Certified Information Security Manager (CISM) Literacy (Beginner Level)

  • 18m
  • 18 questions
The Certified Information Security Manager (CISM) Literacy benchmark measures whether a learner has had exposure to common IT security practices and theories. A learner who scores high on this benchmark demonstrates a genuine understanding in the major areas of information security and can make decisions and participate in discussions with peers.

Topics covered

  • apply security controls to protect credit card holder information
  • correlate cloud computing and IT security requirements as they pertain to U.S. government agencies
  • identify security control types and how they address potential threats
  • identify the relationship between IT security and business processes
  • identify the responsibility distribution of various cloud service models
  • list asset risks centrally in a risk register
  • outline how COBIT provides an IT management framework
  • outline how to apply common risk management concepts, such as gap analysis, SWOT, and risk vs. incident
  • outline how to conduct a cloud risk assessment
  • outline how to determine organizational asset values
  • outline how to determine the risk appetite of an organization
  • recall the importance of classifying data and assigning data responsibility
  • recall the usefulness of international IT security management standards
  • recognize how EU citizen private data must be protected internationally
  • recognize how select Canadian acts of legislation are designed to ensure data privacy
  • recognize how sensitive medial data is protected in conjunction with U.S. health care requirements
  • recognize the relevance of IT security in today's business environment
  • recognize the responsibilities associated with data roles, such as data owner and data custodian