Certified Payment-Card Industry Security Manager (CPISM) is an independent payments industry certification

Certification

Certification refers to the confirmation of certain characteristics of an object, person, or organization. This confirmation is often, but not always, provided by some form of external review, education, assessment, or audit...

 governed by the Society of Payment Security Professionals (commonly known as the SPSP). The CPISM is the de facto certification for payment security professionals. This certification is held by members from diverse backgrounds including Level 1 - 4 Merchants, Acquirers, Issuers, QSAs, Processors, Gateways, Service Providers, and Consultants. All CPISM holders are members of the SPSP.

Certification Knowledge Domains

The CPISM curriculum covers subject matter in a variety of Information Security

Information security

Information security means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording or destruction....

 and Payments Industry

Payment card industry

The payment card industry denotes the debit, credit, prepaid, e-purse, ATM, and POS cards and associated businesses.The term is sometimes more specifically used to refer to the Payment Card Industry Security Standards Council, a council originally formed by American Express, Discover Financial...

 topics. The CPISM examination is based on what a collection of topics relevant to payment industry security professionals. The CPISM Knowledge Domains establishes a common framework of payment industry terms and definitions that allow security professionals to discuss and debate matters pertaining to the profession with a common understanding.

The CPISM Knowledge Domains are:

• Payment card industry structure
• Payment card structure and data
• Payment card transaction processing
• Compromise fraud statistics and trends
• Merchant risk analysis
• Laws and the regulatory environment
• Payment card security programs
• Third party relationships

Requirements

Candidates for the CPISM must meet several requirements:

• First, join the Payment Card Security Community
• Second, provide a resume with current credentials and two letters of reference from industry professionals
• Third, one must pass the CPISM exam
• Upon completion of the exam with a passing grade, the SPSP will issue the CPISM Certificate

Reference Documents

The SPSP provides several reference documents for studying and preparing for the CPISM certification:

• CPISM Overview Document
• CPISM Bibliography
• CPISM Study Guide

See also

• Certified Payment-Card Industry Security Auditor
  Certified Payment-Card Industry Security Auditor
  Certified Payment-Card Industry Security Auditor ' is an independent payments industry certification governed by the Society of Payment Security Professionals . The CPISA focuses on information technology, information security, and auditing knowledge and skills...
  
   (CPISA)
• PCI DSS
  PCI DSS
  The Payment Card Industry Data Security Standard is an information security standard for organizations that handle cardholder information for the major debit, credit, prepaid, e-purse, ATM, and POS cards....
  
  
• Payment Card Industry
  Payment card industry
  The payment card industry denotes the debit, credit, prepaid, e-purse, ATM, and POS cards and associated businesses.The term is sometimes more specifically used to refer to the Payment Card Industry Security Standards Council, a council originally formed by American Express, Discover Financial...
  
  

External links

• CPISI Industry Certification - SISA Information Security
• Society of Payment Security Professionals Industry professionals and CPISM industry certification
• Society of Payment Security Professionals Podcast
• PCI DSS Standard
• Payment Card Industry Fact Sheets