Certified Information Security Manager (CISM)
CISM means higher earning potential and career advancement. Recent independent studies consistently rank CISM as one of the highest paying and sought after IT certifications. Demonstrate your information security management expertise. The uniquely management-focused CISM certification promotes international security practices and recognizes the individual who manages, designs, and oversees and assesses an enterprise’s information security.
CISM Certification Job PracticeThe current CISM exam covers 4 information security management areas, each of which is further defined and detailed through Task & Knowledge statements. These areas and statements were approved by the CISM Certification Working Group and represent a job practice analysis of the work performed by information security managers as validated by prominent industry leaders, subject matter experts and industry practitioners. The job practice domains and task and knowledge statements are as follows:
- Domain 1—Information Security Governance (24%)
- Domain 2—Information Risk Management (30%)
- Domain 3—Information Security Program Development and Management (27%)
- Domain 4—Information Security Incident Management (19%)