What is CISM Certification?
Exam Overview
CISM Certification stands for “Certified Information Security Manager” and is one of the best and sought-after information security management certifications. Similar to CISA, ISACA maintains and provides CISM credential to experienced aspirants. It is vendor-neutral and available for advanced professionals who manages information security in organizations. Candidates should have at least five years of work experience in information security to earn the credential.
CISM certification exam is provided through both PSI approved test centers and remote online proctoring fashion. It is scale based and candidates must score passing mark to start applying for the credential. Successful candidates are prompted to apply for certification. Candidates should submit maintenance fee and experience references. If candidate meets all requirements for certification, official credential document will be delivered within eight weeks.
CISM Certification Requirements
The content of job practices and percentage values are subjected to revision every five years. As per the writing time of this post, it will cost you $760 to register and take the exam. Certified managers should also pay a membership fee of $85 annually.
The exam covers the following four interrelated information security domains.
- Security Governance (17%)
- Risk Management (20%)
- Security Program Development and Management (33%)
- Security Incident Management (30%)
Candidates can download Exam Candidate Guide from the official website for further information.
The exam is multiple choice based and contains 150 questions. Candidates have 240 minutes to attempt each question. And they can flag questions and comeback to retry it later on. Exam takers can further transverse back and forth to revise their answers.
Unlike CISSP, the scoring system of CISM exam considers average value of the four job practices mentioned earlier. In other words, it is not necessary to score passing mark in all the four job practices as long as they attain a cumulative value of 450 out of the 800 points. It is Pass/Fail based exam and the result will be available immediately after finishing the exam. Detailed performance of the candidate in the exam will be accessible after 10 business days.
To retain their hard earned credential, certified managers must pay annual membership fee and collect at least 20 CPEs (Continuing Professional Education) annually and a total of 120 CPEs over a three years period. The certificate is valid for five years. Additionally, credential holders must adhere to a professional code of Ethics throughout the years. But, if they fail to meet these requirements, their certificate may be prone to revocation.