Episode 68: Managing and Monitoring Security Compliance with External Parties

Welcome to the ISACA CISM

Dive into a fast, no-fluff overview of what this podcast delivers, who it’s for, and how each episode helps you level up with practical, real-world takeaways. In this trailer, you’ll hear the show’s promise, the format you can expect, and a sneak peek at the kinds of stories, tips, and expert insights coming your way. Hit follow to get new episodes as they drop and start listening smarter from day one.

Episode 71: Continuous Improvement through Post-Incident Reviews and Risk Reassessment

Mature security programs improve over time. In this final episode, we explain how to lead post-incident reviews, implement lessons learned, and reassess risk in light of new data. This is where governance, program management, and incident handling come full circle—just as ISACA intends for CISM-certified leaders.  Ready to start your journey with confidence? Learn more at BareMetalCyber.com.

Episode 70: Supervising Risk Treatment and Continuous Monitoring

Managing risk doesn’t stop with one decision. In this episode, we explore how to supervise treatment activities (mitigation, transfer, acceptance) and establish ongoing monitoring to ensure sustained performance. These continuous oversight tasks are key to mastering Domain 2 and real-world risk leadership.  Ready to start your journey with confidence? Learn more at BareMetalCyber.com.

Episode 69: Supervising Risk Identification and Assessment

CISM-certified professionals must oversee—not just conduct—risk assessments. This episode covers how to supervise the process, validate results, and ensure assessments align with business priorities. ISACA expects you to understand both tactical execution and leadership-level oversight.  Ready to start your journey with confidence? Learn more at BareMetalCyber.com.

Episode 68: Managing and Monitoring Security Compliance with External Parties

Vendors, suppliers, and partners all affect your risk posture. This episode explores how to define, enforce, and monitor external security requirements. You’ll learn how to handle audits, compliance failures, and communication with third parties—real-world skills with high relevance on the CISM exam.  Ready to start your journey with confidence? Learn more at BareMetalCyber.com.