Following are the certification requirements you should meet to become a CISM certified:
Successfully Complete the CISM Examination:
The CISM examination is open to everybody who is interested in information security management. All the individuals have always been encouraged to work hard towards it and give the examination. The candidates who successfully pass the CISM examination will be required to apply for CISM certification by notifying their passing score.
Adhere to the Code of Professional Ethics:
Holders of the CISM or Members of ISACA designation must have agreed to the Professional Code of Ethics in order to guide the successful candidate in both personal and professional conduct.
Adhere to the CISM CPE Policy:
The core idea behind the Continued Professional Education policy (CPE) is to ensure that the successfully qualified candidates must keep their information and knowledge updated enough AS; this will ensure that any of the new possible threats or new trends will be identified and should be included in the new updated security policies that will be going to be forward in future. The main objectives of the Continued Professional Education policy (CPE) program are to:
Maintain an individual’s or organization’s competency in order to ensure that all qualified CISM maintain an average level of updated proficiency and knowledge CISMs who successfully comply with the CPE program Policies will be better equipped to oversee, design, manage, and assess an enterprise’s security information system.
Provide a way to differentiate between successfully qualified CISMs and those who have not to meet the CISMs requirements for the continuity of their CISM certification.
Demonstrate the Required Minimum Work Experience:
A minimum of five years of work experience of professional information security management as described in the CISM job practice areas and is needed or required for certification. The work experience for CISM certification should be gained in the ten-year time period prior to the application date for the certification. Candidates must have five years from the CISM exam passing date in order to apply for certification.
Waivers and Substitutions can be obtained for a maximum of two years as follows:
- CISSP (Certified Information Systems Security Professional) in good grades
- CISA (Certified Information Systems Auditor) in good grades
- Post-graduate degree in information security or in a related area (e.g., business administration, information assurance, information systems)
- One year of experience in general security management.
- Skill-based security certifications (e.g., Microsoft Certified Systems Engineer (MCSE), SANS Global Information Assurance Certification (GIAC), CompTIA Security +, ESL IT Security Manager, (CBCP)Disaster Recovery Institute Certified Business Continuity Professional)
- Completion of an information security management program at an institution affiliated with the Model Curriculum
- One year of experience in information systems management.
Submit CISM Application to ISACA
The last requirement to be fulfilled by the candidate is to submit his CISM application for certification. This can only be if the candidate successfully passed the exam of CISM and acquired the required and necessary relevant experience.