With the Certified Information Security Manager® (CISM®) certification, IT professionals learn how to assess risks, implement effective governance and respond proactively to security incident
With the Certified Information Security Manager® (CISM®) certification, IT professionals learn how to assess risks, implement effective governance and respond proactively to security incidents. This course prepares participants specifically for the CISM certification exam and provides relevant expertise in the field of information security.
Main Topics
The main topics of the CISM® course cover the following six main areas:
- General information about the exam and certification
- Domain 1: Information Security Governance
– Introduction to information security governance
– Legal, regulatory and contractual requirements
– Organizational structures, roles and responsibilities
– Development of the information security strategy
– Frameworks and standards for information security governance
– Strategic planning - Domain 2: Information security risk management
– Emerging risk and threat landscape
– Analysis of vulnerabilities and control deficits
– Risk assessment and analysis
– Risk treatment or risk response options
– Risk ownership and responsibility
– Risk monitoring and reporting - Domain 3: Information Security Program Development and Management
– Resources of the information security program
– Identification and classification of information and assets
– Industry standards and frameworks for information security
– Information security policies, procedures and guidelines
– Information security program metrics
– Design and selection of security controls
– Management of the security program
– Operation of the security program
– IT service management
– Governance
– Metrics and monitoring - Domain 4: Information Security Incident Management
– Overview of security incident management
– Development of security incident response plans
– Response to security incidents
– Business continuity and disaster recovery planning - Audit Practice / preparation & sample exams
Goals
The learning objectives of the CISM® training programme include:
1. understanding the format and structure of the CISM® certification exam
2. knowledge of the various topics and technical areas covered on the exam
3. practice with specific strategies, tips and techniques for passing the exam
4. opportunity to work on practice questions with subsequent analyses of the answers
The training aims to prepare participants for the CISM® exam by providing them with a comprehensive understanding of the exam process, exam content and proven exam preparation strategies.
Requirements
No formal requirements for the training, please note the certification requirements under Certificate.
Target Audience
The CISM® course is aimed at experienced information security managers and people with responsibilities in the area of information security management. This includes IT consultants, auditors, managers, security policy writers, data protection officers, information security officers, network administrators, security device administrators and security engineers. The course is ideal for those who have technical expertise and experience in IS/IT security and control and want to make the step from team member to manager. The CISM® certification can build confidence and credibility when interacting with internal and external stakeholders, peers and regulators.
Certificate
CISM® – Certified in the Governance of Enterprise IT, awarded by ISACA.
Exam language English
To become CISM certified it requires:
1.) Passing the CISM Exam
2.) Applying for certification within the five-year window after passing the exam.
3.) 5 years of experience in the Information Security Management field. To find out whether or not your experience qualifies, you will need to view the CISM job practice areas at: https://www.isaca.org/credentialing/cism/cism-job-practice-areas. You must have experience within 3 out of the 4 domain areas. All experience must be within the 10 years of the application.
4.) Verification of Work Experience
Teaching Materials
Teaching material in English includes:
- Student Workbook
- Exam voucher incl. training-slides & mock exams
Execution
- Class with max. 15 participants
Cybersecurity
- With the Certified Information Security Manager® (CISM®) certification, IT professionals learn how to assess risks, implement effective governance and respond proactively to security incident
- CSX Cybersecurity Fundamentals
- Cybersecurity Audit Certification
- Implementation of the NIST Cybersecurity Framework with COBIT® 2019