Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
ISSMP Information Systems Security Management Prof QA Test
Rating: 3.0 out of 5(1 rating)
16 students

ISSMP Information Systems Security Management Prof QA Test

Pass your ISC2 ISSMP Information Systems Security Management Professional Certification Exam
Last updated 6/2026
English

What you'll learn

  • Prepare for ISC2 ISSMP – Information Systems Security Management Professional certification
  • Get skill in Information Systems Security Management
  • Test your skill while attend this exam
  • Practice test for ISSMP Information Systems Security Management Professional certification exam

Included in This Course

188 questions
  • Practice Exam Test 199 questions
  • Practice Exam Test 289 questions

Description

ISSMP Information Systems Security Management Professional Exam Practice Test

The Information Systems Security Management Professional (ISSMP) is security leader who specializes in establishing, presenting and governing information security programs and demonstrates management and leadership skills. ISSMPs direct the alignment of security programs with the organization’s mission, goals and strategies in order to meet enterprise financial and operational requirements in support of its desired risk position.

Proves your knowledge and leadership skills establishing, presenting and governing information security programs

ISSMP Exam Domain :-

Domain 1: Leadership and Organizational Management

  • Establish security’s role in organizational culture, vision and mission

  • Align security program with organizational governance

  • Define and implement information security strategies

  • Define and maintain security policy framework Determine applicable external standards

  • Manage security requirements in contracts and agreements

  • Manage security awareness and training programs

  • Define, measure and report security metrics

  • Prepare, obtain and administer security budget

  • Manage security programs

  • Apply product development and project management principles

Domain 2: Systems Lifecycle Management

  • Manage integration of security into Systems Development Life Cycle (SDLC)

  • Integrate new business initiatives and emerging technologies into the security architecture

  • Define and oversee comprehensive vulnerability management programs (e.g., vulnerability scanning, penetration testing, threat analysis)

  • Manage security aspects of change control

Domain 3: Risk Management

  • Develop and manage a risk management program

  • Conduct risk assessments

  • Manage security risks within the supply chain (e.g., supplier, vendor, third-party risk)

Domain 4: Security Operations

  • Establish and maintain threat intelligence program

  • Establish and maintain incident handling and investigation program

Domain 5: Contingency Management

  • Facilitate development of contingency plans

  • Develop recovery strategies

  • Maintain contingency plan, Continuity of Operations Plan (COOP), business continuity plan (BCP) and disaster recovery plan (DRP)

  • Manage disaster response and recovery process

Domain 6: Law, Ethics and Security Compliance Management

  • Identify the impact of laws and regulations that relate to information security

  • Adhere to the (ISC)2 Code of Ethics as related to management issues

  • Validate compliance in accordance with applicable laws, regulations and industry best practices

  • Coordinate with auditors and regulators in support of the internal and external audit processes

  • Document and manage compliance exceptions

Who this course is for:

  • Chief Information Officer
  • Chief Information Security Officer
  • Chief Technology Officer
  • Senior Security Executive