CISM 继续职业教育政策指南
Uploaded by
bankerbinCISM 继续职业教育政策指南
Uploaded by
bankerbinCommon questions
Powered by AIIf a CISM certification is revoked due to non-compliance with CPE policies, the individual can appeal for certification restoration by paying a $50 restoration fee along with current and past due maintenance fees if the appeal is beyond 60 days post-revocation date after January 1, 2013. All appeals involve the appellant's responsibility to pay associated fees .
A CISM certification can be revoked if an individual fails to meet the CPE policy requirements, including not reporting the required CPE hours, failing to pay the annual maintenance fee, or not complying with ISACA's code of ethics. Additionally, if selected for an annual audit, not providing the required documentation to support reported CPE activities can also result in revocation .
To maintain CISM certification, a CISM must report a minimum of 20 CPE hours annually and a total of 120 CPE hours over a three-year period. These reported hours must contribute to the growth of the CISM's knowledge, relevant to performing CISM-related tasks. CISM individuals also need to pay the annual CPE maintenance fee to ISACA and comply with ISACA's code of professional ethics .
Mentorship is rewarded with up to 10 CPE hours per year, where the mentor assists a specific individual in preparing for ISACA exams or making career decisions regarding certification. One hour of personal guidance or training equates to one CPE hour .
Individuals are prohibited from using the CISM logo on personal branding materials such as business cards or promotional literature, as it may imply endorsement by ISACA. Instead, certified individuals are permitted to use the CISM acronym after their names (e.g., John Doe, CISM).
The ISACA CISM Materials Review Committee allows members to earn CPE hours by submitting questions or reviewing materials for the CISM exam or review courses. Each accepted question or review earns 2 CPE hours, which can be counted across all ISACA certifications .
A retired CISM, who is either over 55 years of age and retired permanently from the profession or incapacitated due to permanent disability, can apply for a retired CISM status which exempts them from earning CPE hours. Similarly, a non-practicing CISM who has left the information security profession can apply for non-practicing CISM status, also exempt from CPE requirements, but must pay the annual fee. These individuals cannot use the CISM designation on business cards .
CPE hours are calculated based on actual participation in qualified ISACA or non-ISACA educational activities, with 50 minutes equating to one CPE hour, reported in increments of 15 minutes. Eligible activities include ISACA conferences, non-ISACA conferences, self-study courses, teaching, and writing articles relevant to information security management. Activities like office software training do not qualify .
CISM holders must retain documentation that supports reported CPE activities for at least 12 months after the end of each three-year reporting period. This documentation can include letters, certificates of completion, attendance records, or the attendance verification form. Each record must include the participant's name, organizing entity, event title, description, date, and the CPE hours granted .
The purpose of the CPE policy is to ensure that all Certified Information Security Managers (CISM) possess the latest knowledge and skills necessary to perform their roles competently. The policy ensures that those meeting the CISM CPE requirements are better positioned to manage, design, supervise, and assess enterprise information security .