(ISC)² Code Of Ethics
All information systems security professionals who are certified by (ISC)² recognize that such certification
is a privilege that must be both earned and maintained. In support of this principle, all (ISC)² members are
required to commit to fully support this Code of Ethics (the "Code"). (ISC)² members who intentionally or
knowingly violate any provision of the Code will be subject to action by a peer review panel, which may
result in the revocation of certification. (ISC)² members are obligated to follow the ethics complaint
procedure upon observing any action by an (ISC)2 member that breach the Code. Failure to do so may be
considered a breach of the Code pursuant to Canon IV.
There are only four mandatory canons in the Code. By necessity, such high-level guidance is not intended
to be a substitute for the ethical judgment of the professional.
Code of Ethics Preamble:
-
Safety of the commonwealth, duty to our principals, and to each other requires that we adhere, and be
seen to adhere, to the highest ethical standards of behavior.
- Therefore, strict adherence to this Code is a condition of certification.
Code of Ethics Canons:
- Protect society, the commonwealth, and the infrastructure.
- Act honorably, honestly, justly, responsibly, and legally.
- Provide diligent and competent service to principals.
- Advance and protect the profession.
Additional guidance is available for our members here. While this guidance may be considered by the
board of directors in judging behavior, it is advisory rather than mandatory. It is intended to help
professionals identify and resolve the inevitable ethical dilemmas that they will confront during the
course of their information security career.
https://www.isc2.org/ethics/
https://www.isc2.org/ethics-complaint-procedures.aspx
http://ethics-wg.org/