Anyone preparing to take the CISM exam?

Beerbaron · 31 Aug 2016 at 10:27

Is there anyone who is preparing to take the CISM exam on 10th September?

I'm currently hitting the revision.

Thanks.

AHarvey · 31 Aug 2016 at 10:37

Sounds interesting, never heard of it before.

I'm looking at getting some proper training and certs, I've been thrown into this job and although I can do it fine, pay sucks and I need to move on to something more mentally stimulating.

Trying to get internal training or resources is a joke as well.

Beerbaron · 31 Aug 2016 at 12:45

ISACA CSIM cert

Tell me about it! My experience is that companies don't really help with training and certs. I end up paying for them myself and using my holiday time. I then end up moving onto another company which pays me more to use them

dowie · 31 Aug 2016 at 13:30

well you can always negotiate when you switch jobs... though it is probably better to take the money

Beerbaron · 1 Sep 2016 at 12:55

Its a no brainer to train employees who work in IT security securing other companies infrastructure.

dowie · 1 Sep 2016 at 13:05

perhaps in some cases, from the company's perspective...

but from your perspective it could well be better to take the money - it is often up to you to negotiate regardless

Beerbaron · 1 Sep 2016 at 14:39

I've had a previous manager know I've been on a course paid for by me and in my own time then expect me to use my new skills. I don't spend £2.5k to give it away for free, especially when i hadn't had a pay rise in 3 years

. A different company started using my cert paid for by me to say our staff are xyz certified for again a qualification i paid for. I just need to find an employer who matches my ambitions

dowie · 1 Sep 2016 at 15:01

You probably need to negotiate better (though I'd still argue that additional cash is usually better than training). 3 years without a pay rise ought to have been one year then jumping ship. If you're not objecting or doing something about it then plenty of companies are happy to underpay.

Beerbaron · 1 Sep 2016 at 15:25

I did jump ship in the end for more than just a lack of training.

Probably in a good position to negotiate better with the need for security skilled employees starting to out strip supply

Beerbaron · 12 Oct 2016 at 19:06

Just got my results and I passed

Ev0 · 12 Oct 2016 at 20:44

Well done

Might give this one a look next year (if I can get the motivation for it).

Beerbaron · 12 Oct 2016 at 20:50

It's moving from paper based to electronic next year.

jimjamuk · 24 Oct 2016 at 23:22

Well done....

I think I took some of these courses in my companies security track. Never took the exam though

ivrytwr3 · 22 May 2021 at 10:06

Thread revival.

Currently on course and also completing the ISACA question banks - exam in 2 weeks.

Any tips/advice?!

ivrytwr3 · 13 Jun 2021 at 09:11

Passed (if anyone's interested!

).

Dr. DI · 13 Jun 2021 at 09:41

Congratz, I stumbled on this thread way too late. If you need help with any other ISACA cert let me know... i sadly have most of them. Also have CISSP and ISO27001 LA.

ivrytwr3 · 13 Jun 2021 at 09:46

Dr. DI said:
Congratz, I stumbled on this thread way too late. If you need help with any other ISACA cert let me know... i sadly have most of them. Also have CISSP and ISO27001 LA.

Awesome - ta.

ISO27001 LA - next on the hit list for me. Just need to get work to pay for it

Dr. DI · 13 Jun 2021 at 09:50

Obvs I am not going to know your experience or background. But becoming a consultant at BSI is a very good way to ramp up your experience, they recruit from grad to directors so there is always a little something happening. PM if you'd like to know more (sounds like a cheesy catch phrase haha)

MM-Seat · 20 Jun 2021 at 19:52

I've got an interview tomorrow to move from an Internal Audit role into IT Audit for the same company. If I am succesful, CISA and CISM are some of the certs available. CISSP is also another one that has been offered. I will pursue CISA but, unsure which to go for between CISM and CISSP.

ivrytwr3 · 20 Jun 2021 at 20:24

MM-Seat said:
I've got an interview tomorrow to move from an Internal Audit role into IT Audit for the same company. If I am succesful, CISA and CISM are some of the certs available. CISSP is also another one that has been offered. I will pursue CISA but, unsure which to go for between CISM and CISSP.

I see CISM as Information Security Manager - aligning the business needs to Info Sy. CISSP is more technical and hands on.

If you're going IT Auditor, are you also looking at ISO27001 LA?