What is CISM?
CISM (Certified Information Security Manager) is an ISACA certification focused on information-security management and governance. It validates the ability to design and manage an enterprise information-security program, distinct from hands-on technical security work.
What it means
ISACA's credentialing page lists CISM among its certifications, with a free exam content outline available; review materials and courses are paid. CISM is management-oriented — covering security governance, risk management, program development, and incident management — and is aimed at professionals moving toward security leadership.
Sources
- ISACA — ISACA Credentialing (CISA / CISM): https://www.isaca.org/credentialing
Citation Ledger
| ID | Supports | Evidence | Source |
|---|---|---|---|
| CIT-01 | Definition source for What is CISM? | Official source page | ISACA — ISACA Credentialing (CISA / CISM) |