Anyone preparing to take the CISM exam?

MM-Seat · 21 Jun 2021 at 10:57

ivrytwr3 said:
I see CISM as Information Security Manager - aligning the business needs to Info Sy. CISSP is more technical and hands on.

If you're going IT Auditor, are you also looking at ISO27001 LA?

None of the team are ISO27001 LA mainly because we are acting as the internal audit team for the clients and therefore, not independent.

Beerbaron · 21 Jun 2021 at 11:05

CISM and CISSP are 2 very different certs. CISSP covers a large area of security and is much more technical.

Since i posted this i got CISM certified with the relevant experience and i also passed CompTIA Security+. I have also changed roles several times and currently working as a SecOps Engineer as i prefer the technical side of security.

ivrytwr3 · 21 Jun 2021 at 11:16

Beerbaron said:
CISM and CISSP are 2 very different certs. CISSP covers a large area of security and is much more technical.

Since i posted this i got CISM certified with the relevant experience and i also passed CompTIA Security+. I have also changed roles several times and currently working as a SecOps Engineer as i prefer the technical side of security.

Congrats! I found the CISM exam quite tough, simply because the answers were so close to each and also because what you would WANT to do in terms of IT Sy, may not be in line with the business goals/objectives.

Beerbaron · 21 Jun 2021 at 11:31

Apparently all the ISACA exams are like that and they get harder with CISA and then CRISC.

MM-Seat · 22 Jun 2021 at 18:42

I’ll be certainly doing CISA. Been a cert I’ve wanted since starting in audit.

thankful that none of them are the multi year undertaking of my ACCA.