Prime Learning

CISM domain

Information Security Program

Study the Information Security Program blueprint area in the context of June 2022 exam content outline.
Practice test overview All exam domains
CertificationCISM
ProviderISACA
Blueprint weight33%
Exam standardJune 2022 exam content outline

What this domain covers

This domain groups 1 objectives: Develop and manage an information security program aligned to strategy..

Why this domain matters

The Information Security Program domain represents a distinct part of the CISM role blueprint. It should be understood in relation to the other domains because exam scenarios can require knowledge from more than one area.

How to prepare

Begin with the objective statements below, review each listed subtopic in the provider material, and practice applying the concepts to realistic decisions. Track uncertain answers as well as incorrect ones before moving into timed simulation.

  • Plan resources, controls, policies, awareness, metrics, and third-party oversight.
  • Integrate and evaluate program controls across business operations.
Exam objective

Develop and manage an information security program aligned to strategy.

Prepare to work with Plan resources, controls, policies, awareness, metrics, and third-party oversight.; Integrate and evaluate program controls across business operations..