Shall I immediately target a CISM certification?

SDeeSDee Posts: 76Member ■■■□□□□□□□
I am a CISSP, CCSP, CEH, CCNP, Triple CCNA and ITIL Certified with over 7 years of broad and variant experience, currently an Information Security manager.

Passed CCSP on 7 Jan, which seems to cover a lot of the topics and domains of the CISM, same goes for CISSP which I passed on ~ Oct. 2017
I just finished doing the CISM Self Assessment on ISACA.ORG and results were; 

Your score is 76%. (38/50)
1: Information Security Governance 91%
2: Information Risk Management and Compliance 75%
3: Information Security Program Development and Management 69%
4: Information Security Incident Management 66%

Do you think it would be realistic to target passing the exam within a 21-day period, as their concepts are similar to a lot of CISSP/CCSP concepts I want to take advantage of still having fresh information and go for it as soon as possible. 

I am yet to do any research about the material, the idea just popped into my mind. 
This would be my first ISACA exam, any 'de facto' books for CISM? 

Comments

  • DZA_DZA_ Untitled. Posts: 295Member ■■■■□□□□□□
    Based on your experience and recent passings of CISSP and CCSP, it would complement with ISACA's mentality with your current certifications. Whether it would be any value to your job is for you to decide as there is a lot of overlap with CISSP. If and when you plan on taking it, I'd recommend the Questions and Answers Database for review. With a consistent study schedule I believe you can clear it in 21 days. 

    Cheers,
  • SDeeSDee Posts: 76Member ■■■□□□□□□□
    Thanks a lot, yes q a practice questions database would absolutely be part of my study prep. Anyways do you recommend any single book for studying? Honestly I'd prefer to have a single source after jumping from one book to another while preparing for CCSP

  • JDMurrayJDMurray Certification Invigilator Surf City, USAPosts: 11,125Admin Admin
    I can see the ISACA's CISA and CRISC also covering much of the CISM material, but the (ISC)2's CCSP Cloud cert does as well?
  • SDeeSDee Posts: 76Member ■■■□□□□□□□
    Yes, at least from what I've seen in the Assessment Exam, CCSP might be slightly different from what it's 'Cloud' name implies, common area's contain Risk Management  Access Management, Business Continuity,.. etc. in addition to a similar mentality of not rushing into actions, report as much as you can, get the support, evaluate based on risk,.. etc.
  • JDMurrayJDMurray Certification Invigilator Surf City, USAPosts: 11,125Admin Admin
    On ISACA exams you must demonstrate that you are able to think and reason "The ISACA Way." I doubt that the (ISC)2 literature is worded in ISACA's think-speak. I won't be looking at the CISM until next year, so I am just speculating.
  • SDeeSDee Posts: 76Member ■■■□□□□□□□
    It is the same with CISSP, thinking in an ISC way and I find both to be really close.

    I am referring to the items mentioned in my previous post; not rushing into actions, report as much as you can, get the management support, evaluate based on risk, support and decide based on business taking risk into consideration, answer each question as a manager not a technical person, and other similar mindsets. 

    I find them to be somehow similar, just shuffled through some questions in a mobile App and doing well. 
  • DZA_DZA_ Untitled. Posts: 295Member ■■■■□□□□□□
    When I passed the CISM exam back last year, I used the official manual and the QAE DB. I would like to mention that Kelly Handerhan's Cybrary video also has a playlist for CISM. I dont believe you will need more than this.
Sign In or Register to comment.