ISC2 Seeks Member Comment on Code of Professional Conduct Draft

Announced in March, ISC2 is developing a Code of Professional Conduct for cybersecurity professionals. The ISC2 Standards and Practices team has been working with volunteers to build a foundational framework for all cyber professionals to reference in their day-to-day decision making. Establishing a Code of Professional Conduct encourages ethical decision-making and responsible conduct, reinforcing the industry's commitment to protecting individuals and organizations from cyber threats.

A first draft of the Code is now available and ISC2 is inviting members to review the Code and provide feedback via a survey, on primary topics including: integrity, confidentiality, respect for laws and regulations and other professional conduct related topics.

Importance of Public Comment

While this draft of the Code has been developed with the participation of members from various sectors and parts of the globe, ISC2 is dedicated to ensuring all members can provide their feedback to influence the final draft. ISC2 values your input on both specific areas of the draft, as well as the overall concept of the document. All survey feedback will be synthesized, categorized and weighted for review and implementation.

Take the Survey

Remember, you’ll review the Code draft content within the survey itself. ISC2 members can find the survey link on your dashboard (login required) until April 28. While information about survey participants (industry experience, role, location) is captured, survey responses are anonymous. The demographic information is used to track participation and ensure the feedback is evenly balanced across sectors, experience and geography to ensure a final Code of Professional Conduct that is relevant and useful to cybersecurity professionals worldwide.

The survey should take between 15-30 minutes. After providing background on your level of experience and role, you’ll find the Ethics section asking about integrity, confidentiality, public safety and more. The next section is on Professional Conduct where you will be asked questions about responsibility, commitment, collaboration, reporting and more. Your input will help us assess the draft Code’s relevance, clarity and adoption stance. Your feedback will ensure the new Code reflects the cybersecurity profession, representing standards for professional conduct and ethics.

Related Insights

• The Future of Cyber Knowledge Management is Evolving – ISC2 Unified Body of Knowledge
• Available Now – NIS2 Guidance Resource for ISC2 Members
• The Ethical Dilemmas of AI in Cybersecurity