Has anyone done the CISM certification? If so, I'd like to know how difficult it was for you to obtain with a beginner IT background?

Security Strategy & Roadmap Training & Certification

722 views3 Comments

Sort by:

Director of Information Security in Consumer Goods7 months ago

With a good Cyber background, a few weeks of study should prepare you for the test. Use the practice tests a few times and you will be good.

CISO in Government8 months ago

I obtained the CISM about three years after completing my CISSP. I would say the CISM is not really a certification for someone with a beginner IT background. It's meant to show that you have the skills and management acumen to be a manager of an IT security team, and I think you can't do that very well without a solid IT background.

I will say that if you pass the CISM, you should take the CRISC soon after. There's a ton of overlap between the two certs.

Chief Risk Officer8 months ago

I obtained my CISM while enrolled in my MBA program and spent a month preparing. It focuses more on general security practices and strategic planning as it relates to security. I come from a background of IT and Security, so it was not as difficult. If you study the principles and take advantage of practice test, you should be fine.

Content you might like

Is anyone going to ICCWS (International Conference on Cyber Warfare and Security)?

Yes53%

No47%

When do you think we'll see more standards introduced for code signing?

Within the next 6 months29%

Within the next 7-12 months54%

Within the next 1-2 years15%

I have no idea1%

View Results

How frequently does your org update its GenAI training programs for staff? Do you change the training offered to align with new developments in GenAI or new tool capabilities?

I’ve been digging into ways to strengthen Zero Trust on IBM i systems, especially as more orgs shift toward hybrid cloud. I’m curious, how are others approaching threat detection around shadow AI use and supplier exposure in these environments?

Our company deeply entered in the Microsoft world (EntraId, M365, Azure). Microsoft is publishing, in particular, a compliance dashboard and security dashboard. How are you using them and which kind of governance are you putting around them?

Has anyone done the CISM certification? If so, I'd like to know how difficult it was for you to obtain with a beginner IT background?

Sort by:

Content you might like

Is anyone going to ICCWS (International Conference on Cyber Warfare and Security)?

When do you think we'll see more standards introduced for code signing?

How frequently does your org update its GenAI training programs for staff? Do you change the training offered to align with new developments in GenAI or new tool capabilities?

I’ve been digging into ways to strengthen Zero Trust on IBM i systems, especially as more orgs shift toward hybrid cloud. I’m curious, how are others approaching threat detection around shadow AI use and supplier exposure in these environments?

Our company deeply entered in the Microsoft world (EntraId, M365, Azure). Microsoft is publishing, in particular, a compliance dashboard and security dashboard. How are you using them and which kind of governance are you putting around them?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

CrowdStrike Outage: Impact And Recovery

Generative AI Training for IT Organizations

Take Your Insights On-the-Go