What is the CISM (Certified Information Security Manager) certification?

The CISM (Certified Information Security Manager) is a cybersecurity certification offered by ISACA. It validates your knowledge and skills in the field. A passing score of 65% is required.

How many practice questions does CyberCertPrep have for CISM?

CyberCertPrep offers thousands of exam-style practice questions for the CISM certification, covering all exam domains and topics. Questions are regularly updated to match the latest exam objectives.

What is the CISM exam format?

The CISM exam consists of 150 questions to be completed in 240 minutes. The passing score is 65%.

Is CyberCertPrep free for CISM practice?

CyberCertPrep offers a free tier with limited daily questions. Premium plans unlock unlimited access to all practice questions, exam simulations, analytics, and flashcards.

ISACA

Compliance and Ethics

Certified Information Security Manager (CISM) Exam Domain

12% of exam#6 by weight in CISM65% passing score

Exam Weight Breakdown

Information Security Governance

13%

Information Risk Management

13%

Security Program Development

13%

Incident Management

13%

Security Strategy and Alignment

12%

Compliance and Ethics

12%

Security Architecture Management

12%

Security Metrics and Reporting

12%

Practice Compliance and Ethics Questions

Focus your study on this domain with targeted practice questions. This domain accounts for 12% of your CISM exam score.

Practice Now Flashcards

Study Guide: Compliance and Ethics

The Compliance and Ethics domain is one of 8 exam domains on the Certified Information Security Manager (CISM) certification exam by ISACA. At 12% of the total exam, this domain is important but should be balanced with higher-weighted domains in your study plan.

The CISM exam consists of 150 questions with a time limit of 4 hours and a passing score of 65%. That means approximately 18 questions on your exam will come from the Compliance and Ethics domain.

Study Strategy

Start with practice questions filtered to this topic to identify weak areas
Use flashcards for key terms and concepts within Compliance and Ethics
Review the glossary terms below for foundational vocabulary
Take a full exam simulation periodically to practice time management across all domains
Don't neglect other domains — Information Security Governance (13%) and Information Risk Management (13%) are also heavily tested

Key Terms for Compliance and Ethics

Multi-Factor Authentication (MFA)

A security mechanism that requires two or more independent credentials to verify a user's identity, combining factors fr...

SIEM (Security Information and Event Management)

A software solution that aggregates and analyzes security data from across the organization — including logs from firewa...

Vulnerability Assessment

A systematic process to identify, quantify, and prioritize security vulnerabilities in systems, applications, and networ...

Compliance

The act of conforming to established guidelines, specifications, regulations, or legislation related to information secu...

CASB (Cloud Access Security Broker)

A security policy enforcement point placed between cloud service consumers and cloud service providers to monitor activi...

IAM (Identity and Access Management)

A framework of policies, processes, and technologies for managing digital identities and controlling user access to crit...

DevSecOps

An approach that integrates security practices within the DevOps process throughout the entire software development life...

Patch Management

The process of identifying, acquiring, testing, and installing software updates (patches) to fix security vulnerabilitie...

View full cybersecurity glossary (87 terms) →

All CISM Exam Domains

Information Security Governance13%Information Risk Management13%Security Program Development13%Incident Management13%Security Strategy and Alignment12%Compliance and Ethics12%Security Architecture Management12%Security Metrics and Reporting12%

Certifications with Similar Topics

These certifications also cover topics related to Compliance and Ethics:

CCby ISC2

Compliance and Ethics — 12% of exam

CISAby ISACA

Compliance Risk — 12% of exam

CRISCby ISACA

Risk Governance Compliance — 7% of exam

CDPSEby ISACA

Compliance Audit — 7% of exam

CGRCby ISC²

Privacy and Compliance — 12% of exam

AIGPby IAPP

AI Ethics — 7% of exam

All CISM Topics Practice Compliance and Ethics

Study Guide: Compliance and Ethics

Study Strategy

Start with practice questions filtered to this topic to identify weak areas
Use flashcards for key terms and concepts within Compliance and Ethics
Review the glossary terms below for foundational vocabulary
Take a full exam simulation periodically to practice time management across all domains
Don't neglect other domains — Information Security Governance (13%) and Information Risk Management (13%) are also heavily tested

150 Practice Exam Questions — Certified Information Security Manager

Compliance and Ethics

Exam Weight Breakdown

Practice Compliance and Ethics Questions

Study Guide: Compliance and Ethics

Study Strategy

Key Terms for Compliance and Ethics

All CISM Exam Domains

Certifications with Similar Topics

150 Practice Exam Questions — Certified Information Security Manager

Compliance and Ethics

Exam Weight Breakdown

Practice Compliance and Ethics Questions

Study Guide: Compliance and Ethics

Study Strategy

Key Terms for Compliance and Ethics

All CISM Exam Domains

Certifications with Similar Topics