Governments around the world are in the midst of the challenging task of pushing out COVID-19 vaccines in a safe, but urgent and calculated manner. Unprecedented leadership is needed to overcome logistical hurdles. The same can be said for leadership in the cybersecurity industry, where cyberattacks and breaches are the highest they have ever been. Leaders who can be the conduit between business and security are desperately needed. Passing the CISM certification examination is a red-carpet path to answer that call.
I personally decided to pursue the CISM certification to grow and demonstrate my security decision-making skills, and how they align with business objectives. Being able to apply the correct controls is great, but knowing why you are applying the controls, and how they might affect the business, is even better.
Get in the right mindset
To succeed in the CISM exam, reprogram your mind for success. Think like a manager. As a CISM, you don’t fix problems – you are a risk advisor who understands that security should support the business, not hinder it. The business always comes first, as this is how companies stay in existence, and if there is such a thing as a tiebreaker, a risk assessment and final approval should be presented to senior management. Become bilingual, as your language should change when you talk to technical personnel and shift with ease when talking to executive leaders. In short, “know your audience.”
Equip your study prep toolkit
On your mark, get set, assess your knowledge with the FREE 10-question CISM practice quiz. Based off your score in specific domains, attack your weakest areas. Some use the 80/20 rule here, putting 80% of their focus toward improving their weaker areas. Your goal should be to eliminate any gaps in your knowledge. I found the Kelly Handerhan CISM class to be an engaging and helpful video course for CISM review as well as the CISM Certified Information Security Manager All-in-One Exam Guide for a reading resource. Finally, my practice exam of choice to get ready for the big CISM showdown was ISACA’s CISM Review Questions, Answers & Explanations Database.
I personally like to focus all study efforts on practice testing the last week or two before the exam. Why do this? Just like bodybuilders concentrate on shredding the last phase of their preparation before a big show, knowing their definition will translate most visually to the judges and audience, you should make test-taking the main part of your final preparation because, in the end, you are preparing to perform well on an exam, and what better way than to practice taking that exam?
Prime yourself for success!
On your last night, stay away from all night cramming and get some rest, ideally eight hours. Get up early enough to have a cup of coffee and have a light breakfast. Avoid excessive cramming the day of the exam – being stress-free is the key to performing at a high level.
My advice is to take at least one of your two breaks during the CISM exam. Take a quick walk, get a drink of water, and when you return you will be re-focused, re-centered, and re-energized to finish strong. You will thank me later!
I hope to hear about new CISMs in the near future!