Ready to Start Your Career?
By: Tatianna
August 14, 2018
CISM Training: Specific Use Cases
By: Tatianna
August 14, 2018
CISM Training: Specific Use Cases
Data breaches are getting worse. As noted by The Spectator, recent data suggests more than 140 million records are lost or stolen every month, while worldwide losses due to attacks such as business email compromise (BEC) will top $9 billion this year. The result? Companies need highly-skilled information security managers capable of both meeting and exceeding the challenges of data governance, infosec design, and global user access. Beyond on-the-job experience with cutting-edge technology and staff management, however, enterprises are also looking for highly-valued certifications such as certified information security manager (CISM), which recognizes a combination of in-situ work and assessed subject mastery. Professionals with the CISM designation enjoy choice in their careers: Earn more at their current job or find another company willing to give them the freedom to innovate and integrate new infosec frameworks.Maybe you’re still not sure. Maybe you don’t work in a dedicated IT shop or tech-focused company. Still wondering if CISM certification is right for you? Here’s a look at four use cases for real-world CISM certification.CISM Training for Geographic ExpertiseDo a quick search for CISM training and you’ll discover a focus on geographic diversity — IT staff from all over the world are looking for reputable CISM training and the ability to earn this certification.Both the nature of the training and the evolving nature of technology make this an ideal fit. First, training companies can now deliver high-quality education online and anywhere in the world. This means the same type of training is available to users in the United States, India, Japan or Brazil.In addition, CISM courses and certification provide geographic expertise: The course is globally focused on international privacy and data security laws, giving certified IT professionals the skills they need to develop information management policies and procedures capable of accounting for regional needs, national laws and international compliance requirements.CISM Training for Financial ExpertsOne key area of focus for CISM training is information risk management and compliance. While this is valuable no matter your industry, it has an even greater impact for financial institutions. Why? Consider data from security firm Symantec, which found that financial malware is twice as prevalent as ransomware worldwide. Given the sensitive nature of information handled by the bank, credit unions and even eCommerce companies, risk management and compliance are critical.CISM-certified professionals have the skills and experience necessary to evaluate potential areas of risk in existing financial networks — such as mobile applications or users with broad data access — and implement effective compliance solutions. These might take the form of two-factor authentication, large-scale zero trust modeling or regularly assessed access privileges for all users, from front-line staff to C-suite members.CISM Training for Law EnforcementAnother popular search for CISM training? CISM for law enforcement. While at first glance policing and information security may appear to be a mismatch, remember that first responders handle massive amounts of personal and private data every single day. The result? Law enforcement agencies — many of which still rely on outdated paper or spreadsheet storage methods — must adapt existing infosec policies to meet the demands of an increasingly connected world.For IT professionals wondering about the specific benefits of CISM certification in the law enforcement industry, consider a recent Forbes article which shores up the importance of talking to the board of directors about information security. Given the manager-focused nature of CISM training and its exam requirements (five years of infosec and three years of management experience), CISM-trained professionals are in the ideal position to align information security goals with long-term C-suite strategies.In law enforcement, the board of directors is often represented as divisional commanders and city police chiefs who may recognize the need for enhanced data protection and governance but are unsure how to translate emerging need into effective practice. CISM-certified staff can help bridge the gap.CISM Training For ChaplainsAnother group interested in CISM training? Chaplains. Again, this seems like a face-value mismatch but consider both the financial and personal contributions made to many churches by local businesses and individuals. Malicious attackers are now aware that many organizations not known for their IT savvy are in possession of valuable data which could be leveraged for ransom, sold on the Dark Web or exploited for long-term identity theft. And given the generous nature of many parishes and churches, business ostensibly conducted in good faith could inadvertently lead to data theft.As noted by CSO Online, one key aspect of information security is recognizing “snake-oil” when you see it. For CISM-certified staff, this means identifying tools or vendors that are too good to be true or rooting out users who inadvertently or intentionally put data at risk. Casting a Wide NetCertified information security management training is valuable to both experienced staff and businesses looking to shore up their IT expertise. But this certification isn’t just for generalists — any organization looking to manage risk, implement better infosec policies and avoid potential pitfalls is well-served by CISM-certified professionals.