CISSP vs. CISM (which exam is tougher?)
Hey folks, I was wondering if anyone perusing the CISSP and SSCP forum has taken the CISM exam. If so, my real question is around how it compares to the CISSP. Not the typical "CISM is management only and CISSP is are more technical and all inclusive security cert" answer. I get that CISM is more around risk and management. I'm more curious around the level of PAIN the actual exam is to prepare for and succeed in passing. I get mixed feelings with all of the research I'm doing. It basically breaks down as follows: 50% of the people - They're both really hard so choose which fits your role 50% of the people - CISSP is Advanced and CISM is Intermediate (difficulty level) I was just hoping to get some input from anyone that may have sat both exams.