I used only QAE and https://www.cybrary.it/course/cism/.
The Cybrary course was not super good due to especially technical errors wrt. ordering, but I did learn some ok stuff from it. A few lessons covered material outside the current curriculum.
I think you can actually watch everything and get a refund within X days (which is reasonable given that at some point the ordering is messed up - but that helps you to get overview of the content, bc. you need to read up on some stuff to find the correct order).
The labs are irrelevant.
I haven't passed yet (exam booked) so I can't comment with any conviction, but I've passed CRISC, CDPSE and COBIT and found the QAE database, certainly for the first of the three, the most effective learning resource.
The Phil Martin audio book isn't bad but I wouldn't use it as a sole resource.
Thor's course has been great for me because it's basically a big amalgamation of Network +, 501, some elements of CISSP and solid CISM material. In fact, it's boosted my Domain 3 scores on the QAE by around 10%, so if you're weak on some of the basics it's a great refresher, but coming from CISSP you will probably find it a lot of repetition.
u/gwenbettwy has a book on Amazon - Prepare for the ISACA Certified Information Security Manager Exam: CISM Review Manual https://www.amazon.co.uk/dp/B08YQCNT5T/ref=cm_sw_r_cp_api_glt_fabc_PBV4C4V5G2KVACHJ6198 - that's another excellent low cost resource that fills some of the technical gaps better than the isaca 15th edition manual. You might find this more useful as it just brushes over the concepts you need to be mindful of from a CISSP perspective then elaborates more on domains 1&7 from ISACA's perspective.
Another good resource that got me through CDPSE and CRISC is the Peter Gregory books. I'm taking the exam this week and still a little weak in incident response and some other key areas so I'll be using all of the above tomorrow to gloss over the final bits.
I can't say whether the 10 question sample is accurate - by the nature of its size I doubt it - but those who are scoring around 80% on those questions tend to be ready.
Well, I'm biased, but I recommend the Official CISM Study Guide, by Mike Chapple (I did the tech editing): https://www.amazon.com/Certified-Information-Security-Manager-Study/dp/1119801931/ref=sr_1_1?crid=27OYHBVEX9L5D&keywords=cism+study+guide&qid=1662729967&sprefix=cism+study+guide%2Caps%2C103&sr=8-1
Looking forward to having you in class!
And, uh....thanks, but as far as I know, I don't have any kids. Hopefully.
Congratulations!
The official book is a tough read. As things like Risk management applies everywhere they circle back around to it often. Other topics as well. I wrote my book to be a little more straight forward! https://www.amazon.com/Prepare-Certified-Information-Security-Manager-ebook/dp/B08WPZ85WV/ref=sr_1_3?crid=36EI6N85SCKB4&dchild=1&keywords=gwen+bettwy&qid=1629296667&sprefix=gwen+b%2Caps%2C329&sr=8-3
If you were comfortable with the manager answers in CISSP, i recommend my students just go test CISM after successfully completing CISSP. Maybe do some of the QAE questions to give yourself confidence. If you are not that sure try my book, it is a lighter view of the CISM content. If you want to really be sure, then go for the official book. https://www.amazon.com/Prepare-Certified-Information-Security-Manager-ebook/dp/B08WPZ85WV/ref=sr\_1\_2?crid=2SPDCATXPTYQL&dchild=1&keywords=gwen+bettwy&qid=1629220795&sprefix=gwen+be%2Caps%2C175&sr=8-2
If you have access to both, I would probably recommend Kelly - but I think her videos are too long and she talks too slow for the amount of content you get. I prefer videos that are more too the point, not a freaken drawn out story for every single topic. Also - the interface for Cybrary sucks! Ads to purchase Cybrary (even though I paid for an annual subscription), click next every 5 minutes, and the playback speed reverts to 1.0 each time you move videos. Mike's videos are very basic. If you read the book, I wouldn't watch his videos. I like Thor's course the best.
Honestly - If you feel comfortable with the material you read, I would skip any other videos. Just do the QAE and several other test databases. I would try PocketPrep and the free mobile device test database. Use the "CISM Book of Lists" (link below) to have see the broad picture.
Good luck with your exam!
This is a management test. When you ask your boss at work for something, class, equipment, etc. What kind of answers do they give you? "we need to build a case study" or "what are the benefits". Check out our other recommendations in here: https://www.amazon.com/Prepare-Certified-Information-Security-Manager-ebook/dp/B08WPZ85WV/ref=sr_1_2?crid=372L1QY6RJ1XD&dchild=1&keywords=gwen+bettwy&qid=1615302855&sprefix=gwen+be%2Caps%2C165&sr=8-2
I think he's referring to this book:
https://www.amazon.com/Certified-Information-Security-Manager-Guidebook/dp/B08P1H4G3J/
Thanks for sharing.
Came across this bundle, wonder how it compares to the others: https://www.amazon.com/Certified-Information-Security-Manager-Bundle/dp/1260459004/ref=sr_1_1?keywords=CISM+bundle&qid=1583440801&sr=8-1
Damn - the official CISM books on Amazon are expensive!
I see you have to pay for the Cybrary course now too - I'm sure these were free last year?
My company has a subscription to Udemy, and the CISM course and prep questions are included (by Thor Pederson) - hence was thinking of giving it a go? Might search this sub for a review on Thor's course.
Cheers.