Certified Information Security Manager (CISM)Exam Objectives

Master all 4 exam domains for the CISM certification. Understanding the exam objectives and their weightings is crucial for focused, efficient preparation.

View All Domains Study Guide

Exam Overview

Total Domains4

Difficulty

EXPERT

Questions150

Passing Score450/800

Exam Domains

All Exam Objectives

4 domains covering 100% of the exam

Information Security Governance

17% of exam

17%

~26 questions

Information Risk Management

20% of exam

20%

~30 questions

Information Security Program Development and Management

33% of exam

33%

~50 questions

Incident Management

30% of exam

30%

~45 questions

Strategy

Study Strategy by Domain Weight

Prioritize your study time based on exam weightings

Highest Priority

Information Security Program Development and Management

33%

Allocate approximately 26 hours of study time

Incident Management

30%

Allocate approximately 24 hours of study time

Information Risk Management

20%

Allocate approximately 16 hours of study time

Information Security Governance

17%

Allocate approximately 14 hours of study time