The prerequisite for the CISM certification in Singapore involves providing authenticated proof of a minimum of five years of professional experience in information security. Additionally, you need a minimum of three years of managerial experience in information security, specifically in three or more of the areas outlined in the job practice analysis.
The specified amount of information security work experience can be fulfilled by possessing the mentioned security-related certifications and experience in managing information systems.
- Post-graduate degree in information security or a related field (e.g., business administration, information systems, information assurance)
- Certified Information Systems Security Professional (CISSP) in good standing
- Certified Information Systems Auditor (CISA) in good standing
- One full year of general security management experience
- One full year of information systems management experience
- Skill-based security certifications (e.g., Microsoft Certified Systems Engineer (MCSE), CompTIA Security +, ESL IT Security Manager, SANS Global Information Assurance Certification (GIAC), Disaster Recovery Institute Certified Business Continuity Professional (CBCP))
- Completion of an information security management program at an institution aligned with the Model Curriculum
Experience substitutions will not fulfil any part of the 3-year requirement for work experience in information security management.
Exception: Two years as a full-time university instructor teaching the management of information security can be substituted for every 1 year of information security experience.