ISACA CISM (Certified Information Security Manager)

ISACA CISM certification prepares professionals to manage and govern enterprise information security programs. It covers security governance, risk management, program development, and incident management, demonstrating expertise in aligning security with business goals.

Description

CISM certification is globally recognized and tailored for professionals who design, manage, and assess an enterprise's information security program. It emphasizes the relationship between an information security program and broader business goals and objectives.

Key Learning Outcomes:

  • Information Security Governance: Establish and maintain an information security governance framework and supporting processes to ensure that the information security strategy aligns with organizational goals and objectives.

  • Information Risk Management: Identify and manage information security risks to achieve business objectives.

  • Information Security Program Development and Management: Establish and manage the information security program to implement the information security strategy.

  • Information Security Incident Management: Plan, establish, and manage the capability to respond to and recover from information security incidents.

Certification Details:

  • Exam Format: 150 multiple-choice questions

  • Duration: 4 hours

  • Passing Score: 450 out of 800

  • Languages Available: English, Spanish, French, German, Japanese, Korean, Simplified Chinese

  • Validity: Lifetime

  • Renewal: Not required

To achieve CISM certification, candidates must pass the exam and meet work experience requirements. The certification is ideal for professionals in roles such as IT auditors, security managers, and risk professionals.

Similar courses

ISACA Certified in Risk and Information Systems Control (CRISC) certification is designed for professionals seeking to validate their expertise in managing enterprise IT risk and implementing information systems controls. It focuses on identifying and managing IT risks, implementing and maintaining information systems controls, and providing assurance that these controls are effective in mitigating risks.

More Information

ISACA Certified Information Systems Auditor (CISA) certification is globally recognized as the standard of achievement for professionals who audit, control, monitor, and assess an organization's information technology and business systems. It validates expertise in information systems auditing, control, and security, and is ideal for individuals aiming to enhance their career in IT audit and assurance.

More Information