Has anyone done the CISM certification? If so, I'd like to know how difficult it was for you to obtain with a beginner IT background?

Training & Certification Security Strategy & Roadmap

753 views3 Comments

Sort by:

Director of Information Security in Consumer Goods9 months ago

With a good Cyber background, a few weeks of study should prepare you for the test. Use the practice tests a few times and you will be good.

CISO in Government10 months ago

I obtained the CISM about three years after completing my CISSP. I would say the CISM is not really a certification for someone with a beginner IT background. It's meant to show that you have the skills and management acumen to be a manager of an IT security team, and I think you can't do that very well without a solid IT background.

I will say that if you pass the CISM, you should take the CRISC soon after. There's a ton of overlap between the two certs.

Chief Risk Officer10 months ago

I obtained my CISM while enrolled in my MBA program and spent a month preparing. It focuses more on general security practices and strategic planning as it relates to security. I come from a background of IT and Security, so it was not as difficult. If you study the principles and take advantage of practice test, you should be fine.

Content you might like

When securing your mobile application(s), which of the following is your #1 priority to protect?

Your core data44%

Your cryptographic keys45%

Your proprietary code9%

Other (please comment below)

View Results

Our team is initiating our pursuant of ISO 27001. Any general guidance from those who have recently been through the process and received their certification?

How are you addressing technical debt risk resulting from AI coding tools? Have you established specific processes to manage vulnerabilities in AI-generated code, and are you collaborating with software engineering or other teams using these tools?

Which of the following category of endpoints represents the weakest security in your organization?

Laptops24%

Mobile devices39%

IoT12%

Network infrastructure17%

Servers2%

Cloud infrastructure3%

Other (please comment below)1%

View Results

Has anyone done the CISM certification? If so, I'd like to know how difficult it was for you to obtain with a beginner IT background?

Sort by:

Content you might like

When securing your mobile application(s), which of the following is your #1 priority to protect?

Our team is initiating our pursuant of ISO 27001. Any general guidance from those who have recently been through the process and received their certification?

How are you addressing technical debt risk resulting from AI coding tools? Have you established specific processes to manage vulnerabilities in AI-generated code, and are you collaborating with software engineering or other teams using these tools?

Which of the following category of endpoints represents the weakest security in your organization?

What percentage of your team’s time is allocated annually for upskilling and training initiatives?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

CrowdStrike Outage: Impact And Recovery

Generative AI Training for IT Organizations

Take Your Insights On-the-Go