So why is (ISC)² making such a significant change to their exam? During the announcement, (ISC)² focused on the fact that the exam would be “more effective” and “more efficient.” Here are the benefits of the CAT exam:
Reliability: Provides a more precise and efficient measurement of cybersecurity managerial competence because it caters the exam to the aptitude of each individual test-taker.
Efficiency: The average time taken to complete the test (pass or fail) will be significantly reduced, providing more opportunities for individuals to sit for the CISSP exam.
Increased Question Security: CAT reduces question exposure and the security risks that come with it. By switching to a CAT, (ISC)² can limit the number of times certain questions are revealed. For instance, someone who fails on the first attempt will not see all 250 questions, and thus will not have the benefit of experiencing some questions if they reappear on a retake of the exam at a later date.