Certified Information Security Manager (CISM) Competency (Intermediate Level)

  • 16m
  • 16 questions
The Certified Information Security Manager (CISM) Competency benchmark measures whether a learner has had project knowledge of common IT security practices and theories. A learner who scores high on this benchmark demonstrates a genuine working knowledge in the major areas of information security and can work independently under the direction of a technology leader.

Topics covered

  • apply IPv4 concepts to a network environment
  • apply IPv6 concepts to a network environment
  • describe the PKI hierarchy
  • differentiate between authentication and authorization
  • discuss how IPsec secures network traffic
  • draw a correlation between OSI layers and TCP/IP protocols
  • identify how identity and access management constitutes a critical aspect of IT security
  • identify the relationship between IT security and business processes
  • outline how cryptography addresses IT security
  • outline how to apply common risk management concepts, such as gap analysis, SWOT, and risk vs. incident
  • outline how to determine the risk appetite of an organization
  • recall how Wi-Fi networks can be secured
  • recognize how different server roles can be deployed and managed safely including through a jump box
  • recognize how DNS is a network name resolution service
  • recognize the relevance of IT security in today's business environment
  • recognize when different types of firewalls should be used