Continuing Professional Education (CPE) opportunities & requirements by certifying body
Six ways you can earn CPEs with Infosec
To maintain your information security certification(s), you must earn a set amount of continuing education credits each year. Depending on what certification(s) you hold, these could be called CPEs, CPUs or even ECEs. It’s important to note credit qualifications, requirements and approval processes vary by certifying body. However, regardless of your certification type, many of these credits can be earned at no cost to you.
Here at Infosec, we provide a variety of opportunities to help you maintain your certifications and keep your skills fresh.
FREE role-guided training plans
1. Contribute an article to resources.infosecinstitute.com
Resources, the Infosec blog, features thousands of articles written by security pros, for security pros. This popular website boasts over one million visits each month. By contributing an article of your own, you can earn continuing education credits and gain valuable exposure to other industry professionals.
2. Read an Infosec whitepaper
We frequently author security-related whitepapers covering topics like incident response, security awareness training, security threats and more. Once you’ve read a whitepaper, submit a summary of the paper to your certifying body for credit consideration.
3. Watch an Infosec webinar
Like whitepapers, webinars are a great way to earn continuing education credits. Visit our Resource Center to see our on-demand options. You can submit a request for a certificate of completion here.
4. Mentor others on TechExams.net
Organizations like ISACA award credit for helping others get certified. Our TechExams forum is home to thousands of other security pros looking for advice on how to achieve certification. Give back to the community and become a TechExams member (it’s free). You can learn more about eligible mentoring activities here.
5. Self study on resources.infosecinstitute.com
Resources, the Infosec blog, is loaded with insightful security articles and tutorials. Topics span multiple domains and specialties to keep you current on all things infosec. This type of activity is typically eligible for continuing education credits, but be sure to check with your certifying body before submitting requests.
6. Acquire additional certifications
Time spent preparing for a new security certification may qualify as continuing education credits for your existing certification(s) — in some cases, it could even automatically renew them. Be prepared to document your time spent studying, as credits are awarded for the amount of time you invest in preparing for the exam, not for earning the actual certification itself.
Continuing education credits requirements by certifying body
Cisco: Certifications last for three years
- As of Feb 24, 2020, all Cisco certifications, including CCIE certifications, last for three years from the date the certification was earned
- CE requirements vary by certification (see requirements):
- Associate certifications require 30 CE credits
- Specialist certifications require 40 CE credits
- Professional certifications require 40-80 CE credits depending recertification path
- CCIE and CCDE certifications require 40-120 CE credits depending on certification path
- You can also renew by taking a Cisco exam (see renewal options)
- CE credits are submitted via your Cisco continuing education portal
CompTIA: Certifications last for three years
- CEU requirements vary by certification and you only need to meet the renewal requirements for your highest-level certification (see requirements):
- A+ requires 20 CEUs
- Network+ requires 30 CEUs
- Security+, Linux+ and Cloud+ require 50 CEUs
- PenTest+ and CySA+ require 60 CEUs
- CASP+ requires 75 CEUs
- You can also renew by performing a single activity, such as earning a higher-level CompTIA certification (see renewal options)
- CEUs credits are submitted via your CompTIA certification account
EC-Council: Certifications last for three years
- Every EC-Council certification requires 120 ECE credits
- CPEs will be applied across multiple certifications, but each certification has its own three-year window
- You can only renew by earning ECE credits (see requirements in the EC-Council FAQ)
- CPE credits are submitted via EC-Council’s Aspen Portal
GIAC®: Certifications last for four years
- Every GIAC certification requires 40 CPEs
- CPEs can be applied to multiple certifications based on activity; for example, hours spent training training for an ISO-17024 accredited certification can be applied to two GIAC certifications, while other training events can only be applied to one (see requirements)
- You can also renew by retaking the current exam
- CPE credits are submitted via your GIAC account
Infosec Institute: Certifications last for four years
- No CPEs are required
- You must pass the current exam in the final year before your certification expires
IAPP: Certifications last for two years
- Every IAPP certification requires 20 CPEs
- CPEs can be applied to multiple certifications
- CPE categories (Group A and Group B) have been eliminated to simplify the process (see requirements)
- CPE credits are submitted via IAPP’s CPE submission form
ISACA: Certifications last for three years
- Every ISACA certification require 120 CPE hours, with a minimum of 20 CPE hours per calendar year
- ITCA and CSP-X certifications require 10 of the 20 hour annual hours to "be attained by participating in skills-based training/labs"
- CPEs can be submitted to multiple ISACA certifications as long as the activity is applicable to each certification (see requirements)
- CPE credits are reported via ISACA’s “Manage My CPE page” website
(ISC)²: Certifications last for three years
- CPE requirements vary by certification:
- CISSP requires 120 CPEs (90 in Group A, 30 in Group A or B) over the three-year period; in addition, if you hold any ISSAP, ISSEP or ISSMP concentrations, 20 credits must be directly related to each concentration
- CSSLP and CCSP require 90 CPEs (60 in Group A, 30 in Group A or B) over the three-year period
- SSCP, CAP and HCISPP require 60 CPEs (45 in Group A, 15 in Group A or B) over the three-year period
- Associates require 15 CPEs (Group A) per year
- CPEs are broken into Group A, meaning the activity relates to specific domains covered by the credential, and Group B, meaning the activity relates to general professional development activities (see requirements)
- CPE credits are submitted via your (ISC)² member home page.
FREE role-guided training plans
Microsoft: Certifications last for one year
- No CPEs required
- Microsoft fundamentals certifications do not expire
- Microsoft role-based and specialty certifications can be renewed by passing a free renewal assessment
- Assessments are taken via Microsoft Learn (see requirements)
PMI: Certifications last for three years
- PDU requirements vary by certification:
- PMP, PgMP, PfMP and PMI-PBA require 60 total PDUs (35 minimum education, 25 maximum “giving back”) and at least eight education PDUs must fall in each of the technical, leadership and strategic categories
- PMI-ACP, PMI-RMP and PMI-SP require 30 total PDUs (18 minimum education, 12 maximum “giving back”) and at least four education PDUs must fall in each of the technical, leadership and strategic categories
- CAPM requires 15 total PDUs (9minimum education, 6 maximum “giving back”) and at least two education PDUs must fall in each of the technical, leadership and strategic categories
- CPEs are broken into both education and “giving back” categories, and the education category is further divided into technical, leadership and strategic CPEs (see requirements)
- CPE credits are submitted via the PMI Continuing Certification Requirements System
Get unlimited and self-paced training for you or teams in your organization with Infosec Skills.
- 190+ role-guided learning paths
- 100s of hands-on labs & cyber ranges
- Custom certification practice exams
In this Series
- Continuing Professional Education (CPE) opportunities & requirements by certifying body
- Top-paying cybersecurity jobs and salary trends for 2024
- The importance of IT certifications in boosting your career
- Understanding the role of a network engineer in IT
- The role of the chief information officer (CIO) in cybersecurity
- What is a network engineer and how to become one?
- What does a system administrator do and how to become one?
- Cyber security hiring: Tips and best practices
- Cybersecurity soft skills: Career benefits of public speaking
- CompTIA Data+ certification: Opening doors to new careers
- Surviving cybersecurity burnout: Tips from industry experts
- How to make a mid-career change to cybersecurity
- 7 top security certifications you should have in 2024
- The Changing Role of the Modern SOC
- Discover the top 5 information security management certifications
- CySA+ versus CASP+: Is the CySA+ good enough for a career in cybersecurity?
- The best cybersecurity jobs in 2023: Trends, roles and salaries
- Top 10 penetration testing certifications for security professionals (2023)
- How to land an entry-level cybersecurity job: Essential skills and certifications
- 133 cyber security training courses you can take now — for free
- Breaking down barriers: How to make cybersecurity more inclusive and diverse
- Computer forensics interview questions
- The digital security forensic analyst salary guide
- Applying linguistics to cybersecurity: The journey of Jade Brown, a 2022 Infosec Scholarship winner
- The Path to “Career 4.0”: Amy Bonus leverages humanities, FinTech experience to bring Cybersecurity to the layperson
- Security engineer: Degree vs. certification
- Cybersecurity engineer: CyberSeek
- Infosec Accelerate Scholarship winner highlights essential qualities of a successful cybersecurity professional
- Career skills, imposter syndrome and intelligence-led pentesting | From the Cyber Work desk
- Cloud security engineer interview questions and answers
- Prior preparation results in a big payoff for Jason Mondragon, an Army veteran transitioning into cybersecurity
- Infosec scholarship winner Kandice Kucharczyk salutes her mentors as she sets her sights high
- Which CompTIA cert is right for you: Security+, PenTest+, CySA+ or CASP+? [updated 2023]
- How VetsInTech and Infosec Laid the Path to Gaurav Panta’s New IT Career
- Infosec 2022 scholarship winner Anthony Torres: Bringing the Marine Corps ethos to the cyber domain
- Infosec Scholarship winner Chris Chisholm knows the power of service and diversity in cybersecurity
- Betta Lyon Delsordo, Infosec scholarship 2022 winner, is a true life-long learner
- A veteran transitions from military medical logistics to multi-national security analyst
- An Army National Guard member fast tracks his cybersecurity career transition with VetsinTech
- How a career harnessing Navy nuclear energy can power a transition to a Security+ certification
- What is a cloud administrator? Essential roles and skills
- Security control mapping: Connecting MITRE ATT&CK to NIST 800-53
- Should you take the CCSP/SSCP before the CISSP? [updated 2022]
- (ISC)² certifications: The ultimate guide [updated 2022]
- CCSP vs. Cloud+ [updated 2022]
- Data architect: The ultimate career guide
- The ultimate guide to ISACA certifications: Overview & career paths [updated 2022]
- I failed IAPP’s CIPP/C certification. Here’s how I recovered
- How learning to be "Always Flexible" helped a Marine in earning the Security+ certification
- How to learn and pass your next certification exam
- Mission accomplished: How one army veteran turned neurobiologist moved into cybersecurity
Get certified and advance your career
- Exam Pass Guarantee
- Live instruction
- CompTIA, ISACA, (ISC)², Cisco, Microsoft and more!
Professional development
Professional development
Professional development
Professional development
The role of the chief information officer (CIO) in cybersecurity