Strong security management is crucial in any enterprise using IT to support its business needs. Today’s IT environment calls for systems that are secured not only from external, malicious attacks, but from unauthorised internal change as well. The Certified Information Security Manager (CISM) certification program supports these business needs. The program is developed specifically for experienced information security managers and those who have information security management responsibilities. With the CISM designation comes many professional and personal benefits including worldwide recognition for professional experience; enhanced knowledge and skills and, career advancement.