[Study Guide Review, Updated JULY, 2024] Certified Information Security Manager Cert code: CISM, Questions of the exam: 150, Minutes of the exam: 240, Correct to pass: 57%.
[Study Guide Review, Updated JUNE, 2024] Certified Information Security Manager Cert code: CISM, Questions of the exam: 150, Minutes of the exam: 240, Correct to pass: 57%.
[Study Guide Review, Updated APRIL, 2024] Certified Information Security Manager Cert code: CISM, Questions of the exam: 150, Minutes of the exam: 240, Correct to pass: 57%.
[Study Guide Review, Updated FEBRUARY, 2024] Certified Information Security Manager Cert code: CISM, Questions of the exam: 150, Minutes of the exam: 240, Correct to pass: 57%.
[Study Guide Review, Updated DECEMBER, 2023] Certified Information Security Manager Cert code: CISM, Questions of the exam: 150, Minutes of the exam: 240, Correct to pass: 57%.
SOME NOTES ABOUT CERTIFIED INFORMATION SECURITY MANAGER:
Certified Information Security Manager [CISM] is an important and mandatory certification on your path to becoming an expert in your field.
To get this certificate, you need to firmly and confidently grasp the content listed below. Then, you need to pass the exam directly on ISACA's system. This exam has a duration of 240 minutes, with 150 questions. You need to answer correctly at least 57% of the total questions on the exam.
Below are the contents that you need to grasp firmly and confidently before registering to take the exam on ISACA's system:
1. Information Security Governance.
1.1. Information Security Governance Overview.
1.2. Effective Information Security Governance.
1.3. Roles and Responsibilities.
1.4. Risk Management Roles and Responsibilities.
1.5. Governance of Third-party Relationships.
1.6. Information Security Governance Metrics.
1.7. Information Security Strategy Overview.
1.8. Information Security Strategy Object.
1.9. Determining the Current State of Security.
1.10. Information Security Strategy Development.
1.11 Strategy Resources.
1.12. Strategy Constraints.
1.13. Action Plan to Implement Strategy.
1.14. Information Security Program Objectives.
2. Information Risk Management.
2.1. Risk Management Overview.
2.2 Risk Management Strategy.
2.3. Effective Information Risk Management.
2.4. Information Risk Management Concepts.
2.5. Implementing Risk Management.
2.6. Risk Assessment and Analysis Methodologies.
2.7. Risk Assessment.
2.8. Information Asset Classification.
2.9. Operation Risk Management.
2.10. Third-party Service Providers.
2.11. Risk Management Integration With Life Cycle Processes.
2.12. Security Control Baselines.
2.13. Risk Monitoring and Communication.
2.14. Training and Awareness.
3. Information Security Program Development and Management.
3.1. Information Security Program Management Overview.
3.2. Information Security Program Object.
3.3 Information Security Program Concepts.
3.4. Scope and Charter of an Information Security Program.
3.5. The Information Security Management Framework.
3.6. Information Security Framework Components.
3.7. Defining an Information Security Program Road Map.
3.8. Information Security Infrastructure and Architecture.
3.9. Architecture Implementation.
3.10. Security Program Management and Administrative Activities.
3.11. Security Program Services and Operational Activities.
3.12. Controls and Countermeasures.
3.13. Security Program Metrics and Monitoring.
3.14. Common Information Security Program Challenges.
4. Information Security Incident Management.
4.1. Incident Management Overview.
4.2. Incident Response Procudres.
4.3. Incident Management Organization.
4.4. Incident Management Resources.
4.5. Incident Management Objectives.
4.6. Incident Management Metrics and Indicator.
4.7. Defining Incident Management Procedures.
4.8. Current State of Incident Response Capability.
4.9. Developing an Incident Response Plan.
4.10. Business Continuity and Disaster Recovery Procedures.
4.11. Testing Incident Response and Business Continuity/Disaster Recovery Plan.
4.12. Executing Response and Recovery Plan.
4.13. Postincident Activities and Investigation.
GOODLUCK TO YOU!!!
