CISM: Certified Information Security Manager (ISACA)

Develop an information security strategy aligned with business goals and objectives
Plan the budgetary strategies and reporting methods
Establish reporting and communication channels throughout an organization
Establish a process for information asset classification and ownership
Identify and evaluating the information security controls and countermeasures to mitigate risk to acceptable levels
Identify the factors used to determine risk reporting frequency and requirements
Understand of baseline modeling and its relationship to risk-based assessments of control requirements and information security controls
Implementation of gap analysis to assess generally accepted standards of good practice for information security management against current state
Implementation of information security architectures and their deployment
Develop the life cycle methodologies, activities and processes for incorporating security requirements into contracts
Implement and interpret the information security policies and information security administrative processes and procedures
Develop and implement processes for detecting, identifying, analyzing and responding to information security incidents
Understand of disaster recovery testing for infrastructure and critical business applications