CISM (Certified Information Security Manager) is an advanced certification designed for IT professionals who focus on information security management. It is for those with technical expertise and experience in IS/IT security and control who want to make the move from team player to manager. CISM can add credibility and confidence to your interactions with internal and external stakeholders, peers, and regulators.
MY-CPE LLC is approved by NASBA and it offers Continuing Professional Education (CPE) courses for the designation provided by ISACA. ISACA does not require its designation holders to take CPE from an ISACA-approved CPE provider. We are focused on providing quality continuing education content that incorporates the qualified subject areas. Our NASBA-approved CPE courses are authored/reviewed by industry specialists and subject matter experts. All our courses are designed in a way to ensure that courses meet your continuing education requirements.
CERTIFIED INFORMATION SECURITY MANAGER (CISM) CONTINUING EDUCATION PROFESSIONAL REQUIREMENT OVERVIEW
| CPE Requirements | 120 hours for a three-year reporting period, 20 hours annually |
| License Renewal Period | January 15th annually. |
| CPE Reporting Cycle | The annual reporting period begins on 1 January of each year. |
| Ethics Requirement | There is no minimum ethics requirement for CISM designation holders but are required to comply with ISACA’s Code of Professional Ethics. |
| Carry-Over Credits | No credit may be carried over from excess hours earned during a reporting period. |
CLICK HERE for further reference on CPE regulations for the Certified Information Security Manager (CISM).
A Certified Information Security Manager (CISM) needs to complete 120 hours of CPE during a 3-year reporting period out of which 20 hours must be completed annually.
There is no minimum ethics requirement for a Certified Information Security Manager (CISM) but is required to comply with ISACA’s Code of Professional Ethics.
The Certified Information Security Manager (CISM) license renewal period ends on January 15th annually.
The annual reporting period begins on 1 January of each year. The three-year certification period varies and is indicated on each annual invoice and the letter confirming annual compliance.
CLICK HERE for further reference.
Save $20 on Auto Renewal
CISM validates your expertise in the four work-related domains listed below that are applicable across industry verticals:
Information Security Governance
Information Security Risk Management
Information Security Program
Incident Management
No, there are no minimum CPE requirements in a particular subject area.
The following categories of qualifying activities and limits have been approved by the CISM Certification Committee and are acceptable for CPE:
A CISM must obtain and maintain documentation supporting reported CPE activities. Documentation should be retained for twelve months following the end of each three-year reporting cycle. Documentation should be in the form of a letter, certificate of completion, attendance roster, Verification of Attendance form (located in this policy), or other independent attestation of completion. At a minimum, each record should include the name of the attendee, the name of the sponsoring organization, the activity title, the activity description, the activity date, and the number of CPE hours awarded or claimed.
The cost of annual maintenance fee is $45 for ISACA members and $85 for non-members. Once you hold more than two ISACA certifications, the cost to renew your 3rd (4th, 5th, etc.) certification is reduced to $25 for ISACA members and $50 for non-members.
Failure to comply with these certification requirements will result in the revocation of an individual’s CISM certification. In addition, as all certificates are owned by ISACA, if revoked, the certificate must be destroyed immediately.
For newly certified CISMs, the annual and three-year certification period begins on 1 January of the year succeeding certification. Reporting CPE hours attained during the year of certification is not required. However, hours attained between the date of certification and 31 December of that year can be used and reported as hours earned in the initial reporting period.
No, the Short video (Nano learning) method is not approved for the CPE requirements of a Certified Information Security Manager (CISM).
myCPE provides courses that are approved for continuing education credits by NASBA. Based on the guidelines issued by these boards regarding Continuing Education Requirements, we recommend the programs/ webinars be suitable for CISM designation holders. However, it will be the responsibility of each attendee to ensure that they are eligible for the Continuing Education Credits based on their occupation/ job profile, knowledge requirements as well as guidelines laid down by their regulatory board before registering for the webinars.
