FITSP-M Recertification Overview
The Federal IT Security Professional - Manager (FITSP-M) certification represents a significant achievement in federal information security management. However, maintaining this certification requires ongoing commitment through the recertification process. Understanding the requirements, costs, and timeline for FITSP-M recertification is crucial for professionals who want to keep their credentials current and maintain their competitive edge in federal IT security management roles.
The FITSP-M certification, administered by the Federal IT Security Institute (FITSI), is valid for three years from the date of initial certification. This timeframe aligns with the rapidly evolving nature of federal IT security requirements and ensures that certified professionals stay current with the latest policies, frameworks, and best practices in the field.
FITSP-M recertification ensures that certified professionals maintain their expertise in critical areas such as NIST SP 800-37, SP 800-53, FISMA 2014, and OMB A-130 requirements. Given the significant salary advantages associated with FITSP-M certification, maintaining your credential is essential for career progression in federal IT security management.
Recertification Requirements
The FITSP-M recertification process is built around the concept of Continuing Professional Education (CPE) credits. To maintain your FITSP-M certification, you must earn 60 CPE credits during each three-year certification cycle. This requirement ensures that certified professionals continue to develop their skills and stay current with evolving federal IT security practices.
Core CPE Requirements
The 60 CPE credits must be distributed across relevant professional development activities that enhance your knowledge and skills in federal IT security management. These credits should align with the five core domains covered in the original FITSP-M exam domains, which include:
- Information Security Governance (20%) - Credits related to policy development, risk management frameworks, and governance structures
- System Development Life Cycle (15%) - Training focused on secure development practices and SDLC integration
- Information Security Program Management (25%) - Professional development in program management, team leadership, and strategic planning
- Incident Management (15%) - Education in incident response, forensics, and recovery procedures
- Federal IT Security Policy and Compliance (25%) - Updates on federal regulations, compliance frameworks, and policy changes
While FITSI doesn't mandate specific credit distributions across domains, it's recommended to earn credits proportionally based on the exam domain weightings. This ensures balanced professional development and helps maintain expertise across all critical areas of federal IT security management.
Acceptable CPE Activities
FITSI recognizes various professional development activities for CPE credit. Understanding which activities qualify and how many credits they're worth is essential for planning your recertification journey:
| Activity Type | Maximum Credits | Credit Calculation |
|---|---|---|
| Formal Training Courses | 40 credits | 1 credit per contact hour |
| Professional Conferences | 30 credits | 1 credit per contact hour |
| Self-Study Programs | 20 credits | Varies by program |
| Professional Publications | 15 credits | 5 credits per article/paper |
| Teaching/Training Others | 25 credits | 2 credits per contact hour |
Understanding CPE Credits
CPE credits serve as the foundation of the FITSP-M recertification process. Each credit represents one hour of relevant professional development activity, though some activities may award credits at different rates based on their educational value and contribution to professional growth.
Earning CPE Credits Strategically
Successful recertification requires strategic planning to ensure you earn the required 60 credits within the three-year window. Consider these approaches:
Annual Planning: Aim to earn approximately 20 credits per year to avoid last-minute rushes. This approach allows for consistent professional development and reduces stress as your recertification deadline approaches.
Domain-Focused Learning: Focus on earning credits in areas where federal IT security practices are evolving rapidly. For instance, given the emphasis on Information Security Program Management and Federal IT Security Policy and Compliance, prioritize training in these high-weight domains.
Multi-Credit Activities: Participate in comprehensive training programs and conferences that offer multiple credits. Week-long training courses or major industry conferences can provide 20-40 credits in a single event.
Maintain detailed records of all CPE activities throughout your certification cycle. Create a simple spreadsheet tracking activity dates, descriptions, credit hours, and supporting documentation. This proactive approach simplifies the recertification submission process and ensures you don't lose credits due to poor record-keeping.
Credit Quality vs. Quantity
While meeting the 60-credit requirement is essential, focusing on high-quality professional development activities provides greater career benefits. Choose training and educational opportunities that directly enhance your effectiveness in federal IT security management roles and align with current industry trends and federal requirements.
Recertification Timeline
Understanding the FITSP-M recertification timeline is crucial for successful credential maintenance. The process involves several key milestones and deadlines that certified professionals must meet to avoid certification lapse.
Three-Year Certification Cycle
Your FITSP-M certification is valid for exactly three years from your initial certification date or last recertification date. FITSI typically sends renewal notices 90 days before your expiration date, but the responsibility for timely renewal ultimately rests with the certificate holder.
Key Timeline Milestones
Year 1: Begin earning CPE credits immediately after certification. Focus on establishing good record-keeping habits and identifying preferred sources for professional development activities.
Year 2: Assess your CPE progress and ensure you're on track to meet the 60-credit requirement. This is an ideal time to plan attendance at major conferences or comprehensive training programs.
Year 3 (Months 1-9): Complete any remaining CPE requirements and begin preparing your recertification application. Ensure all supporting documentation is organized and readily available.
Year 3 (Final Quarter): Submit your recertification application at least 60 days before your expiration date to allow for processing time and potential follow-up requirements.
Submitting your recertification application early provides several advantages: it allows time to address any documentation issues, reduces stress as the deadline approaches, and ensures uninterrupted certification status for employment and contract purposes.
Recertification Costs
The financial investment required for FITSP-M recertification extends beyond the basic renewal fees. Understanding all associated costs helps professionals budget appropriately and make informed decisions about their professional development investments.
Direct Recertification Fees
FITSI charges a recertification fee that covers the administrative costs of processing your renewal application and updating your certification status. Current recertification fees typically range from $200 to $300, though these amounts may vary based on FITSI's fee schedule updates.
CPE Acquisition Costs
The more significant expense in recertification comes from acquiring the required 60 CPE credits. These costs vary widely based on your chosen professional development activities:
| CPE Source | Typical Cost Range | Credits Available | Cost per Credit |
|---|---|---|---|
| Professional Training Courses | $1,500 - $3,000 | 20-40 credits | $50 - $100 |
| Industry Conferences | $800 - $2,500 | 15-30 credits | $50 - $85 |
| Online Learning Platforms | $300 - $1,000 | 10-25 credits | $20 - $50 |
| Professional Webinars | $50 - $200 each | 1-3 credits | $25 - $75 |
When evaluating the total cost of FITSP-M certification maintenance, consider both the immediate renewal fees and the ongoing investment in professional development. Many federal contractors and agencies provide professional development budgets that can offset these costs.
Plan to budget $2,000 - $4,000 per three-year cycle for complete FITSP-M recertification, including renewal fees and CPE acquisition costs. This investment often pays for itself through career advancement opportunities and salary increases in federal IT security management roles.
Step-by-Step Recertification Process
The FITSP-M recertification process involves several discrete steps that must be completed within specific timeframes. Understanding this process helps ensure smooth renewal without last-minute complications.
Step 1: CPE Credit Accumulation
Begin earning CPE credits immediately after your initial certification or last recertification. Maintain detailed records of all qualifying activities, including:
- Activity dates and duration
- Detailed descriptions of educational content
- Number of credits earned
- Supporting documentation (certificates, transcripts, etc.)
- Relevance to FITSP-M domains
Step 2: Application Preparation
Approximately 4-6 months before your certification expires, begin preparing your recertification application. This involves:
- Reviewing your CPE credit summary
- Organizing supporting documentation
- Completing the recertification application form
- Preparing payment for renewal fees
Step 3: Application Submission
Submit your complete recertification application through FITSI's online portal at least 60 days before your expiration date. Ensure all required fields are completed and supporting documentation is attached.
Step 4: Application Review
FITSI reviews all recertification applications for completeness and compliance with CPE requirements. This process typically takes 15-30 business days, though it may extend longer during peak renewal periods.
Step 5: Certification Renewal
Upon approval, FITSI issues your renewed FITSP-M certificate with a new three-year expiration date. Update your professional profiles and notify employers or clients of your continued certification status.
Consider using practice tests and review materials during your recertification cycle to stay sharp on core FITSP-M concepts. This approach not only helps with CPE credit acquisition but also maintains your technical proficiency for career advancement opportunities.
Required Documentation
Proper documentation is critical for successful FITSP-M recertification. FITSI requires specific supporting materials to verify your CPE credit claims and ensure compliance with recertification standards.
Essential Documentation Types
Training Certificates: Official certificates of completion from accredited training providers, including course names, dates, duration, and issuing organization details.
Conference Attendance Records: Registration confirmations, attendance certificates, or other official documentation proving participation in professional conferences or seminars.
Academic Transcripts: Official transcripts for relevant coursework completed during the certification cycle, particularly graduate-level courses in information security or related fields.
Professional Activity Records: Documentation of teaching, writing, or other professional contributions, including course syllabi, publication records, or speaking engagement confirmations.
Documentation Best Practices
Maintain both physical and digital copies of all CPE documentation. Scan physical certificates and store digital copies in organized folders by year and activity type. This redundancy protects against document loss and facilitates easy application preparation.
Create a master spreadsheet linking each CPE activity to its supporting documentation. Include file names or physical storage locations to quickly locate specific documents during the application process.
Consequences of Late Renewal
Understanding the implications of delayed or failed recertification helps motivate timely renewal and highlights the importance of proper planning throughout your certification cycle.
Certification Lapse
If you fail to complete recertification before your expiration date, your FITSP-M certification lapses immediately. This lapse can have several professional consequences:
- Inability to claim FITSP-M certification on resumes or professional profiles
- Potential removal from positions requiring active FITSP-M certification
- Loss of competitive advantage in federal contracting opportunities
- Need to restart the certification process from the beginning
Reinstatement Options
FITSI provides a limited grace period (typically six months) during which lapsed certificates may be reinstated with payment of additional fees and completion of outstanding CPE requirements. However, reinstatement is not guaranteed and may require additional documentation or verification.
Certification lapses can significantly impact career progression and earning potential. Given the competitive nature of federal IT security management roles and the substantial ROI of FITSP-M certification, maintaining continuous certification status is essential for career success.
Tips for Successful Recertification
Implementing strategic approaches to recertification ensures not only compliance with requirements but also maximizes the professional development value of the process.
Strategic CPE Planning
Align your CPE activities with both recertification requirements and career goals. Choose training and educational opportunities that enhance your expertise in emerging areas of federal IT security while satisfying credit requirements.
Focus on high-value activities that provide multiple benefits: comprehensive training courses that offer substantial credits, networking opportunities at professional conferences, and advanced certifications that complement your FITSP-M credential.
Leveraging Professional Networks
Connect with other FITSP-M certified professionals to share information about quality CPE opportunities, cost-effective training options, and industry developments. Professional associations and online communities can provide valuable resources for recertification planning.
Employer Support Utilization
Work with your employer to identify training opportunities that satisfy both organizational needs and your recertification requirements. Many federal contractors and agencies actively support professional development for certified staff members.
If you're considering the initial certification process, reviewing our comprehensive study guide can help you understand the full scope of FITSP-M requirements and how they relate to ongoing professional development needs.
Approach recertification as an opportunity for genuine professional growth rather than just a compliance requirement. This mindset leads to better learning outcomes, stronger career advancement, and greater satisfaction with your professional development investments.
Frequently Asked Questions
You can begin earning CPE credits immediately after your certification date or last recertification. Credits earned before your certification effective date cannot be applied to your current cycle, so timing is important for maximizing your professional development investments.
CPE credits from other professional certifications may qualify for FITSP-M recertification if the educational content is relevant to federal IT security management. However, you must maintain separate documentation and ensure the activities align with FITSP-M domain requirements. Always verify with FITSI before assuming cross-certification credit acceptance.
Late applications may result in certification lapse, even if you've completed all CPE requirements. FITSI offers a limited grace period (typically six months) for reinstatement, but this involves additional fees and is not guaranteed. Submit applications at least 60 days before expiration to avoid complications.
FITSI does not offer CPE exemptions based on experience level or seniority. All FITSP-M certified professionals must complete the full 60 CPE credits during each three-year cycle. This requirement ensures that all certificate holders maintain current knowledge regardless of their experience level.
Yes, FITSI provides an appeals process for denied recertification applications. Appeals must be submitted within 30 days of denial notification and include additional documentation addressing the specific deficiencies identified by FITSI. The appeals process may extend certification renewal timelines, so proper initial application preparation is crucial.
Ready to Start Practicing?
Whether you're preparing for initial FITSP-M certification or maintaining your skills for recertification, consistent practice is key to success. Test your knowledge with our comprehensive practice exams designed specifically for federal IT security professionals.
Start Free Practice Test