The Transition to CBT Format Is a Bigger Change Than Most Realize
A lot of attention has been given to the new computer-based testing (CBT) exam format for CISSP® (Certified Information Systems Security Professional) certification. This may be merited.
First, there is an ongoing debate about the integrity of the exam itself when delivered in such an environment. There are other pros and cons to this delivery method when it comes to controlling fraud. First, can someone other than the actual candidate take the exam? Preventative controls against such fraud may actually be harder to enforce with large groups in a conference setting vs. one-on-one in a testing center. Second, can the questions be compromised so the students can prepare for the exam without mastering all of the core subject matter?