CISM exam cost and complete testing details [Updated 2025]
Organizations handle vast amounts of sensitive and confidential data that requires careful monitoring to maintain integrity and security. The Certified Information Security Manager (CISM) certification equips information security managers, supervisors and professionals with the knowledge and credentials needed to excel in roles focused on information security management responsibilities.
Want to learn more about the CISM and other valuable ISACA certifications? Watch our informative webinar: ISACA career path: The highest paying certifications in the industry.
$150,040 average salary
ISACA CISM is one of the industry's highest-paying cybersecurity certifications. Take your information security management career to new heights and enroll now to claim your Exam Pass Guarantee!
What is the CISM exam designed to assess?
The CISM exam evaluates your knowledge across essential information security management disciplines. This respected credential opens career advancement opportunities for security professionals looking to demonstrate their expertise in information security governance and management.
The exam covers four CISM domains of knowledge:
- Information security governance (17%)
- Information security risk management (20%)
- Information security program development and management (33%)
- Incident management (30%)
Once you've proven your proficiency in these areas by earning the CISM certification, you'll be well-positioned to demonstrate your value to potential employers as an information security management professional.
CISM exam format, structure and scheduling
The CISM certification exam uses a computer-based examination format administered at professional testing centers worldwide or via remote proctoring from your home or office.
The exam consists of 150 multiple-choice questions with a four-hour time limit. An important note about the CISM exam structure: some questions have multiple technically correct answers, requiring you to select the MOST appropriate response based on ISACA's best practices and frameworks.
Currently, the CISM exam is available in these languages: Chinese Simplified, English, Japanese and Spanish.
How to take the CISM exam: Booking process
To schedule your CISM exam, follow these straightforward steps:
- Verify test center availability in your preferred location and date, or confirm your system meets remote proctoring requirements
- Register for the exam through ISACA's website
- Complete payment (required before scheduling)
- Schedule your exam appointment
$150,040 average salary
ISACA CISM is one of the industry's highest-paying cybersecurity certifications. Take your information security management career to new heights and enroll now to claim your Exam Pass Guarantee!
CISM testing centers: Identification requirements
You will only be admitted to CISM exam locations with a valid, current photo identification matching the name on your scheduling confirmation.
Acceptable identification forms include:
- Driver's license
- State identity card
- Passport
- Passport card
- Military ID
- Green card or permanent resident card
- National identification card
Testing centers may request additional identification if needed, so bringing two forms of ID is recommended. If your identification is rejected, you'll be considered absent, forfeit your exam fees and need to pay again to retake the test.
CISM exam logistics: Arrival and remote options
Arrive at least 30 minutes before your scheduled appointment. Candidates arriving more than 15 minutes late may be denied entry and forfeit their examination fees.
For those preferring flexibility, ISACA's remote proctoring option allows you to take the exam from home or another suitable location. This option uses ISACA testing procedures that maintain security certification testing standards while offering convenience.
Rescheduling and cancellation policies
All exam rescheduling or cancellations must occur at least 48 hours before your scheduled appointment. After this cutoff, you must either take the exam or forfeit your registration fee.
CISM exam preparation timeline
Successful certification candidates typically dedicate significant time to CISM exam preparation. Many report studying for three months or longer before test day. Schedule your exam with enough lead time to thoroughly prepare for this challenging assessment.
CISM exam retake policy
If you don't pass on your first attempt, ISACA's retake policy follows this schedule:
- First retake: 30 days after initial attempt
- Second retake: 90 days after second attempt
- Third retake: 90 days after third attempt
CISM exam cost breakdown
Current CISM exam registration fees are:
- ISACA members: USD $575
- Non-ISACA members: USD $760
It's worth noting that when you pursue CISM training through authorized partners like Infosec, your exam registration costs are typically included in the boot camp package, providing additional value while preparing you for certification success.
CISM exam scoring system
The certification test contains 150 questions completed within a maximum four-hour timeframe. ISACA uses a 200-800 point scale with 450 as the passing score. This isn't based on a simple percentage but rather a scaled score conversion.
What makes the CISM particularly challenging is the nuanced nature of the questions - many have multiple technically correct answers but only one BEST answer according to ISACA standards. This sophisticated testing approach contributes to the certification's respected status.
Earn a $150,040 Salary with an ISACA CISM
The employment of information systems managers is projected to grow 16% by 2031. Get your ISACA CISM to launch into the field — backed with an Exam Pass Guarantee.
Ready to advance your security management career?
The CISM certification has become essential for professionals entering information security management roles. This credential demonstrates your ability to evaluate organizational security concerns holistically and develop appropriate policies and protocols. While technical knowledge forms the foundation, the CISM exam effectively distinguishes truly exceptional security managers.
To further support your career development, check out our Cybersecurity salary guide: Popular and top-paying certifications and roles for insights on compensation trends. And if you're planning your next professional steps, our Cybersecurity certifications and skills roadmap for mid-career professionals provides valuable guidance on which credentials might best complement your CISM.
Want to know more about the CISM certification exam? If so, please visit Infosec’s CISM hub.
In this Series
- CISM exam cost and complete testing details [Updated 2025]
- CISM renewal requirements: How to maintain your certification
- How to Become CISM Certified – Certification Requirements [Updated 2025]
- CISM frequently asked questions (FAQ)
- CISM certification overview: Building your security management career
- The best CISM study resources for information security managers
- Common CISM job titles and career paths in 2025
- How to earn CISM CPE credits: Complete guide [updated 2025]
- 9 practical CISM exam tips for certification success in 2025
- CISM salary: What you can expect to earn in 2025
- CISM certification cost and requirements: Your complete preparation guide
- CISM Domain 2: Information Risk Management (IRM) [2022 update]
- CISM domain 1: Information security governance [Updated 2022]
- CISM: Overview of domains [updated 2022]
- CISM Domain 4: Information Security Incident Management (ISIM) [2022 update]
- CISM domain 3: Information security program development and management [2022 update]
- CISM Domain – Information Security Program Development
