ISMS responsible and CISM
Is there a difference between ISMS responsible and CISM?
Assign topic to the user
Please note that the ISMS responsible is a role an organization can create, or incorporate into an existing role, to cover at least these activities:
- ensure that the ISMS conforms to the requirements of ISO 27001
- report on the performance of the ISMS to top management.
As for CISM (Certified Information Security Manager), it is a certification issued by ISACA which evidences that the certification holder has a certain set of knowledge and experience on information security management, which goes beyond the requirements related to ISO 27001.
This article will provide you a further explanation about roles for ISO 27001:
- What is the job of Chief Information Security Officer (CISO) in ISO 27001? https://advisera.com/27001academy/knowledgebase/what-is-the-job-of-chief-information-security-officer-ciso-in-iso-27001/
These materials will also help you regarding roles for ISO 27001:
- Book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
- Free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/
Comment as guest or Sign in
Mar 08, 2021