CISM means higher earning potential and career advancement. Recent independent studies consistently rank CISM as one of the highest paying and sought after IT certifications..
Demonstrate your information security management expertise.
The uniquely management-focused CISM certification promotes international security practices and recognizes the individual who manages, designs, and oversees and assesses an enterprise’s information security.
The demand for skilled information security management professionals is on the rise, and the CISM certification is the globally accepted standard of achievement in this area.
CISMs understand the business. They know how to manage and adapt technology to their enterprise and industry.
Demonstrates your understanding of the relationship between an information security program and broader business goals and objectives
Distinguishes you as having not only information security expertise, but also knowledge and experience in the development and management of an information security program
Puts you in an elite peer network
Is considered essential to ongoing education, career progression and value delivery to enterprises.
Enterprises and government agencies increasingly recognize, require and expect their IS and IT professionals to hold CISM certification. .
Identify critical issues and customize company-specific practices to support the governance of information and related technologies
Bring credibility to the enterprise for which they are employed
Take a comprehensive view of information systems security management and their relationship to organizational success
Demonstrate to enterprise customers their commitment to compliance, security and integrity; ultimately contributing to the attraction and retention of customers
Ensure that there is improved alignment between the organization’s information security program and its broader goals and objectives
Provide the enterprise with a certification for Information security management that is recognized by multinational clients and enterprises, lending credibility to the enterprise
The current CISM exam covers 4 information security management areas, each of which is further defined and detailed through Task & Knowledge statements. The four new domain headings of the 2017 Job Practice are relatively the same; however, the exam specifications (weighting) have shifted slightly.
Following is a brief description of these areas, their definitions and approximate percentage of test questions allocated to each area. These areas and statements were approved by the CISM Certification Working Group and represent a job practice analysis of the work performed by information security managers as validated by prominent industry leaders, subject matter experts and industry practitioners.
The below job practice is organized by domains that will be tested for the first time in 2017. Also, starting in 2017, the CISM exam will contain 150 questions testing the new job practice.