It's been 4 weeks and I have yet to receive any results
Did I Pass?
Obviously I don't know however, in comparison to the CISSP exam, it seemed like the possible CISM answers were a little easier to guess where as the CISSP exam you'd be left clueless and simply closing your eyes and waving the mouse at one of the four options. With this in mind, I would say that I did well and answered more questions correctly though not necessary increased my exam passing chances (which I will explain later)
CISM Scoring
As you may already know, ISACA uses a 200-800 point scale with 450 as the passing mark for the exams. Do not conclude that it's based on a percentage grade, (range of 600 with a passing score of 450 = 75% (minus the variation of 25 non-markable questions). For what I have read, this is simply not the case.
ISACA first centralize the global exams and determine the correct scores of all individuals from the 250+ global locations. It then seems that ISACA's Certification Committee begin by establishing a passing score. I could not find the understanding on how the 'passing score' is truly measured though I would guess, the certification committee would determine the standard deviation of all the pass score with the floating variation of the 25 questions to then determine the passing score to ensure a respectable number of individuals pass.
Because the exam can only be taken once every 6 months, it's difficult to retain that 'last minute revision' whilst waiting for the exam notes though if I fail, I will simply buy the early registration for the December exam. Pushing aside the idea that I'm currently blogging about it now, I rarely think about the CISM result landing within my inbox.
One reason why you'd rarely find information regarding the exam is because ISACA are particularly strict regarding anyone disclosing the details of the CISM exam, which is definitely a good thing which every way you look at it. If my theory is correct based on the Certification committee deciding the baseline of acceptance , the more people that pass will inevitability push the bar higher. The harder the exam, the lower passing threshold.
About the author
Daniel is a Technical Manager with over 10 years of consulting expertise in the Identity and Access Management space.Daniel has built from scratch this blog as well as technicalconfessions.com
Follow Daniel on twitter @nervouswiggles
Comments
Other Posts
AS I was migrating my environment into an S3 environment, I wanted to leverage off the SES services that AWS provide, more specifically, to leverage the off the SMTP functionality by sending an email via PHP
Read More...
The WeMos D1 is a ESP8266 WiFi based board is an extension to the current out-of-the-box library that comes with the Arduino installation. Because of this, you need to import in the libraries as well as acknowledging the specific board. This process is highly confusion with a number of different individuals talking about a number of different ways to integrate.
Read More...
NameID element must be present as part of the Subject in the Response message, please enable it in the IDP configuration.
Read More...
For what I see, there's not too many supportive documentations out there that will demonstrate how provision AD group membership with the ICF connector using OpenIDM. The use of the special ldapGroups attribute is not explained anywhere in the Integrators guides to to the date of this blog. This quick blog identifies the tasks required to provision AD group membership from OpenIDM to AD using the LDAP ICF connector. However this doesn't really explain what ldapGroups actually does and there's no real worked example of how to go from an Assignment to ldapGroups to an assigned group in AD. I wrote up a wiki article for my own reference: AD group memberships automatically to users This is just my view, others may disagree, but I think the implementation experience could be improved with some more documentation and a more detailed example here.
Read More...
In the past, the similar error occurred though for the Oracle Identity Management solution. invalidcredentialexception remote framework key is invalid Because they all share the ICF connector framework, the error/solution would be the same.
Read More...
org.forgerock.script.exception.ScriptCompilationException: missing ; before statement
Read More...
ForgeRock IDM - org.forgerock.script.exception.ScriptCompilationException: missing ; before statement
Read More...
When performing the attempt of a reconciliation from ForgeRock IDM to Active Directory, I would get the following error
Read More...
In the past, the similar error occurred though for the Oracle Identity Management solution. invalidcredentialexception remote framework key is invalid Because they all share the ICF connector framework, the error/solution would be the same.
Read More...
During the reconcilation from OpenIDM to the ICF google apps connector, the following error response would occur. ERROR Caused by com.google.api.client.auth.oauth2.TokenResponseException 400 Bad Request - invalid_grant
Read More...