|
CISM,
the Certified Information Security Manager is ISACA's next generation
credential and is specifically geared toward experienced information
security managers and those who have information security management
responsibilities. CISM is designed to provide executive management with
assurance that those earning the designation have the required knowledge
and ability to provide effective security management and consulting.
It is business-oriented and focuses on information risk management while
addressing management, design and technical security issues at a conceptual
level. While its central focus is security management, all those in
the IS profession with security experience will certainly find value
in CISM.
The
CISM exam is offered annually at more than 160 locations worldwide.
The
CISM exam is offered each year and consists of 200
multiple-choice questions, administered during a four-hour session. The
2008 CISM exam
will be administered according to the following:
| Date |
14 June 2008 and 13 December 2008 |
| Venue |
|
| Exam
Registration Deadlines |
Early registration deadline for June Exam: 15 February 2008 and 20 August 2008 for December Exam
Late registration deadline for June Exam: 9 April 2008 and 24 September 2008 for December Exam |
| Exam
Registration Fees |
| |
ISACA
Member |
Non-ISACA
Member |
|
Early registrations Fee |
US$375 |
US$505 |
|
Final Registrations Fee |
US$425 |
US$555 |
|
| How
to Register |
We strongly encourage you to register
well in advance to avoid any delay in the process. Save $50 by
registering online
or return the CISM Examination Registration Form, which you
can find in the 2008
CISM Bulletin of Information in printed form to ISACA. |
| Exam
Areas |
The exam covers five information security management areas created
from a CISM job practice analysis and reflects the work performed
by information security managers. The job practice was developed
and validated using prominent industry leaders, subject matter
experts and industry practitioners. The areas and their definitions
are as follows:
-
Information
Security Governance: Establish and maintain a framework
to provide assurance that information security strategies
are aligned with business objectives and consistent with
applicable laws and regulations.
-
Risk
Management: Identify and manage information security
risks to achieve business objectives.
-
Information
Security Program(me) Management: Design, develop
and manage an information security program(me) to implement
the information security governance framework.
-
Information
Security Management: Oversee and direct information
security activities to execute the information security
program(me).
-
Response
Management: Develop and manage a capability to
respond to and recover from disruptive and destructive information
security events.
|
For
additional information about CISA/CISM, you can contact the CISA/CISM country
coordinator:
Elie Barakat, CISA
Head of IT Audit
Byblos Bank SAL
PO-BOX: 11-5605, Beirut
Lebanon
Tel: +961 1 338100
Fax: +961 1 325014
Email:
elie.barakat@isaca-lebanon.org
|
