The CREST Certified Simulated Attack Manager (CCSAM) examination tests candidates’ knowledge and expertise in leading a team that specialises in Simulated Attacks. The candidate is expected to have a good breadth of knowledge in all areas of Simulated Attack and proven experience in managing incidents, penetration tests and simulated attack exercises. The exam will assess the candidate’s ability to conduct Simulated Attacks in a realistic, legal and safe manner, ensuring appropriate evidence is collated to provide the customer with actionable intelligence of organisational risks and failings while minimising the risks to the customer’s staff, data and systems.
The examination consists of two components:
- multiple choice
- written, comprising a selection of long form and scenario based questions that require detailed answers
Candidates are required to meet or exceed a two-thirds pass mark in both sections independently in order to pass the exam overall. If a candidate fails an element, the entire examination must be retaken.
The examination is delivered in two parts (see Notes for Candidates) with Part 1 taken first and Part 2 must be taken within three months of Part 1.
You can download the following documents from the links below:
The Certified Simulated Attack Manager examination costs £1,600 + VAT. The examination is delivered at Pearson Vue centres.
Recommended Preparation Material
The following material and media has been cited as helpful preparation for this examination by previous candidates:
Targeted Cyber Attack (by Syngress)
Useful Information for Candidates
How to book
Details of the Logistics and Timings of CREST examinations can be found in the Examination Preparation pages for your country of choice
CREST’s Policy for Candidates requiring special arrangements including additional time to accommodate a medical condition (including examinations delivered via Pearson Vue)
Terms and Conditions for CREST Examinations (includes hard disk drive wiping policy)