Rachel McBride is a certified ITIL Expert and Senior Consultant at Vintun, a Virginia-based information, program and technology solutions provider. A seasoned business analyst and project manager with over 15 years of experience, Rachel enrolled in InfoSec Institute’s Certified Information Security Manager (CISM) Boot Camp in early 2018 to secure her CISM certification and advance her career.
Rachel passed her CISM exam shortly after class and plans to enroll in InfoSec Institute’s CISSP Boot Camp training in the coming months. Here’s what Rachel had to say about her first training experience with InfoSec Institute.
Why Did You Want to Become CISM Certified?
A few projects back, I was working as a project engineer. We were preparing for a Command Cyber Readiness Inspection (CCRI) at the time, and I took the lead on the project. I oversaw the System Administrators completing the system checks and Security Technical Implementation Guides (STIG) to ensure compliance with IA requirements. I was performing daily checks to determine the status of the STIG checklists and tracking percentages completed to ascertain our level of readiness. I was also reviewing the STIG checklists to see how many CAT I and CAT II were still open for each system.
This is when I first became interested in earning my CISM. I felt it would provide me increased understanding of information security management and qualify me for jobs requiring increased levels of 8570 compliance.
Why Did You Pick InfoSec Institute as Your Training Partner?
I shopped around for a few months before selecting InfoSec Institute as my training provider. Factors I looked at included exam pass rates, course pricing and whether or not the exam voucher was included in the cost. When I saw InfoSec Institute’s pass rate was above 90% for both online and in-person training and the course fit my budget, I felt confident about enrolling.
Our sister company also recently did a group CISSP training with InfoSec Institute and everyone seemed happy with their experience, so I decided to give InfoSec courses a try.
You’ve Taken In-Person Training Before. How Did the CISM Online Training Compare?
Training online was slightly different from the in-person training I’ve taken in the past, but mostly the same. I still had the interaction with the instructor and other students. We could use the mic and the classroom chat feature to interact with others in the class. It was like I was there.
I would gladly do the online training again. It worked well for me, and I liked the flexibility it provided. I didn’t have to worry about travel or traffic. I just had to get out of bed, get on a computer and go.
Tell Me About Your Instructor.
My instructor, Ken, was fantastic. He brought a lot of real-world experience to the class. His personality and interactions with students made the training more engaging. He knew when to take breaks, when to joke and when to get back to business. It was a great balance.
What Was Class Like? Were the Course Materials Helpful?
At first glance, the course materials looked overwhelming. But interaction with the instructor gave them a totally different feel. Ken would highlight key points from the materials, and then give his experience, knowledge and perspective on the subject. It made a huge difference.
He would also ask the class questions and initiate discussions so we could contribute our own stories and experiences. I felt totally engaged.
Ken also recommended we use the ISACA’s question database and InfoSec Institute’s SkillSet to prepare us for the questions we might see on the exam. I used SkillSet to prep for my Security+ exam as well — it was really helpful.
Did You Feel Prepared for Your Exam After Class?
Yes. With exams like the CISM, if you try to answer questions with practical knowledge you’ve learned in the field, you will fail.
Ken made sure to point this out to the class. You have to dissect every question and make sure you understand what ISACA is testing you on. This was the case when I took my PMP exam too — practical knowledge alone won’t help you pass.
Would You Recommend InfoSec Institute Training to Your Peers?
Yes, I would. I plan on taking the CISSP Boot Camp next. InfoSec is my only consideration.