Certified Information Security Manager®

(CISM®) teaches expertise in information

security governance, program development

and management, incident management

and risk management.

Online CISM® ISACA® Training & Certification

Only $1,995 Training + Exam

Anchor 1

What is CISM Certification by ISACA?

CISM or Certified Information Security Manager is a prestigious training course and certification by ISACA that teaches

IT Professionals how to assess risks, implement effective governance and proactively respond to incidents.

This ISACA CISM course provides training on data breaches, ransomware attacks and other constantly evolving security threats are top-of-mind for today’s IT professionals.

70%

Experienced

On-the-Job

Improvement

$149k

Average Salary

of a CISM Certified Person

What You'll Learn with CISM by ISACA

Why You Should take CISM Training

CISM certification demonstrates your expertise in information security programs and their alignment with business goals and objectives.

Through MENA Executive Training's ISACA certification, you will learn the four CISM domains:

Information Security Governance

Information Risk Management and Compliance

Information Security Program Development and Management

Information Security Incident Management

Benefits of CISM Certification

Recognition of Advanced Job Skills: Validates the advanced skills and knowledge of information security professionals.

Global Recognition: Establishes you as a competent information security manager recognised worldwide.

Career Enhancement: Offers an opportunity to build on existing certifications and credentials.

Career Growth Evidence: Provides tangible proof of your professional development.

Increased Earning Potential: Enhances the potential for salary increases and promotions.

What You'll Learn

Domain 1 - Information Security Governance (24%)

Domain 2 - Information Risk Management and Compliance (33%)

Domain 3 - Information Security Program Development and Management (25%)

Domain 4 - Information Security Incident Management (18%)

How are CISM & CISSP different?

Both the CISM and CISSP certifications are vendor-neutral, advanced programs in IT security.

While they share many similarities, they complement each other rather than compete directly.

Here are some common aspects of CISM and CISSP:

Both are vendor-neutral

Both require 5 years of experience in information security management

Maintenance of both requires completion of continuing education

The primary difference between the two is that CISM is more holistic and management-focused, whereas CISSP has a more technical approach.

CISM Exam

Duration: 4 hours

Number of questions: 150 multiple choice

Languages: English, Chinese Simplified, Japanese, Korean and Spanish

Certified Information Security Manager (CISM) affirms your ability to assess risks, implement effective governance, and proactively respond to incidents. With a highlight on emerging technologies such as AI and blockchain, it guarantees your skillset meets evolving security threats and industry requirements.

By addressing top-of-mind concerns like data breaches and ransomware attacks, crucial for IT professionals, this certification ensures you are staying ahead of the pace of change.

ISACA credentials are among the top 10 highest-paying in IT, and CISM is recognised as the preferred credential for IT managers.

Obtaining professional certification provides you and your organisation with a competitive edge in the marketplace.

An increasing number of organisations are requiring or recommending certification for their employees.

To thrive in the global marketplace, it's crucial to choose a certification program based on universally accepted information security management practices. The CISM certification offers such a program.

Prerequisites for CISM by ISACA

There are no formal prerequisites for attending the CISM course or sitting for the exam. This practice is accepted and encouraged by ISACA.

You can take and pass the CISM exam, however the below requirements are necessary if you want to become certified.

Achieving the CISM Certification

To become CISM certified, you must meet the following requirements:

Pass the CISM exam
Adhere to ISACA's Code of Professional Ethics
Agree to comply with the Continuing Education Policy
Accumulate sufficient work experience in the field of information security
Submit an Application for CISM Certification within 5 years of passing the exam

Submitting an Application for CISM Certification

The CISM certification is designed for information security professionals, managers, and other assurance providers. To be eligible, you must submit verified evidence of at least five years of information security work experience, including a minimum of three years of information security management experience in three or more job practice analysis areas.

This experience must be gained within the 10-year period preceding the application date for certification or within 5 years from the date of passing the exam.

CISM Experience Requirements Substitution

The following certifications and experience can substitute for the indicated amount of information security work experience:

Two Years:

Certified Information Systems Auditor (CISA) in good standing
Certified Information Systems Security Professional (CISSP) in good standing
Post-graduate degree in information security or a related field (e.g., business administration, information systems, information assurance)

One Year:

One full year of information systems management experience
One full year of general security management experience
Skill-based security certifications (e.g., SANS or GIAC, Microsoft Certified Solutions Expert (MCSE), CompTIA Security+, Disaster Recovery Institute Certified Business Continuity Professional (CBCP), ESL IT Security Manager)
Completion of an information security management program at an institution aligned with the Model Curriculum

Please note, these experience substitutions will not satisfy any portion of the 3-year information security management work experience requirement.

Experience Exceptions

Two years as a full-time university instructor teaching information security management can be substituted for one year of information security experience.

See Next Training Dates

Frequently Asked Questions

1. What is the duration of the CISM course?

Our CISM certification course is designed to be completed in just 5 days.

2. Who is the CISM course designed for?

The CISM course is ideal for network architects, information security managers, or professionals with information security management responsibilities.

3. What are the four ISACA CISM domains covered in the course?

The course covers the following four domains:

Information Security Governance (24%)

Information Risk Management and Compliance (33%)

Information Security Program Development and Management (25%)

Information Security Incident Management (18%)

4. What are the prerequisites for attending the CISM course and sitting for the exam?

There are no formal prerequisites for attending the CISM course or sitting for the exam, however you do need to have professional experience. See above for more.

5. What is the cost of the CISM certification course?

The cost of the CISM certification course is $1,995,

making it one of the most affordable options available.

6. What does the CISM certification process entail?

To achieve CISM certification, you must:

Pass the CISM exam
Adhere to ISACA's Code of Professional Ethics
Agree to comply with the Continuing Education Policy
Accumulate sufficient work experience in information security
Submit an Application for CISM Certification within 5 years of passing the exam

7. What is included in the CISM package for $1,995?

The course package includes:

Official ISACA Student Kits
Certification Review Manual
12-month access to official ISACA Resources, including Exam Practice Questions, Answers, and Explanations
Course materials
CISM certification exam

8. Are there any experience requirements for CISM certification?

Yes, you need a minimum of five years of information security work experience, including at least three years of information security management experience in three or more job practice analysis areas.

9. Can I substitute other certifications or experience for the CISM work experience requirements?

Yes, certain certifications and experiences can substitute for up to three years of the five-year work experience requirement:

Two Years: Certified Information Systems Auditor (CISA) in good standing, Certified Information Systems Security Professional (CISSP) in good standing, or a post-graduate degree in information security or a related field.

One Year: One full year of information systems management or general security management experience, skill-based security certifications (e.g., SANS or GIAC, Microsoft Certified Solutions Expert (MCSE), CompTIA Security+, Disaster Recovery Institute Certified Business Continuity Professional (CBCP), ESL IT Security Manager), or completion of an information security management program aligned with the Model Curriculum.

10. Is there an experience exception for university instructors? Yes, two years as a full-time university instructor teaching information security management can be substituted for one year of information security experience.

11. What are the benefits of obtaining the CISM certification?

Recognition of advanced job skills for information security professionals
Worldwide recognition as a competent information security manager
Opportunity to build upon existing certifications and credentials
Tangible evidence of career growth
Potential for a salary increase and/or promotion

12. What is the CISM exam format?

The CISM exam consists of 150 multiple-choice questions, has a duration of 4 hours, and is available in multiple languages, including English, Japanese, Korean, and Spanish.

13. Are the courses in person or online?

All courses are fully live online to keep costs to a minimum.

14. What languages do you offer training in?

We offer training worldwide in multiple languages, including Arabic, English, French, German, Hebrew, Italian, Japanese, Korean, Spanish, and Turkish.