CISM ڰ̾ CISO Ǵ ʼ
̹ȸ â ̹ ü ȮѰ Ѵٴ ȸ ȭΰ ǰ ִ. ̸ Ѱ ִ 簡 Ȳ̴. ̹ ֺ 8ȸп CISO(Chief of Information Security Officer: ȴ ̻) ʿ伺 ϰ CISM ڰ ؼ Ұϴ ð ϰڴ. ڴ IT ()Ű åƮ. < >
[ ]
CISM Ұ
CISM 迵: ȰŹͽ
CISM 迵:
CISM 迵: α
ISMS(Ȱü)
ýۺ ߿伺 εǸ鼭 CISO(Chief of Information Security Officer: ȴ ̻) ʿ伺 ڸű ̹ ۵Ǿ. ( CSO-Chief of Security Officer; ̻ Ұ ) CISM(Certified Information Security Manager; Ȱ) ڰ̾ CISO Ǵ ʼ̸ ̴ Źͽ ITŹͽ ԽŰ鼭 ̴. CISM ڰݽ ѱȭ Ǹ鼭 ̸ ϴ ڵ鿡 Ұϸ ISMS(Information Security Management System; Ȱü) 캸 ȸ ϰڴ.
ISACA(Information System Audit & Control Association) CISA(Certified Information System Auditor) źŲ 1978̴ϱ 30 Ѿ. ý۰μ ý , , о ڰμ IT þü ȸ, IT þü, ý ü, Ϲ ü , μ Ȥ μ CISA ڰ Ȱ ϰ ִ. 2008 6,000 հ(ڰ ̺ٴ ) ڰ IT ̶ ְڴ.
ISACA 2000 ITŹͽ ϰ Ǹ鼭 ȿ ITŹͽ ȮŲ CISM(Certified Information Security Manager) ڰݽ ȴ. տ Ưü , ɼ Ƿ Ȥ ȣ ȴ. Ưü ߿ ýۿ ȭ Ǵ CISM Ե ü ϱ Ƿ ؼ ITŹͽ Ȯ̶ ְڴ.
ó IT ϴ ߿䵵 IT Ӽ(Going Concern) ITŹͽ Źͽ յǴ Ϻκ IT IT μ åӰ ڰ ƴ ְ 濵 åӰ ǹμ Źͽ νĵȴ. ̸ ߿ ڻ ϳμ ֵǴ ȿ ITŹͽ CISM ִ ϰڴ.
, Ʈ, Ϲݱü ý úμ, ÿ CISM ʿ伺 ITŹͽ Ҿ Ȯ Ǹ Ѵ. ISACA ITŹͽ Ȱ 2008 CGEIT(Certified in the Governance of Enterprise IT) ڰݽ赵 ź״.
ISACA ο ISACA Korea Chapter(ѱ) CISM ź 5 θ ־ CISM 2008 ѱȭ Ǿ. 츮 츮 CISM ְ ̴. CISM ITŹͽ ̶ ISACA ڰ ź 濡 ITŹͽ 濡 ִ. 迵() 캸 Ȯ Ѵ.
5 迵 Ͽ Źͽ ǥ ϱ 濵 ̻ȸ ϴ åӰ ǹμ α Ͽ ǥ ϰ, ϰ ϰ ϸ ڻ å ְ ǰ ϴ ̴. ̿ Źͽ CISM ؼ Ǿ ̴.
CISM
CISM ų 6, 12 ° ǽõǴµ, 2009 6 13() ȴ.
200 ȴ.
Ҵ ÿ ϸ, ISACA ϵ ѱð ϴ.
CISM ڰݿ
迵 о߿ 5Ⱓ ߾ Ѵ. 5 3 ̻ Ŵμ ̾ ϸ, 5 3 ̻ ־ Ѵ.
CISA( ý۰), CISSP( ý ) Ǵ ̻ (ȿ 濵) ڴ 2 ȴ. (, Ϲݰ¿ о 2 Ǹ, 3 ̻ ¿ Ǿ Ѵ.)
ڼ http://www.isaca.or.kr/Ȥ http://www.lyzeum.com/ ãƺ ִ.
뵵 ϰ 濵 ð ٶ CISM ħ(Candidates Guide) ó , ϰ ϴ ڿ 䱸Ǵ ڰݻ ̴. Ư CISO(Ȥ CSO) DZ ʼ ̶ ϰڴ. ڰݿǿ 5 ̻ 䱸ϴ ְڴ. ° CISO ϴ ٸ ڵ ָؾ ̴.
ڼ 5 迵 μ Ǿ μ CISM ϰ ITŹͽ 踦 ã Ȱ DZ ٶ.
ڷ ó
http://www.isaca.org/
http://www.isaca.or.kr/
http://www.lyzeum.com/
Information Security Governance-Guide for BOD and Eecutives, ITGI, 2004
Information Security Governance, ITGI, 2008
CISM Review Manual, ISACA. 2006~2008
CISM Review Questions/Answer/Explanations Manual, ISACA, 2008
-:
-IT ()Ű åƮ
-б п а
-()ѱý ȸ ISACA GRA ȸ
-ѱ CISSP ȸ ISC2 Korea а
-CISM, CGEIT, CISA, COBIT, CISSP, PMP, ITIL, CIA, IT-EAP, ISO 27001 ý
ۡ(CISM, CGEIT, CISA, COBIT, CISSP, PMP, ISO27001, CIA, ý۰) / mailto:josephc@chol.com