
 ASIS International Board
Certification
Certification
Handbook
Handbook

DOMAIN FIVE 9. Labor-technology relationship

PHYSICAL SECURITY (16%) TASK 3: Assess the effectiveness of physical securi-

ty measures by testing and monitoring.
TASK 1: Conduct facility surveys to determine the
current status of physical security. Knowledge of:

Knowledge of: 1. Protection personnel, hardware, technology, and

processes
1. Security protection equipment and personnel
(e.g., Unmanned Aircraft Systems [UAS], robotics) 2. Audit and testing techniques (e.g., operation
testing)
2. Survey techniques (e.g., document review, check-
list, on-site visit, stakeholder interviews) 3. Predictive, preventive, and corrective maintenance

3. Building plans, drawings, and schematics

DOMAIN SIX
4. Risk assessment techniques
INFORMATION SECURITY (14%)
5. Gap analysis
TASK 1: Conduct surveys to evaluate current status
TASK 2: Select, implement, and manage physical of information security programs.
security strategies to mitigate security risks.
Knowledge of:
Knowledge of:
1. Elements of an information security program,
1. Fundamentals of security system design including physical security, procedural secu-
rity, information systems security, employee
2. Countermeasures (e.g., policies, technology, awareness, and information destruction and
procedures) recovery capabilities

3. Budgetary projection development process (e.g., 2. Survey techniques

technology, hardware, labor)
3. Quantitative and qualitative risk assessments
4. Bid package development and evaluation process
4. Risk mitigation strategies (e.g., technology, per-
5. Vendor qualification and selection process sonnel, process, facility design)

6. Testing procedures and final acceptance (e.g., 5. Cost-benefit analysis methods

commissioning, factory acceptance test)
6. Protection technology, security threats equip-
7. Project management techniques ment, and procedures (e.g., interoperability)

8. Cost-benefit analysis techniques 7. Information security threats

23
 ASIS International Board
Certification
Certification
Handbook
Handbook

8. Integration of facility and system plans, draw- 5. Ethical hacking and penetration testing tech-
ings, and schematics niques and practices

TASK 2: Develop policies and procedures to 6. Encryption and data-masking techniques (e.g.,
ensure information is evaluated and protected cryptography)
against vulnerabilities and threats.
7. Systems integration techniques (e.g., interop-
Knowledge of: erability, licensing, networking)

1. Principles of information security management 8. Cost-benefit analysis methodology

2. Information security theory and terminology 9. Project management techniques

3. Information security industry standards 10. Budget review process (e.g., system develop-
(e.g., ISO, PII, PCI) ment lifecycle)

4. Laws and regulations regarding records man- 11. Vendor evaluation and selection process
agement including collection, retention, legal
holds, and disposition practices (e.g., General 12. Final acceptance and testing procedures
Data Protection Regulation [GDPR], biometric
information) 13. Protection technology and forensic investigations

5. Practices to protect proprietary information 14. Training and awareness programs to mitigate
and intellectual property threats and vulnerabilities (e.g., phishing, so-
cial engineering, ransomware, insider threats)
6. Information protection measures including se-
curity processes, physical access systems, and
data management DOMAIN SEVEN

TASK 3: Implement and manage an integrated CRISIS MANAGEMENT (13%)

information security program.
TASK 1: Assess and prioritize threats to mitigate
Knowledge of: potential consequences of incidents.

1. Information security including confidentiality, Knowledge of:

integrity, and availability
1. Threats by type, likelihood of occurrence, and
2. Information security systems methodology consequences

3. Authentication techniques (e.g., multi-factor, 2. “All hazards” approach to assessing threats (e.g.,
biometrics) natural disaster, chemical, biological, radiologi-
cal, nuclear, explosives [CBRNE])
4. Continuous evaluation and improvement
programs 3. Cost-benefit analysis

24
 ASIS International Board
Certification
Certification
Handbook
Handbook

4. Mitigation strategies TASK 3: Respond to and manage an incident.

5. Risk management and business impact analysis Knowledge of:

methodology
1. Resource allocation
6. Business continuity standards (e.g., ASIS ORM.1,
ISO 22301) 2. Emergency operations center (EOC) manage-
ment principles and practices
TASK 2: Prepare and plan how the organization
responds to incidents. 3. Incident management systems and protocols

Knowledge of: TASK 4: Manage incident recovery and resumption

of operations.
1. Resource management techniques (e.g., mutual
aid agreements, MOUs) Knowledge of:

2. Emergency planning techniques 1. Resource management

3. Triage and damage assessment techniques 2. Short- and long-term recovery strategies

4. Communication techniques and notification pro- 3. Recovery assistance resources (e.g., mutual aid,
tocols (e.g., interoperability, common operating employee assistance program [EAP], counseling)
terms, emergency notification system)
4. Mitigation opportunities in the recovery process
5. Training and exercise techniques (e.g., tabletop
and full-scale exercises)

6. Emergency operations center (EOC) concepts

and design

7. Primary roles and duties in an Incident Com-

mand Structure (ICS) (e.g., information dissemi-
nation, liaison, Public Information Officer [PIO])

25
 ASIS International Board
Certification
Certification
Handbook
Handbook

PROFESSIONAL CERTIFIED INVESTIGATOR

PCI BOARD CERTIFICATION *Case management is defined as the coordination
IN INVESTIGATIONS and direction of an investigation using various disci-
plines and resources, the finding of which would be
The Professional Certified Investigator (PCI®) creden- assessed to establish the facts/findings of the inves-
tial provides demonstrable proof of knowledge and tigation as a whole, also defined as the management
experience in professional responsibility, investigative process of investigation.
techniques and procedures, and case presentation.
Certification is applicable to a wide range of spe-
Earning a PCI provides independent confirmation of cialized investigations, including:
specialized skills in security investigations, including
case evaluation and review of options for case man- Arson, child abuse, forensics, gaming, healthcare
agement strategies. It validates your ability to collect fraud, high-tech crime, insurance fraud, loss preven-
information through the effective use of surveil- tion, narcotics, property and casualty, threat assess-
lance, interviews, and interrogations. ment, white-collar crime, and workplace violence.

PCI ELIGIBILITY REQUIREMENTS PCI BODY OF KNOWLEDGE

Candidates wishing to take the PCI examination To be awarded the PCI designation, a candidate
must meet the following eligibility requirements: must pass a comprehensive examination consisting
of approximately 140 multiple-choice questions.
Without a higher education degree: The candidate will select one answer from the four
choices offered. In total, there are 125 “live,” score-
Five years of investigations experience (or four able questions and 15 pretest questions. Knowledge
years if you already hold an APP), including at least in three major areas (domains) is tested.
two years in case management*
The importance of each domain, and the tasks,
With a higher education degree: knowledge, and skills within it, determines the
specifications of the PCI examination. The relative
Master’s degree or international equivalent from order of importance of the domains determines the
an accredited institution of higher education and percentage of total exam questions.
three years of investigations experience, including
at least two years in case management* In 2022/2023, ASIS conducted a job analysis study to
ensure the PCI Body of Knowledge still represents
OR the knowledge and skills needed to be a successful
investigator. Exam questions regarding the new
Bachelor’s degree or international equivalent from information will start to appear on the exam in early
an accredited institution of higher education and 2024. (Updated 20 February 2024)
four years of investigations experience (or three
years if you already hold an APP), including at least The updated Body of Knowledge follows. To review
two years in case management* the approved changes, see the PCI Test Specifica-
tions (2023 JA Updates) document.

26
 ASIS International Board
Certification
Certification
Handbook
Handbook

DOMAIN ONE 2. Cost-benefit analysis

PROFESSIONAL RESPONSIBILITY (28%) 3. Procedural options

TASK 1: Analyze case for applicable ethical conflicts. 4. Case flow/investigative plan

Knowledge of: 5. Investigative methods

1. Nature/types/categories of ethical issues related TASK 4: Determine and manage investigative

to cases (e.g., attorney-client, conflict of interest, resources.
fiduciary, potential for dual role bias/discrimina-
tion, specific area competency) Knowledge of:

2. The role of applicable laws, regulations, codes, 1. Resource requirements (e.g., equipment, inter-
and organizational policies/administrative guide- nal and external liaisons, personnel)
lines in conducting investigations
2. Resource allocations (e.g., budget, time)
TASK 2: Assess case elements, strategies, and risks.
3. Case management practices (e.g., chain of cus-
Knowledge of: tody procedures, documentation requirements,
case closure)
1. Case categories (e.g., civil, cyber, criminal, inter-
nal, financial, workplace violence) TASK 5: Identify, evaluate, and implement investi-
gative process improvements.
2. Qualitative and quantitative analytical methods
and tools Knowledge of:

3. Strategic/operational analysis 1. Process improvement techniques (e.g., gap anal-

ysis, project management techniques)
4. Criminal intelligence analysis
2. Internal review (e.g., human resources, internal
5. Risk identification and impact liaisons, legal, management)

6. Stakeholder identification 3. External review (e.g., accreditation agency, exter-

nal liaisons, regulatory bodies)
TASK 3: Determine investigative goals and develop
strategy. 4. Investigative resources (e.g., administrative re-
cords, Open-Source Intelligence [OSINT])
Knowledge of:
5. Investigative tools (e.g., case management
1. Initial projected case type (e.g., administrative, software, data collection software, digital fo-
criminal) rensic software)

27
 ASIS International Board
Certification
Certification
Handbook
Handbook

DOMAIN TWO TASK 3: Collect and preserve evidence.

INVESTIGATIVE TECHNIQUES AND Knowledge of:

PROCEDURES (52%)
1. Sources of evidence (e.g., biological, digital,
TASK 1: Conduct surveillance by physical, behavioral, physical)
and electronic means.
2. Methods/procedures for collection of various
Knowledge of: types of evidence

1. Surveillance authorization and restrictions (e.g., 3. Methods/procedures for preservation of vari-

legal considerations, types of surveillance) ous types of evidence (e.g., biological, computer
operations, digital media)
2. Surveillance tools (e.g., analytics, equipment,
metadata, software, system logs) 4. Chain of custody considerations and require-
ments (e.g., physical, digital, biological)
3. Presurveillance activities (e.g., advance assess-
ment, logistics, planning, resources) TASK 4: Conduct research by physical, digital, and
electronic means.
4. Procedures for documenting surveillance activ-
ities (e.g., case management solutions, privacy Knowledge of:
concerns, secure storage)
1. Methods of research using physical, information
TASK 2: Conduct interviews of individuals. technology, and operational technology resources

Knowledge of: 2. Information sources (e.g., databases, digital me-

dia, government, open source, proprietary)
1. Interview types (e.g., subject, witness, person
of interest) 3. Methods of analysis of research results

2. Interview techniques 4. Research documentation (e.g., findings)

3. Special considerations (e.g., environment, inter- TASK 5: Collaborate with and obtain information
view subject's mental health, translator, in-per- from other agencies and organizations.
son vs. remote)
Knowledge of:
4. Indicators of deception (e.g., evasiveness, non-
verbal communication, word choice) 1. External information sources

5. Subject statement documentation (e.g., audio, 2. Liaison development and maintenance

video, written)
3. Liaison techniques (e.g., formal, informal)
6. Representation considerations (e.g., juvenile
advocacy, legal counsel, union representation) 4. Techniques for using and synthesizing external

28
 ASIS International Board
Certification
Certification
Handbook
Handbook

information (e.g., documented vs. undocument- DOMAIN THREE

ed, protecting sources and sensitivities, redacting)
CASE PRESENTATION (20%)
TASK 6: Use investigative techniques.
TASK 1: Prepare report to substantiate investiga-
Knowledge of: tive findings.

1. Legal, administrative, and organizational Knowledge of:

considerations
1. Critical elements and format of an investigative re-
2. Concepts, principles, and methods of video/ port (e.g., audience/legal considerations, address-
audio recordings ing privacy and confidentiality, types of report)

3. Concepts, principles, and methods of forensic 2. Investigative terminology

analysis (e.g., biological, digital, physical)
3. Logical sequencing of information
4. Concepts, principles, and methods of undercov-
er investigations TASK 2: Prepare and present testimony.

5. Concepts, principles, and methods of threat and Knowledge of:

risk assessments
1. Types of testimony (e.g., administrative hearings,
6. Concepts, principles, and methods of applying criminal and civil proceedings, depositions)
IT/OT technologies
2. Preparation for testimony (e.g., pre-trial rehearsal)
7. Use of confidential sources
3. Testimony best practices

29
 ASIS International Board
Certification
Certification
Handbook
Handbook

PHYSICAL SECURITY PROFESSIONAL

PSP BOARD CERTIFICATION IN PHYSICAL PSP BODY OF KNOWLEDGE
SECURITY
To be awarded the PSP designation, a candidate
The Physical Security Professional (PSP ) credential ®
must pass a comprehensive examination consisting
provides demonstrable proof of knowledge and ex- of approximately 140 multiple-choice questions.
perience in physical security assessment; application, The candidate will select one answer from the four
design, and integration of physical security systems; choices offered. In total, there are 125 “live,” score-
and implementation of physical security measures. able questions and 15 pretest questions. Knowledge
in three major areas (domains) is tested.
Earning a PSP demonstrates your expertise in con-
ducting physical security surveys to identify vulnera- The importance of each domain, and the tasks,
bilities and performing cost analysis for the selection knowledge, and skills within it, determines the
of integrated physical security measures. In addition, specifications of the PSP examination. The relative
it confirms your specialized knowledge in systems order of importance of the domains determines the
procurement, final acceptance testing, and imple- percentage of total exam questions.
mentation procedures.
In 2022, ASIS conducted a job analysis study to
PSP ELIGIBILITY REQUIREMENTS ensure the PSP Body of Knowledge still represents
the knowledge and skills needed to be a success-
Candidates wishing to take the PSP examination ful physical security manager. Only minor changes
must meet the following eligibility requirements: were made for better clarity and are noted below
in green. Exam questions regarding these updates
Without a higher education degree: started to appear in late 2023.

Five years of physical security experience (or four

years if you already hold an APP) DOMAIN ONE

With a higher education degree: PHYSICAL SECURITY ASSESSMENT (34%)

Master’s degree or international equivalent from Task 1: Develop a physical security assessment plan.
an accredited institution of higher education and
three years of physical security experience Knowledge of:

OR 1. Key area or critical asset identification

Bachelor’s degree or international equivalent from 2. Risk assessment models and considerations
an accredited institution of higher education and (e.g., inside-outward, outside-inward, site-specif-
four years of physical security experience (or three ic risk assessment, functional approach)
years if you already hold an APP)
3. Qualitative and quantitative assessment methods

30
 ASIS International Board
Certification
Certification
Handbook
Handbook

4. Types of resources and guidelines needed for Task 4: Conduct an assessment to identify and
the assessment (e.g., stakeholders, budget, quantify vulnerabilities of the organization.
equipment, policies, standards)
Knowledge of:
Task 2: Identify assets to determine their value,
criticality, and loss impact. 1. Relevant data and methods for collection (e.g.,
security survey, interviews, incident reports,
Knowledge of: crime statistics, personnel issues, issues experi-
enced by other similar organizations)
1. Definitions and terminology related to assets,
value, loss impact, and criticality 2. Effectiveness of current security technologies/
equipment, personnel, and procedures
2. The nature and types of assets (tangible
and intangible) 3. Interpretation of building plans, drawings, and
schematics
3. How to determine value for various types
of assets and business operations 4. Applicable standards/regulations/codes and
where to find them
Task 3: Assess the nature of the threats and haz-
ards so that the risk can be determined. 5. Environmental factors and conditions (e.g.,
facility location, architectural barriers, lighting,
Knowledge of: entrances) that impact physical security

1. The nature, types, severity, and likelihood of Task 5: Perform a risk analysis to develop counter-
threats and hazards (e.g., natural disasters, cyber, measures.
criminal events, terrorism, sociopolitical, cultural)
Knowledge of:
2. Operating environment (e.g., geography,
socioeconomic environment, criminal activity, 1. Risk analysis strategies and methods
existing security countermeasures, security
risk level) 2. Risk management principles

3. Potential impact of external organizations 3. Analysis and interpretation of collected data

(e.g., competitors, organizations in immediate
proximity) on facility's security program 4. Threat/hazard and vulnerability identification

4. Other internal and external factors (e.g., legal, 5. Loss event profile analyses (e.g., consequences)
loss of reputation, economic, supply chain) and
their impact on the facility's security program 6. Appropriate countermeasures related to spe-
cific risks

7. Cost-benefit analysis (e.g., return on investment

[ROI], total cost of ownership)

31
 ASIS International Board
Certification
Certification
Handbook
Handbook

8. Legal and regulatory considerations related to Task 2: Determine appropriate physical security
various countermeasures/security applications countermeasures.
(e.g., video surveillance, privacy issues, personally
identifiable information, life safety) Knowledge of:

1. Structural security measures (e.g., barriers, light-

DOMAIN TWO ing, locks, blast mitigation, ballistic protection)

APPLICATION, DESIGN, AND INTEGRATION OF 2. Crime prevention through environmental

PHYSICAL SECURITY SYSTEMS [35%] design (CPTED)

Task 1: Establish security program performance 3. Electronic security systems (e.g., access control,
requirements. video surveillance, intrusion detection)

Knowledge of: 4. Security staffing (e.g., officers, technicians, man-

agement, administration)
1. Design constraints (e.g., regulations, budget,
materials, system compatibility) 5. Personnel, package, and vehicle screening

2. Incorporation of risk analysis results in design 6. Emergency notification systems (e.g., mass noti-
fications, public address, two-way intercom)
3. Relevant security terminology (e.g., punch list,
field test) 7. Principles of data storage and management (e.g.,
cloud, on-premise, redundancy, retention, user
4. Relevant security concepts (e.g., CPTED, defense- permissions, personally identifiable information,
in-depth, the 4 Ds—deter, detect, delay, deny) regulatory requirements)

5. Applicable codes, standards, and guidelines 8. Principles of network infrastructure and physi-
cal network security (e.g., token ring, LAN/WAN,
6. Operational requirements (e.g., policies, proce- VPN, DHCP vs. static, TCP/IP)
dures, staffing)
9. Security audio communications (e.g., radio, tele-
7. Functional requirements (e.g., system capabili- phone, intercom, IP audio)
ties, features, fault tolerance)
10. Systems monitoring and display (e.g., control
8. Performance requirements (e.g., technical centers/consoles, central monitoring station)
capability, systems design capacities)
11. Primary and backup power sources (e.g., grid,
9. Success metrics battery, UPS, generators, alternative/renewable)

12. Signal and data transmission methods (e.g., cop-

per, fiber, wireless)

13. Visitor and vendor management policies

32
 ASIS International Board
Certification
Certification
Handbook
Handbook

Task 3: Design physical security systems and proj- 4. Criteria for evaluation of bids (e.g., cost, experi-
ect documentation. ence, scheduling, certification, resources)

Knowledge of: 5. Technical compliance criteria

1. Design phases (e.g., pre-design, schematic devel- 6. Ethics in contracting

opment, construction, documentation)
Task 2: Develop procurement plan for goods
2. Design elements (e.g., calculations, drawings, and services.
specifications, review, technical data)
Knowledge of:
3. Construction specification standards (e.g., Con-
struction Specifications Institute, owner’s equip- 1. Vendor evaluation and selection (e.g., inter-
ment standards, American Institute of Architects views, due diligence, reference checks)
[AIA] MasterSpec)
2. Project management functions and processes
4. Systems integration
3. Procurement process
5. Project management concepts
Task 3: Manage implementation of goods and
6. Scheduling (e.g., Gantt charts, PERT charts, services.
milestones, objectives)
Knowledge of:
7. Cost estimation and cost-benefit analysis of
design options (e.g., value engineering) 1. Installation and inspection techniques

2. Systems integrations
DOMAIN THREE
3. Commissioning
IMPLEMENTATION OF PHYSICAL SECURITY
MEASURES [31%] 4. Installation problem resolution (e.g., punch
lists)
Task 1: Outline criteria for pre-bid meeting.
5. Systems configuration management (e.g., as-
Knowledge of: built drawings)

1. Bid process (e.g., site visits, RFI, substitution 6. Final acceptance testing criteria (e.g., system
requests, pre-bid meeting) acceptance testing, factory acceptance testing)

2. Bid package types (e.g., RFP, RFQ, IFB, sole source) 7. End-user training requirements

3. Bid package components (e.g., project timelines,

costs, personnel, documentation, scope of work)

33
 ASIS International Board
Certification
Certification
Handbook
Handbook

Task 4: Develop requirements for personnel in- Task 5: Monitor and evaluate program throughout
volved in support of the security program. the system life cycle.

Knowledge of: Knowledge of:

1. Roles, responsibilities, and limitations of secu- 1. Maintenance of systems and hardware (e.g.,
rity personnel (including proprietary [in-house] preventative, corrective, upgrades, calibration,
and contract security staff) service agreements)

2. Human resource management (e.g., establish- 2. Warranty types (e.g., manufacturer, installation,
ing KPIs, performance review, improvement replacement parts, extended)
processes, recruiting, onboarding, progressive
discipline) 3. Ongoing system training (e.g., system upgrades,
manufacturer’s certification)
3. Security personnel professional development
(e.g., training, certification) 4. System evaluation and replacement process

4. General, post, and special orders

5. Security personnel uniforms and equipment

6. Security awareness training and education for

non-security personnel

34
 ASIS International Board
Certification
Certification
Handbook
Handbook

TAKING REMOTE PROCTORED EXAMS exam. Please allow approximately two to three
weeks for your application to be reviewed.
ASIS offers remote proctored exams that you can
take in the comfort of your home. The exams are Make sure the name you submit on your appli-
the same high caliber as they have always been but cation EXACTLY matches the name on your valid,
now you do not have to travel to a Prometric test government-issued photo ID. If they do not match,
center to sit for the exam. When you schedule your you will not be permitted to take the exam.
exam, you will decide whether to take the exam
at a Prometric test center or by using Prometric’s APPLICATION DOCUMENTS YOU’LL NEED
ProProctor option. And while there will be no differ-
ence in the exams themselves, there are additional • Unofficial transcription from an accredited insti-
technical requirements you must have if you select tution of higher education (if applicable)
the ProProctor exam delivery option.
• Resumé or CV detailing your work experience as
DUE TO FIREWALL SECURITIES, IT IS HIGHLY RECOM- it relates to the security industry and aligns with
MENDED THAT YOU DO NOT TAKE A REMOTE PROC- the domains of the certification exam for which
TORED EXAM ON YOUR COMPANY COMPUTER. you are applying
Please read the Technical Requirements and Other
FAQs and Know Before You Test information before • Names and contact information for three refer-
deciding which testing method is best for you. ences who can verify your work experience

Common problems encountered during a remote • Name of supervisor who can verify your
proctored exam include: employment

• Weak internet connection or bandwidth issues All foreign-language submissions must be accom-
panied with an English translation.
• Camera or microphone not working
DEADLINE REMINDERS
• Proper ID not provided to proctor
ASIS will send periodic reminders about deadlines
If your internet bandwidth is poor and you lose (e.g., scheduling an exam, requests for additional
internet connectivity and/or your webcam and information); however, meeting and adhering to
microphone are inoperable, and you are not able deadlines are ultimately the responsibility of the
to complete your exam, you will forfeit the exam applicant. ASIS cannot guarantee that you have
fee paid and will have to pay an exam retake fee in received and/or read any correspondence.
order to test within your one-year eligibility period.
(Updated 6 January 2025) Please make sure your contact information—espe-
cially your email address—is current in your online
account. Also, make sure to whitelist emails from
APPLYING FOR THE EXAMS certification@asisonline.org.

The certification application must be filled out on-

line. Once your application has been reviewed and
approved, you will receive an authorization to test
email with instructions on how to schedule your

35
 ASIS International Board
Certification
Certification
Handbook
Handbook

APPLICATION FEES Emerging Market 2: $490

ASIS exams are offered at Prometric test centers Note: All fees include a nonrefundable $160. (Up-
throughout the world or through Prometric’s Pro- dated 6 January 2025)
Proctor platform, which allows you to take the exam
at your home. ASIS study materials, which are recommended but
not required, must be purchased separately.
The ASIS Global Board of Directors has approved
special fees for those individuals who live in Emerg- REFUNDS
ing Markets, as identified by the World Bank.
If your application is cancelled or denied for any
View the list of countries identified as Emerging reason, you will receive a refund of your fee minus
Markets by the World Bank. a $160 nonrefundable processing fee. (Updated 6
January 2025)
To receive the member discount, please become
a member BEFORE submitting your certification No refunds will be issued 90 days after the applica-
application. tion approval date. (Updated 1 October 2024)

FEES FOR THE CPP, PCI, AND PSP RETESTING

(Updated 6 January 2025):
Candidates may only take the exam up to three
ASIS members: $580 times in their one-year eligibility period. In addition,
there must be 60 days between each testing date.
Emerging Market 1: $480 Those who fail the exam three times, or whose eligi-
bility period ends, may reapply by submitting a new
Emerging Market 2: $460 certification application. (Updated 6 January 2025)

Nonmembers: $910 Candidates paying the retesting fee will receive an

exam retake authorization email from ASIS after the
Emerging Market 1: $720 retake eligibility is in Prometric’s scheduling system.

Emerging Market 2: $680 Once the exam retake authorization email has been
received, a new exam appointment can be made.
FEES FOR THE APP (Updated 6 January 2025):
Retest fees are nonrefundable.
ASIS members: $300
RETEST FEES FOR THE CPP, PCI, AND PSP
Emerging Market 1: $270 (Updated 6 January 2025):

Emerging Market 2: $260 ASIS members and nonmembers: $480

Nonmembers: $620 Emerging Market 1: $360

Emerging Market 1: $510 Emerging Market 2: $330

36
 ASIS International Board
Certification
Certification
Handbook
Handbook

RETEST FEES FOR THE APP (Updated 6 January 2025): APPEALING A DECISION

ASIS members and nonmembers: $250 An appeal procedure is available to any individual
who has applied for or received an ASIS certification
Emerging Market 1: $240 and wants to contest any adverse decision. This policy
applies only to the procedural aspects of the creden-
Emerging Market 2: $220 tialing process. Those areas not subject to appeal are
further identified under the section heading “General
Principles Relating to Appeals” at the end of this sec-
FEE ADJUSTMENT GUIDELINES tion. Any individual who does not file a written request
for an appeal within the required time limit shall waive
ASIS certification and recertification fees shall be the right to appeal. Submitting an appeal will not result
evaluated every two years. in any discriminatory actions against the appellant.

Fee evaluation shall include consideration of vendor Throughout the certification process, individuals
contracts, United States inflation rates, and other op- may appeal certain decisions made by ASIS. Exam-
erational costs. Fee adjustments shall attempt to more ples of appeals include:
fully recover certification and recertification operating
costs, maintain or improve application processing and • Decisions regarding eligibility
customer service metrics, while minimizing impact on
candidates and certificants. (Updated 1 October 2024) • Eligibility time limits

• Recertification CPE interpretations

APPROVAL NOTIFICATION FROM ASIS
• Criminal convictions
If you are approved to take an ASIS certification
exam, an authorization to test email will be emailed • Unauthorized use
to you. This letter will include:
To appeal a decision regarding your certification, the
• Your eligibility ID (ASIS ID), which you’ll need to following is required:
schedule your exam date
• Appeals must be submitted within 30 days of an
• Instructions for scheduling your exam applicant receiving notification of an adverse de-
cision, with day one as the date of the applicant’s
• Studying suggestions notification email.

You have one year and up to three attempts from • A letter must be submitted explaining actions
the date of authorization to test email to take and being appealed to certification@asisonline.org.
pass your exam before you must reapply by sub-
mitting a new certificaiton application. (Updated 6 • Appeals must be addressed to the PCB
January 2025) Certificant Relations Committee.

Remember the name on your IDs must exactly • Appeals must identify the adverse decision
match the name on your authorization to test email. being appealed and state the reasons for
the appeal. Any new or additional informa-

37
 ASIS International Board
Certification
Certification
Handbook
Handbook

tion for consideration should be included • The passing score of the exam cannot
in the letter. be appealed.

PCB Certificant Relations Appeal Process

SCHEDULING YOUR EXAM
• Once the written appeal has been received, the
ASIS Certification Team will log the appeal in the After you receive your authorization to test email
appropriate database. from ASIS, you will go to the Prometric website to
schedule your exam.
• The appeal will be evaluated by the Certification
Director for compliance with ASIS appeal sub- There are two ways to take your exam. You will have
mission policies. the option to:

• The appeal and related materials will be for- 1. Take the exam in a Prometric testing center. OR
warded to the PCB Certificant Relations Commit-
tee for a decision. The committee will make its 2. Take the exam through Prometric’s remote
best effort to make a decision within 90 days of proctored ProProctor platform using your own
receipt of the appeal. ASIS may have this deci- computer (company-owned computers are not
sion reviewed by legal counsel prior to being recommended). If you choose to take the exam
sent to appellant. using ProProctor, please make sure you can
meet these technical requirements.
• The appeal decision will be recorded and logged
into the appeals tracking spreadsheet and in the ASIS exams are offered year-round. You will not be
appellant’s online record. able to schedule your exam until you have been
approved to take the exam and have received the
• Whenever possible, the appellant will receive authorization to test email.
progress reports of the process and will be no-
tified in writing of the decision of the PCB Certif- MAKING YOUR EXAM APPOINTMENT
icant Relations Committee and the reasons for
that decision within 30 days of the review. Online scheduling

• The committee’s decisions are final and may not Whether you would like to test in a test center or
be appealed. remote proctored, your exam appointment can be
scheduled online at prometric.com/asis
General Principles Relating to Appeals
You will be asked for:
• Appeals will be considered for hardships as out-
lined in the ASIS Extension Policies. • Your ASIS ID, which can be found on your autho-
rization to test email
• Appeals will be considered if the appellant feels
ASIS staff made an error in the application review. • The first four letters of your last (sur) name

• ASIS eligibility requirements as well as the oth-

er policies of the certification program cannot
be appealed.

38
 ASIS International Board
Certification
Certification
Handbook
Handbook

Scheduling by Phone TESTING ACCOMMODATIONS FOR CANDIDATES

WITH DISABILITIES AND OTHER SPECIAL CON-
Prometric: +1.800.699.4975, Monday – Friday, 8:00 am SIDERATIONS
– 8:00 pm (EST) and Saturday 8:00 am – 4:00 pm (EST)
All ASIS programs comply with the Americans
Prometric will help you select the optimal test date with Disabilities Act and are non-discriminatory. If
and location (testing center or remote proctored), specific testing arrangements are needed due to a
and answer questions about the testing process. disability condition, candidates may request special
accommodations by checking the “Disabled/Special
Candidates will be given a confirmation number to Access Required” on the online application and ex-
bring to the testing center at the time of the exam. plaining the accommodation needed in the text box
When scheduling a remote proctored exam, you will provided when completing their application. Spe-
need to have this confirmation number available. cial testing accommodations must be approved
by ASIS prior to scheduling your exam. You will be
Confirmation Email from Prometric required to provide documentation before ASIS
can approve your request. Requests are reviewed
Once your exam appointment is confirmed, Pro- and approved on a case-by-case basis.
metric will send you an email with your exam date,
time, location (test center or remote proctored), and EXTENSION POLICIES
unique 16-digit confirmation number. Make sure to
print out this letter and bring it with you on testing ASIS does not grant extensions due to job de-
day along with two forms of identification, one of mands, company budgets, employment status,
which must be a valid, government-issued photo ID personal finances, changes in marital status,
(such as a passport or driver’s license, employee ID changes in mailing address, and other personal or
card, or state ID card). Acceptable forms of second- professional reasons. Extensions may be granted
ary ID include credit card, check card, or ATM card if there is a severe hardship such as a major med-
and all must have the candidate’s signature. (Social ical emergency in the immediate family, a natural
Security cards and military IDs are not an acceptable disaster, or active military duty and deployment
form of identification.) into a remote or hazardous area, or in certain
circumstances, such as childbirth, adoption, or ac-
Choosing Your Exam (English or Spanish) ceptance of a child in foster care. The applicant or
certificant is required to provide documentation of
The CPP, PCI, PSP, and APP exams are administered extenuating circumstances (e.g., doctor’s note or
in English and Spanish. For the Spanish-language other appropriate proof of circumstance). Military
exams, you are also given an English translation. personnel will need to verify their deployment
During the online application process, you will status by submitting a copy of official deployment
choose the language for your exam (English or Span- orders. This does not apply to individuals who
ish). Those who select a Spanish-language exam will are military contractors. Severe hardship must be
be assigned a Spanish-speaking proctor. documented and verifiable. ASIS certification can-
didates and certificants who wish to utilize an ex-
tension should contact the ASIS certification team
no later than 60 days before eligibility end date or
certification end date. Certificant extensions will
only be considered if, at time of extension applica-
tion, the certificant has completed 50% or more of

39
 ASIS International Board
Certification
Certification
Handbook
Handbook

the required CPE credits for their current certifica- • Candidates cannot reschedule three or less
tion cycle. Recertification use case example: days before their scheduled testing date.

Current Certification Cycle: 1 May 2021 – 31 May 2024 All rescheduling or cancellation fees are to be made
directly through Prometric.
• Six-month cycle extension: 30 November 2024 to
earn and report CPE If a candidate is a “no show” and does not adhere to
the above procedures, the full candidate testing fee
• New Certification Cycle for next cycle: 1 December is forfeited. You may schedule a new exam and pay
2024 – 31 December 2027 the retest fee.

In times of crises that affect many people at one Cancellation policies apply to both test center and
time (e.g., pandemic, national emergencies, natural remote proctored exams. Prometric makes NO
disasters), extension policies may be modified in the exceptions to this rule.
short term. All affected by the crisis will be notified
of the policy changes. (Updated 20 February 2024) “NO SHOWS”

CANCELLATION POLICY If you fail to cancel or reschedule your exam and you
do not take the exam on the scheduled day, you will
Note: Cancellation policies apply to both test cen- be considered a “no show” and all testing fees will
ter and remote proctored exams. be forfeited. ASIS understands that emergencies do
happen. If you do not appear for your exam for any
Due to frequent cancellations and short notification of the following reasons, you will have 14 days from
rescheduling, Prometric has indicated that there your scheduled appointment day to provide the doc-
may be inadequate capacity. Managing the process umentation below and reschedule your exam:
of scheduling and rescheduling appointments is crit-
ical to ensure that all candidates can obtain a testing DEATH IN THE IMMEDIATE FAMILY
appointment on the date and time requested.
• Death certificate or doctor’s note, which must be
To provide a first-choice experience for all candi- signed by a licensed physician or mortician and
dates, Prometric will charge a reschedule/cancella- include contact information
tion fee. This fee will be assessed either at Promet-
ric.com/ASIS if the candidate reschedules or cancels SERIOUS INJURY OR DISABLING INJURY (TO
online, or via phone +1.800.699.4975 through YOURSELF OR IMMEDIATE FAMILY MEMBER)
Prometric’s customer service.
Doctor’s note, with date of medical visit. The docu-
If a candidate reschedules or cancels: mentation:

• 31 or more days before the scheduled test day, • Should explain that the onset of the illness or
there is no charge. injury was 24 hours before the exam

• Four to 30 days before the scheduled test day, • Must be signed by a licensed physician and in-
there is a fee of $62.50 per reschedule. clude contact information

40
 ASIS International Board
Certification
Certification
Handbook
Handbook

• Does not need to include details of the illness or in a locker during the exam, so please limit what you
emergency, but the doctor should indicate that the bring to the testing center.
condition prevented the candidate from testing
Jewelry outside of wedding and engagement rings
COURT APPEARANCE OR JURY DUTY is prohibited and all hair accessories are subject to
inspection. Please refrain from using ornate clips,
• Court or jury summons or subpoena, which must combs, barrettes, headbands, and other hair acces-
include date and your name sories as you may be prohibited from wearing them
in the testing room and asked to store them in your
MILITARY DUTY locker. Violation of security protocol may result in con-
fiscation of prohibited devices and filing a report with
• Duty letter, which must include date and local authorities.
your name
CHECK-IN FOR REMOTE PROCTORED EXAMS
ASIS reserves the right to request additional evidence
to support your reason for failing to appear. If ASIS and Candidates testing with a remote proctored exam
Prometric accept the explanation, you will be permit- should make sure to allow 15 minutes to prepare your
ted to schedule a new appointment within your eligibil- testing environment. Please note that bathrooms/
ity period without paying the rescheduling fee. restrooms are NOT acceptable testing environments
(Updated 6 January 2025). Due to increased security
protocols, we strongly recommend NOT taking the
ON EXAM DAY exam on a company-owned computer.

No matter whether you are taking the exam at a test- Check-in for remote proctored exams is a two-
ing center or taking it through remote proctoring, you step process:
will be required to follow specific check-in procedures.
STEP ONE—CHECKING YOUR IDENTIFICATION
CHECK-IN AT A PROMETRIC TESTING CENTER
Image Capture—Using the ProProctor software, you
Plan to arrive at the testing center 30 minutes before will take and capture a picture of your face.
the scheduled appointment to allow time for check-in
procedures. If you will be driving, identify in advance ID Capture—Next, you will capture a photo of your ID
the exact location, the best route, and where to park. (see Check-in ID Requirements for acceptable ID). For
those taking the exam remotely, you will only need one
If you arrive more than 15 minutes late, Prometric form of ID.
Testing Center staff may choose not to seat you if do-
ing so would disrupt other exam takers. If this occurs, Checklist—You will review the checklist on screen to
your exam registration fees will not be refunded. ensure you are ready to launch the exam.
There are no exceptions to this rule.
STEP TWO—MEET YOUR PROMETRIC READINESS
WHAT TO BRING AND NOT BRING TO THE TESTING AGENT
CENTER
Candidate Detail Confirmation—You will have a
For test security reasons, all personal items such as video chat with the agent to confirm your personal
purses, book bags, cell phones, etc., must be placed information.

41
 ASIS International Board
Certification
Certification
Handbook
Handbook

360 Environmental Check—Using your webcam, present a passport, driver’s license, or national ID.
you will show the agent a 360-degree scan of your Expired IDs and military IDs will not be accepted.
room and your workstation. You’ll need a medium/
large hand-held mirror so the Readiness Agent can If you fail to bring/have the proper identification,
see your computer, if your computer does not have you will not be allowed to take the exam and will
an external webcam. NOTE: DO NOT HAVE YOUR forfeit the exam fee.
LAPTOP HOOKED TO A DOCKING STATION.
SECURITY MEASURES AT TESTING CENTER
Candidate Person Check—Your Readiness Agent
will ask you to stand up to do a scan of your person. Prometric testing center staff are not allowed to
This scan will include—but is not limited to—con- pat down a candidate during the check-in process
ducting a sleeve, pocket, and glasses check. Addi- and they will use a security wand (similar to those
tionally, you will be asked to turn all pockets inside used at airports) to check candidates for any type
out. NOTE: EMPTY YOUR POCKETS BEFORE START- of cheating devices. This is in addition to having the
ING THE CHECK-IN PROCESS. candidates turn their pockets inside out.

CHECK-IN ID REQUIREMENTS • The performance of all candidates is monitored

and may be analyzed to detect fraud. Candidates
You must have the following items, or you will not be who violate security measures will not have their
allowed to take the exam: exam scores validated by ASIS.

Two forms of identification are required at the • If you offer or receive help during the exam, you
test center (only one form of ID is needed for will be escorted from the testing center and re-
those taking the exam remotely), one of which ported to the PCB. Your exam will not be scored,
must be a valid, government-issued photo ID (such exam fees will not be refunded, and you will be
as a passport, driver’s license, employee ID card, prohibited from taking the exam again.
or state ID card). Acceptable forms of secondary ID
include credit card, check card, or ATM card and • All exam materials, including all questions and
all must have the candidate’s signature. (Social Se- all forms of the exam, are copyrighted and
curity cards and military IDs are not an acceptable the property of ASIS. Any distribution of these
form of identification.) materials through reproduction or oral or writ-
ten communication is strictly prohibited and
Only your first and last/surname on your approv- punishable by law.
al letter from ASIS and identifications must match
EXACTLY or you may NOT be permitted to test. This SOUND DISTRACTIONS ALTERNATIVES
includes abbreviated or hyphenated names.
Candidates can bring their own small earplugs
Prometric Confirmation Email and Number (from to the center with them. You must present the
the email you get from Prometric when you sched- ear plugs to the test center proctors for examina-
ule your exam). tion before entering the testing room. Note that
candidates may not bring their own large head-
If you are testing outside your country of citizen- phone-style noise reducers without accommoda-
ship, you must present a valid passport. If you tion approved in advance.
are testing in your country of citizenship, you may

42
 ASIS International Board
Certification
Certification
Handbook
Handbook

Candidates may opt to use the noise-reducing head- YOUR REMOTE SETTING MUST MEET THE
phones available at some Prometric sites. These are FOLLOWING REQUIREMENTS:
large “airport”-style headphones and may be uncom-
fortable when worn for a long period. There are no • Testing location must be indoors (walled),
small earplug-type noise reducers available at Pro- well lit, and free from background noise and
metric centers. disruptions.

Eating, drinking (except water), and smoking are • No third party may be present in the room or
not permitted during the exam. If you wish to have enter the room for the duration of the exam. If
water during your exam appointment, it must be in this occurs, your exam will be terminated and/or
a clear container with a lid/cap. No labels or other your results invalidated.
decorations are permitted on the bottle. Your water
bottle will be inspected as part of the check-in • Your workstation and surrounding area must be
process. If you bring a jacket or sweater, you will be free of pens, paper, electronic devices, etc.
required to wear it at all times in the testing room.
Visitors are not allowed in the test center, and • Two tissues are permitted at the workstation but
childcare is not provided. must be inspected by the proctor prior to the
start of the exam.
DURING THE EXAM
• Review the ProProctor User Guide (prometric.
Once you have completed the check-in process, com) for additional information.
you will be assigned to a testing station or a re-
mote proctor. A 15-minute onscreen tutorial will orient you to
the features of the computer testing environment.
AT A TESTING STATION When you have completed the tutorial, you will
start the exam.
• You will be provided with erasable note boards
and dry erase markers. TEST-TAKING TIPS

• No scratch paper, dictionaries, books, notes, • Relax! Reducing physical stress will help you be
or other personal aids are permitted in the more alert.
testing area.
• Find the right work pace. Don’t rush or go too
• To use the restroom, candidates must notify the slowly. Find a pace that is comfortable.
test center administrator (TCA) or remote proc-
tor; however, if you take a break, the time clock • Follow the directions and work carefully.
on the exam is not stopped. This is considered
an unscheduled break. • Read all the options for each question before
marking the answer.
• No breaks are scheduled.
• Skip difficult questions. You can mark questions
• No conversation about the test is permitted with to come back to later. If you’re still not sure, make
the TCA, proctors, or other test takers. an informed guess.

43
 ASIS International Board
Certification
Certification
Handbook
Handbook

• Both unanswered questions and wrong answers one of which will be correct. Following are the
are counted as wrong responses. Your score is number of exam items (questions) per exam and
based on the total number of correct responses. the maximum time you are permitted to complete
and submit the exam:
• Keep an eye on the exam timer (on your screen).
If you do not submit your exam before your time • CPP – 200 “live” (scored) and 25 pretest (un-
is over, the exam will automatically shut off when scored) items. Four hours.
the time runs out.
• PSP – 125 “live” (scored) and 15 pretest (unscored)
EXAM RESULTS items. Two and a half hours.

Once you submit your exam, preliminary exam results • PCI – 125 “live” (scored) and 15 pretest (unscored)
will be emailed to the email address you provided items. Two and a half hours.
to Prometric (allow up to five hours to receive this
email). Official verification of your score will be sent to • APP – 100 “live” (scored) and 25 pretest (un-
you by ASIS approximately three weeks after you take scored) items. Two hours.
the exam. You can also go to Prometric’s website to
retrieve your score report (you will be asked for your There will be a timer on your computer screen show-
confirmation number and last name). ing how much time you have left. Please make sure
that you have answered all the items. Any unan-
POST-EXAM SURVEY swered items will be marked incorrect.

When you receive your official score report from SCORING THE EXAM
ASIS, you will be provided with a link to complete
a post-administration survey about your testing All ASIS exams use the “scaled score” method to
experience. This is your opportunity to tell both ASIS determine the passing point of each exam. Before a
and Prometric about your testing experience. Your question is presented on the exam, it is pretested. This
comments will have no bearing on your exam score. allows Prometric’s psychometricians to weigh the per-
ASIS uses the results of this survey to enhance our formance of each question and its level of difficulty.
certification procedures.
Individual questions are given a weighted/scaled
WEATHER EMERGENCIES score based on level of difficulty. A scaled score is
a transformed raw exam score (the number of
If severe weather, natural disaster, or other such in- exam questions answered correctly). To interpret
cidents make a testing center inaccessible or unsafe, any exam score, a uniform frame of reference is
the exam may be rescheduled or cancelled (at no cost required. Scaled scores provide that frame of refer-
to the candidate). To check on your testing center, ence and indicate the same level of performance re-
please check the Prometric site closure website at gardless of the specific exam version taken. A scaled
https://www.prometric.com/closures. score transforms a raw exam score (the number of
exam questions answered correctly) into a consis-
tent and standardized scale. ASIS scaled scores are
HOW ARE THE EXAMS STRUCTURED? based on the standard adopted by ASIS regarding
the level of knowledge necessary to pass the exams.
All ASIS certification exams are multiple choice. A scaled score of at least 650 is required to pass
You will be provided four possible answers, only ASIS examinations. A scaled score is neither the

44
 ASIS International Board
Certification
Certification
Handbook
Handbook

number of questions you answered correctly nor the • ASIS offers many study opportunities for each
percentage of questions you answered correctly. exam. Visit our Education section of the asison-
line.org website for more information.*
The passing score was established via a systematic
procedure (standard setting) that employed the • Many ASIS Chapters offer study groups.
judgment of a representative group of ASIS-certified
professionals with the assistance of exam develop- *ASIS does not guarantee success on the exams be-
ment experts from Prometric. This group of subject cause you study using ASIS preparatory materials.
matter experts recommended a standard to the ASIS
PCB for what a minimally competent security pro- EXAM PREPARATION RESOURCES
fessional needs to know about the tested content
to obtain a passing score. Each item on the comput- ASIS offers a number of resources to help you study
er-based test is electronically scored using a verified for your board certification (costs are not included
key or correct response option. Electronic scoring in the application fees). Candidates are encouraged
reduces scoring errors and therefore it is virtually to refer to the following reference materials as they
impossible for your exam score to be incorrect. are preparing for the CPP, PCI, PSP, or APP examina-
Multiple-choice exams taken by computer-based tions. After carefully reviewing the domains of study
testing are therefore not eligible for a hand score. and identifying individual learning needs, candidates
(Updated 20 February 2024) may use additional references and study opportuni-
ties as necessary.

STUDYING FOR THE EXAM CERTIFIED PROTECTION PROFESSIONAL

ASIS certification exams are experience-based. The Protection of Assets (POA) and set of ASIS Standards
Therefore, the more hands-on experience you have and Guidelines comprise the CPP reference material.
related to the body of knowledge, the more success- Each is available for individual purchase or as a set.
ful you’ll be on the exam. Everybody has a different
studying preference: Some like to study by them- Protection of Assets (POA)
selves, and others prefer a group study approach.
ASIS does not require any one method of studying POA is a comprehensive reference covering a range
but we do offer the following recommendations. of technical and managerial subjects providing the
solutions necessary to meet the security demands of
Start with the body of knowledge. Read each domain the 21st century. The POA was updated in June 2021.
carefully and make an honest assessment of your
own experience. This will help you decide where you • e-Book (bundle)
need to concentrate your studying efforts.
• Print (bundle)
• If you need help, use the ASIS Self-Assessment
for CPP, PCI, PSP, and APP Exams. ASIS STANDARDS & GUIDELINES

• ASIS also offers Reference Sets for each certifi- ASIS Standards set forth industry-recommended best
cation. Our item writers and reviewers use these practices on specific concerns inherent to the security
same materials to reference the correct answers industry and provide tools and processes for imple-
on our exams.* mentation. Along with the POA, these seven stan-
dards and guidelines make up the CPP reference set.

45
 ASIS International Board
Certification
Certification
Handbook
Handbook

Standards: • Implementing Physical Protection Systems: A

Practical Guide, 3rd Ed
• Senior Security Executive
Standards:
• Security and Resilience in Organizations and Their
Supply Chains—Requirements with Guidance • ASIS Physical Asset Protection Standard (free
eBook access for ASIS members)
• Workplace Violence Prevention and Intervention
Guidelines:
• Physical Asset Protection
• Business Continuity Management Guideline
Guidelines: (free eBook access for ASIS members)

• General Security Risk Assessment Guideline ASSOCIATE PROTECTION PROFESSIONAL

• Information Asset Protection Guideline The publications listed below comprise the recom-
mended APP reference materials, which include five
• Preemployment Background Screening Guideline Standards and three volumes from the ASIS Protec-
tion of Assets. ASIS offers the following individually
ASIS members are entitled to free online access to or in bundles.
each Standard and Guideline.
Five Standards
• Free eBook access for ASIS members
• Physical Asset Protection
• Standards & Guidelines CPP Softcover Bundle
• Security and Resilience in Organizations and their
PROFESSIONAL CERTIFIED INVESTIGATOR Supply Chains—Requirements with Guidance

Two publications now comprise the PCI reference • Investigations

materials.
• Workplace Violence and Active Assailant—Preven-
• POA Investigations Volume tion, Intervention, and Response

• ASIS International's Investigations Standard • Risk Assessment

(free eBook access for ASIS members)
PROTECTION OF ASSETS VOLUMES
PHYSICAL SECURITY PROFESSIONAL (UPDATED JUNE 2021)

The publications listed below comprise the PSP refer- • Protection of Assets: Business Principles
ence material. Available as a softcover set or online,
each title is available for individual purchase. • Protection of Assets: Crisis Management

• POA Physical Security Volume • Protection of Assets: Security Management (Note:

Replaces POA Information Security volume)

46
 ASIS International Board
Certification
Certification
Handbook
Handbook

ASIS OFFERS TWO PRICING BUNDLES FOR THE APP: I PASSED THE EXAM, NOW WHAT?

• Protection of Assets Bundle for the APP Upon successful completion of the examination, you
Certification will receive a certificate bearing your name, certifica-
tion cycle beginning and ending dates, and certification
• APP Complete Reference Set number. Please allow at least four weeks to receive
your certificate.
For those who have an APP and are studying for
the CPP, ASIS offers an APP Transition package that Also, you will receive an email from Credly (ASIS's dig-
include the Investigations, Physical Security, and ital credentialing partner) with the subject line “You’ve
Personnel volumes of the POA. Also offered is an earned a badge from ASIS International.” The message
APP to CPP Complete Reference Set. will provide an invitation and instructions to claim your
digital badge(s) and certificate(s). Please allow a mini-
ASIS offers other preparatory items such as flash mum of two weeks to receive your digital credentials.
cards and study manuals. Please search for these
items in the ASIS Store. Wear your new designation proudly! Add your desig-
nation to your email signatures, business cards, and
CERTIFICATION PREPARATION social media accounts!

ASIS offers both in-person and online review RECERTIFICATION

courses to help you prepare for your exam. Many
ASIS Chapters also offer study groups. Contact the All those who hold an ASIS certification must recertify
ASIS Chapter in your area for more information. every three years by earning Continuing Professional
Education credits (CPEs). Recertification tells your col-
Neither the Professional Certification Board nor ASIS leagues, peers, and employer that you are committed
Certification staff have any involvement in the ASIS re- to staying current in the security profession. For more
view courses. Review course instructors have no access information on recertification requirements, please
to actual exam questions. download the Recertification Guide.

FREE STUDY TOOLS

ASIS APPLICATION AND CERTIFICANT
The practice exams contain items that once ap- POLICIES
peared on the actual certification exams but are
now retired. Use these practice exams to familiarize
yourself with how exam items will appear on the STATEMENT OF IMPARTIALITY
current exam(s). Note: Because these questions
no longer appear on the exam, they may no longer The ASIS Professional Certification Board (PCB)
be accurate. These are only intended for you to see and certification staff understand the importance
how the exam questions will be formulated. of impartiality and conflicts in the management of
certification activities. When undertaking dealings
CPP Practice Exam with members and nonmembers, all involved in
the certification process will maintain a high level
PCI Practice Exam of ethical conduct and avoid conflicts of interest in
connection with the performance of their duties.
PSP Practice Exam

47
 ASIS International Board
Certification
Certification
Handbook
Handbook

There shall be an avoidance of any actions and/or In addition, any act deemed prejudicial to the certi-
commitments that might create the appearance of: fication may result in denial of approval to take the
certification examination or disciplinary action by the
• Using positions for personal gain PCB, up to and including revocation of certification.
Such acts may include, but are not limited to:
• Giving improper preferential treatment
• Providing false or misleading statements or in-
• Impeding efficiency formation when applying to take the certification
examination or to recertify.
• Losing independence or impartiality
• Any act or omission that violates the provi-
• Adversely affecting the confidence of ASIS constit- sions of the ASIS Certification Code of Profes-
uents in the integrity of certification operations. sional Responsibility.

The PCB and certification staff will ensure that in their • Any act that is the proper basis for suspension
dealings with constituents, they are and will remain or revocation of a professional license.
impartial and confidential.
• Any act or omission that violates the PCB Disci-
ASIS CERTIFICATION CODE OF PROFESSIONAL plinary Rules and Procedures.
RESPONSIBILITY
• Failure to cooperate with the PCB’s Certificant
(Updated 20 February 2024) In addition to the ASIS Relations Committee in performance of its
International Code of Ethics and Code of Conduct, all duties in investigating any allegation against an
ASIS board-certified security professionals and those applicant or current ASIS certificant.
applying for an ASIS designation must adhere to the
Code of Professional Responsibility, agreeing to: • Making any false or misleading statements to the
PCB regarding an applicant or current certificant.
• Perform professional duties in accordance
with the law and the highest moral principles. Per ANAB ISO 17024 Standards, if your ASIS certifi-
Noncompliance includes any acts or omissions cation is revoked, you may be asked to return your
amounting to unprofessional conduct and certificate.
deemed prejudicial to an ASIS designation.
ATTESTATION OF CONTINUED ELIGIBILITY
• Observe the precepts of truthfulness, honesty, FOR CERTIFICATION
and integrity.
All those applying for an ASIS exam will sign the
• Be faithful, competent, and diligent in discharg- following attestation on the application.
ing their professional duties.
By my signature, I attest that the information I
• Safeguard confidential and privileged informa- submit herein or in any required accompanying or
tion and exercise due care to prevent its im- subsequent documentation is true and accurate to
proper disclosure. the best of my knowledge.

• Not maliciously injure the professional reputation I understand that persons who apply for certifica-
or practice of colleagues, clients, or employees. tion as a Certified Protection Professional (CPP),

48
 ASIS International Board
Certification
Certification
Handbook
Handbook

Associate Protection Professional (APP), Profession- disciplined—including suspension, expulsion, or loss

al Certified Investigator (PCI), or Physical Security of the credential—as a result of having been found in
Professional (PSP) or persons who have been certi- violation of the Code of Professional Responsibility.
fied by ASIS International, are subject to ASIS Inter- I also agree to notify ASIS International in writing of
national’s eligibility requirements for certification, any email, mailing address, or name change(s) within
recertification, and to the ASIS Certification Code of 30 days after the change becomes effective.
Professional Responsibility, as required by the ASIS
International Board Certification handbook and the If requested to do so, ASIS International may verify
Board Recertification Guide. Additionally, examina- my certification status.
tion candidates are not permitted to utilize another
individual, company, and/or artificial intelligence (AI) I attest that I have completed all certification and/or
during examination administration; this includes, recertification requirements as outlined by the ASIS
but is not limited to, any form of proxy tester, natu- International Board Certification handbook or the
ral language processing, predictive analysis, genera- Board Recertification Guide, as appropriate. (Updated
tive AI, open AI, etc. 20 February 2024)

I understand that in order to maintain my certifica-

tion, I must recertify every three years by reporting REVOCATION OF CERTIFICATION
a specified number of Continuing Professional
Education (CPE) credits, in accordance with ASIS Certifications are subject to revocation for any of the
policy and procedures for submitting such reports. following causes:
I understand that CPE credits may be earned
through education programs and courses and • The certified individual shall not have been eli-
other activities, and that all CPEs must conform to gible to receive such certification, irrespective of
the requirements specified in ASIS International’s whether or not the facts were known to, or could
Recertification Guide. I further understand that have been ascertained by, the PCB at the time of
from time to time ASIS International may amend its issuance of such certification; or
requirements, policies, and procedures including
initial certification, recertification, and the Code of • The certified individual shall have made any
Professional Responsibility. misstatement of fact in the application for such
certification or any other statement or represen-
I also understand that I may be subject to an audit tation, connected with the application for certifi-
at any time and that ASIS International reserves the cation; or
right to take action for failure to comply with the audit
procedures. • The certified individual has been found to have
engaged in unethical practices or has been con-
While holding ASIS International certification, I agree victed of a felony.
to notify ASIS International in writing immediately
if I fail to comply with any of the requirements for No certification shall be revoked unless the following
gaining or maintaining certification or recertification, procedures are followed:
such as, but not only limited to, no longer being in the
profession, no longer holding Lifetime Retired status • A copy of the charges against the certified
due to returning to full-time employment, failing to individual and the information concerning the
earn the number of CPE credits needed to main- event or events from which such charges have
tain certification or to be recertified, or having been arisen is sent by registered mail to the individu-

49
 ASIS International Board
Certification
Certification
Handbook
Handbook

al. Such notice shall state that no action will be • The candidate must have held the certification
taken against the certified individual until after for 12 consecutive years.
a hearing unless the individual fails to request a
hearing or offer a defense within 15 days. • The candidate must be currently retired from
any form of security employment/practice, or
• The certified individual is given at least 15 days receiving compensation from same, as defined
to prepare a defense. by the applicable certification exam domain.

• A hearing is held on such charges, before a des- • The candidate must have paid the recertification
ignated panel, at which time the person is given fee for the current term.
a full opportunity to be heard in his or her own
defense, including the right to be represented Lifetime designees in good standing are subject to
by counsel, the right to cross-examine witness- the same conditions of other certificants except
es appearing, and to examine documents ma- that recertification will not be required and recerti-
terial to said charges. Accommodation support fication fees will not be charged.
will be provided to eligible individuals.
If a Lifetime Certificant returns to professional prac-
• The panel shall initially determine whether tice after the end of the last term of their regular
or not the individual’s certification should be certification, they must submit a recertification ap-
revoked. The initial determination of the panel, plication demonstrating the successful completion
including all evidence submitted at the hearing, of 60 CPEs within the previous three-year period, or
shall be reviewed. Upon review, the PCB may they must retake and successfully pass the appro-
affirm, reverse, modify, or remand the original priate certification exam. Although Lifetime Certif-
determination of the panel. icants are automatically eligible to sit for the exam
of their prior certification, without the need to
• If the initial determination of the panel is to submit additional supporting materials, they must
revoke the certification of the individual, and if submit an application. Application fees apply.
a majority of the PCB, in official session, affirms
the panel’s determination that the individual is If granted a Lifetime Certification, a new certificate
not eligible for continued certification, then a with the new designation will be sent. To display this
notice will be issued. If your certification is re- new designation, the certificant will use the following:
voked, you may be asked to return your certifi- CPP – Life Certified (Retired), PCI – Life Certified (Re-
cate and cease using the designation. tired), or PSP – Life Certified (Retired). One cannot use
the designation without these qualifying descriptions.

LIFETIME DESIGNATION Per ANSI ISO 17024 Standards, ASIS reserves the
right to revoke any Lifetime Certification should
CPPs, PCIs, or PSPs may be considered for Lifetime it be discovered that the certificant is no longer
Certification designation, if the individual meets the retired. If a Lifetime Certification is revoked, the
following criteria: Lifetime certificate must be returned to ASIS.

• The candidate must be a CPP, PCI, or PSP in To apply for Lifetime Certification, please com-
good standing (e.g., status is “current” and not plete and submit this application at certification@
“lapsed” or “expired”). asisonline.org. There is a $100 fee to apply.

50
 ASIS International Board
Certification
Certification
Handbook
Handbook

RELEASE OF CANDIDATE AND follow the policies. Finally, due to confidentiality re-
CERTIFICANT INFORMATION quirements, the PCB and the Certification Team can
only communicate directly with the certificant; they
Release to third parties of confidential information cannot share information with third parties.
of ASIS candidates and certificants is prohibited
unless ASIS obtains signed permission from the can-
didate or certificant to do so or ASIS is compelled to FILING A COMPLAINT
do so by law. Consent to release information must
include to whom the candidate or certificant infor- Complaints regarding the eligibility requirements,
mation can be released and the information that can test scheduling, policies, and procedures of the
be released. Information cannot be released if the ASIS certification program, certification personnel,
law prohibits this release. or another certificant may be filed in writing per the
instructions in Section III: Process for filing a com-
plaint. The confidentiality of both the complainer as
ASIS CERTIFICATES well as the person to whom the complaint is lodged
are protected by ASIS confidentiality agreements.
All certificates related to the CPP, PCI, PSP, and APP
designations are the sole property of ASIS Interna- The complaint must contain sufficient objective evi-
tional. The certificate may only be displayed during dence to substantiate the complaint. All complaints
the time period for which the credential is valid. will be reviewed by the Certification Director and/or
Certificates remain the property of ASIS and must be members of the PCB Certificant Relations Committee.
returned to ASIS, if requested. The formerly certified in-
dividual should immediately cease from using the ASIS Whenever possible, ASIS will make progress reports
International designations and remove them from all to both the person submitting the complaint and to
printed, electronic, or other forms of communications. the person to whom the complaint is lodged. Receipt
of the complaint will be sent to the person submit-
ting the complaint and will include actions taken by
THIRD-PARTY INTERVENTION ASIS to remedy the situation. When the complaint
has been resolved, the person filing the complaint
The Professional Certification Board (PCB) sets the will be notified with the results of the review. ASIS’s
policies of the ASIS certification programs. There is complete complaint policy can be found here.
an appropriate and required “wall” between ASIS
certification activities and the ASIS Global Board,
ASIS staff, and ASIS’s CEO. Only the PCB can adjudi- ABOUT OUR TESTING PARTNER
cate certification matters.
Prometric is an independent testing company cur-
Because ASIS certification programs are accredited rently under contract with ASIS to administer the
by ANAB to the ISO 17024 Standard, involving third ASIS certification exams. Experts at Prometric work
parties to try to change a decision made by the PCB closely with ASIS and the PCB to develop exams
is against ANAB accreditation requirements and that accurately evaluate a candidate’s knowledge of
doing so jeopardizes ASIS accreditation status as the security profession. Prometric scores the exam,
an international certification body. In addition, ASIS sends the results to ASIS, and stores exam records.
strives to apply our policies consistently in order ASIS staff and the PCB oversee Prometric’s activities
to be fair to all. Allowing special “rules” to some is to ensure that all aspects of the exam process meet
simply not fair to the 10,000+ certificants who do certification standards.

51