› Certifications · compare
Compare certifications
Pick up to 3 certifications and compare them side-by-side on cost, exam format, recertification, salary signal, quality, and domain coverage.
ISC2 · expert
ISSMPInformation Systems Security Management Professional
ISC2 specialization for security management. Requires CISSP. Focus on Leadership, Risk Management, Security Operations, and Compliance Management. For CISOs and senior security executives.
Official pageISACA · leadership
CISMCertified Information Security Manager
Security program management, risk, governance, and incident governance. The manager / CISO-track signal.
Official pageComparing
ISC2ISSMP
ISACACISM
› Cost
Exam fee
ISSMP$599
CISM$760
Exam fee
$599
$760
Annual maintenance fee
ISSMP$125/yr
CISM$45/yr
Annual maintenance fee
$125/yr
$45/yr
3-year cost of ownership
ISSMP$974
CISM$895
3-year cost of ownership
$974
$895
› Exam mechanics
Pass mark
ISSMP700/1000 (scaled)
CISM450/800 (scaled)
Pass mark
700/1000 (scaled)
450/800 (scaled)
Retake policy
ISSMP$599 fee · 30d wait · 4/yr cap
CISM$575 fee · 30d wait · 4/yr cap
Retake policy
$599 fee · 30d wait · 4/yr cap
$575 fee · 30d wait · 4/yr cap
Study time
ISSMP120–250 hrs
CISM100–200 hrs
Study time
120–250 hrs
100–200 hrs
Validity
ISSMP3 yrs
CISM3 yrs
Validity
3 yrs
3 yrs
CPE / yr
ISSMP20 CPEs
CISM40 CPEs
CPE / yr
20 CPEs
40 CPEs
Delivery
ISSMPtest center
CISMtest center
Delivery
test center
test center
› Salary signal (US base)
Range
ISSMP$150K – $220K
CISM$130K – $190K
Range
$150K – $220K
$130K – $190K
Median
ISSMP$180,000
CISM$155,000
Median
$180,000
$155,000
Premium %
ISSMP—
CISM+11%
Premium %
—
+11%
Role context
ISSMPSenior security manager / director, US, 7+ years. Requires active CISSP.
CISMInformation security manager / director, US, 5+ years.
Role context
Senior security manager / director, US, 7+ years. Requires active CISSP.
Information security manager / director, US, 5+ years.
› Quality (4-axis rubric · 0–10)
Schema quality
ISSMP8.0
CISM9.0
Schema quality
8.0
9.0
Practice evidence
ISSMP1.0
CISM1.0
Practice evidence
1.0
1.0
Maintenance
ISSMP5.0
CISM8.5
Maintenance
5.0
8.5
Market recognition
ISSMP5.0
CISM9.0
Market recognition
5.0
9.0
Average
ISSMP4.8
CISM6.9
Average
4.8
6.9
› Recognition & lifecycle
Recognition
ISSMPGlobal
CISMGlobal · US · EU · UK · DACH
Recognition
Global
Global · US · EU · UK · DACH
ISO 17024 accredited
ISSMP—
CISM✓
ISO 17024 accredited
—
✓
DoD 8140 baseline
ISSMP✓
CISM✓
DoD 8140 baseline
✓
✓
Holders worldwide
ISSMP1,500
CISM70,000
Holders worldwide
1,500
70,000
Current version
ISSMP2024 CBK refresh (2024-04)
CISM2022 job-practice analysis (2022-06)
Current version
2024 CBK refresh (2024-04)
2022 job-practice analysis (2022-06)
› Domain coverage
A1Governance, Risk & Compliance
ISSMP● core
CISM● core
A1Governance, Risk & Compliance
● core
● core
A11Detection Engineering & Threat Hunting
ISSMP·
CISM⚠ gap
A11Detection Engineering & Threat Hunting
·
⚠ gap
A12Data Security, Privacy & Protection
ISSMP·
CISM○ touched
A12Data Security, Privacy & Protection
·
○ touched
A13Supply Chain Security
ISSMP·
CISM○ touched
A13Supply Chain Security
·
○ touched
A18Security Leadership
ISSMP● core
CISM● core
A18Security Leadership
● core
● core
A25Security Architecture & Engineering
ISSMP·
CISM○ touched
A25Security Architecture & Engineering
·
○ touched
A4Application Security
ISSMP·
CISM⚠ gap
A4Application Security
·
⚠ gap
A5Cloud Security
ISSMP·
CISM⚠ gap
A5Cloud Security
·
⚠ gap
A7Incident Response & Forensics
ISSMP● core
CISM● core
A7Incident Response & Forensics
● core
● core
A9Penetration Testing & Red Teaming
ISSMP·
CISM⚠ gap
A9Penetration Testing & Red Teaming
·
⚠ gap
B1AI-Powered Threat Detection
ISSMP·
CISM⚠ gap
B1AI-Powered Threat Detection
·
⚠ gap
C1Adversarial Machine Learning
ISSMP·
CISM⚠ gap
C1Adversarial Machine Learning
·
⚠ gap
Browse the full catalog or open any one of these on its detail page for full study materials, peer comparisons, and lifecycle notes.