De Common Body of Knowledge voor CISSP beslaat 10 domeinen.

1. Information Security and Risk Management
2. Access Control
3. Law, Regulations, Compliance and Investigations
4. Physical (Environmental) Security
5. Business Continuity and Disaster Recovery Planning
6. Security Architecture and Design
7. Cryptography
8. Telecommunications and Network Security
9. Application Security
10. Operations Security