zen master Member Posts: 222
I recently saw a vacancy being advertised for a Network Security Admin, and the job required CISSP and CISM. I've never seen anyone ask for CISM before, exactly how popular and in demand is this certification? What's the content like?
Very popular actually. I see a lot of security positions ask for CISSP, CISA, and CISM !
CISM is about incident response mainly, and CISA is about auditing.
A lot of people in my department take CISM after CISSP and they say it is about 70% overlap in the domains. So, you can do your CISSP and then get CISM right after. Also, be aware of the timing. CISSP exams are throughout the year when CISM (and CISA) are given twice a year in June and December (I think).
“We build our computer (systems) the way we build our cities: over time, without a plan, on top of ruins” - Ellen Ullman