Certified Authorization Professional (CAP), is a certification that applies to those responsible for formalizing processes used to assess risk and establish security requirements. The CAP certification is an objective measure of the skills and abilities required for personnel involved in the IT Assessment and Authorization process.

The CAP course covers the seven domains taken from the International Information Systems Security Certification Consortium (ISC)2 Common Body of Knowledge (CBK). The domains covered are Understand the Security Authorization of Information Systems; Categorize Information Systems; Establish the Security Control Baseline; Apply Security Controls; Assess Security Controls; Authorize Information System; and Monitor Security Controls.