CISM ® - Certified Information Security Manager – eLearning + live class (Exam Included)

CISM® - Certified Information Security Manager – eLearning + Live Class

INCLUDING THE OFFICIAL EXAM

Ask us for next class details!

Learn the fundamentals of security architecture design for an IT operation

Certified Information Security Manager (CISM) is a globally accepted standard of achievement in enterprise security management. The course, closely aligned with ISACA best practices, demonstrates understanding of the relationship between information security programmes and business goals and objectives. It will enable you to design enterprise security architecture, deliver reliable service to customers and achieve IT compliance and governance.

ABOUT THE COURSE

The idea of approaching IT security from a business perspective rather than IT one is increasingly considered as a vital business driver; CISM stands out in this regard for its emphasis on business understanding and leadership. It will give you the skills to manage the ongoing security and adapt technology to your organisation.

CISM® is the most prestigious and demanding qualification for information security managers worldwide today. This exam provides you with a platform to become part of an elite peer network that has the ability to continuously learn and teach the growing opportunities/challenges in information security management.

Our CISM training methodology provides in-depth coverage of the content of the four CISM domains with a clear focus on building concepts and solving ISACA-released CISM exam questions. The course is an intensive training and a tough core test for ISACA's Certified Information Security Manager (CISM®) exam.

The best certification for you who want to become a leader in IT security *

KEY FEATURES

• Course and material in English
• Intermediate - Advanced level for professional
• 32 hours of live online classroom (Ask us for next class details!)
• 1 Year Access to eLearning platform & Class recordings
• 9.5 hours self-paced eLearning video
• 50-100 hours of recommended study time needed
• Course material inline with CISM certification by ISACA
• 3 Exam Simulation test each with 150 Questions
• Official ISACA CISM KIT included to get Exam Voucher

WHAT'S COVERED?

Gain an in-depth knowledge of the four CISM domains:

• Domain 1: Information security governance 
• Domain 2: Information risk management and compliance 
• Domain 3: Information security program development and management 
• Domain 4: Information security incident management 

LEARNING OBJECTIVES

By the end of this training you will be able to:

• Apply knowledge in a practical way that benefits your organization
• Create and maintain an information security framework to achieve your organization's goals and objectives
• Manage information risk to an acceptable level to meet business and compliance requirements
• Establish and maintain information security architectures (people, process, technology)
• Integrate information security requirements into third-party/supplier contracts and activities
• Plan, establish, and manage the ability to detect, investigate, respond to, and recover from information security incidents to minimize business impact.

TARGET AUDIENCE

The CISM certification is specifically for experienced security managers and those with information security (IS) management responsibilities:

• Security professionals with 3-5 years of front-line experience;
• Information security managers or individuals with management responsibilities;
• IS managers
• IS/IT Consultants
• IT directors and managers
• Security auditors and architects
• Security systems engineers
• Chief Information Security Officers (CISOs)
• Chief Compliance/Privacy/Risk Officers

Prerequisites

There are no formal prerequisites to take the CISM course or certification exam. Anyone can register and attempt the exam. However, to earn the CISA certification, you must meet specific requirements, including:

1. Work Experience Requirement

• At least 5 years of work experience in information security management.
• Experience must be gained within 10 years prior to the application or within 5 years after passing the exam.

2. Experience Waivers (Up to 2 Years)

Candidates can reduce the 5-year requirement by up to 2 years with:

• 1 year waiver for holding another certification (e.g., CISA, CISSP, Security+).
• 1-2 years waiver for relevant education (e.g., a bachelor’s/master’s degree in information security).

3. Pass the CISM Exam

• The exam consists of 150 multiple-choice questions covering four domains.

4. Agree to ISACA’s Code of Ethics

• Candidates must adhere to ISACA’s professional code of ethics.

5. Continuing Education (CPE) Requirements

• Maintain certification with 20 CPE hours per year and 120 CPE hours over 3 years.

EXAM INFORMATION

The CISM exam is not included with this course, but you will receive a course completion certificate once you have:

• Completed 85% of the course
• Completed one simulation test with a minimum score of 60%
• To take the official exam, you will need to register with the ISACA, and there is an Exam Candidate Guide available on their website to guide you through the process.
• The exam is included!

The CISM Exam tests your knowledge in the following CISM areas:

• Domain 1 - Information Security Governance (24%)
• Domain 2 - Information Risk Management (30%)
• Domain 3 - Information Security Program Development and Management (27%)
• Domain 4 - Information Security Incident Management (19%)

Content 

Lesson 1 Information Security Governance

• Information Security Governance: Overview
• Effective Information Security Governance
• Information Security Concepts and Technologies
• Scope and Charter of Information Security Governance
• Information Security Governance Metrics
• Information Security Strategy: Overview
• Creating Information Security Strategy
• Overview of Information Security Governance
• Roles and Responsibilities in Information Security
• Governance of Third-Party Relationships
• Obtaining Senior Management Commitment
• The Feasibility Study and the Business Case
• Information Security Governance Metrics
• Information Security Strategy Overview
• COBIT
• ISO Standards

Lesson 2 Information Security Risk Management

• Information Risk Management and Compliance
• Good Information Security Risk Management
• Risk Assessment
• Controls Countermeasures
• Recovery Time Objective
• Risk Monitoring and Communication
• Risk Management: Overview
• Good Information Security Risk Management
• Information Security Risk Management Concepts
• Implementing Risk Management
• Testing Response and Recovery Plans
• Controls Countermeasures
• Recovery Time Objectives
• Risk Monitoring and Communication

Lesson 3 Information Security Program

• Development of Information Security Program
• Information Security Program Objectives
• Information Security Program Development Concepts
• Scope and Charter of Information Security Program Development
• Information Security Framework Components
• Implementing an Information Security Program
• Information Infrastructure and Architecture
• Information Security Program
• Security Program Services and Operational Activities
• Overview of Information Security Programme Management
• Program Objectives for Information Security
• Components of an Information Security Framework
• Creating a Road Map for an Information Security Programme
• Policy, Standards, and Procedures
• Budget for Security
• Administration and Management of Security Programmes
• Privacy Regulations
• Architecture of Information Security
• Implementation of Architecture
• Cloud Computing
• Countermeasures and Controls
• Metrics and Monitoring for Security Programmes
• Security Education and Training

Lesson 4 Incident Management

• Incident Response: Procedures
• Incident Management: Organization
• Incident Management: Resources
• Incident Management: Objectives
• Incident Management: Metrics and Indicators
• Current State of Incident Response Capability
• Developing an Incident Response Plan
• Information Security Incident Management
• Incident Response Procedures
• BCP DRP
• Testing Response and Recovery Plans
• Executing the Plan

Lesson 5 CISM Case Studies

• Air Traffic Control
• CISM solution
• IT Security Governance
• Program Office Unique Framework
• Is Critical Incident Stress Debriefing Effective?
• Critical Incident Stress Debriefing
• Information Security Risks Assessment
• Impact Controls
• Custom Incident Management Software
• Incident Management Process
• Information Security Program Development and Management
• Developing Cyber Risk Management Strategy
• Good Practices for Managing Information Risk
• Managing Information Security Risk
• Information Risk Management Communication
• Stages of Information Security and Risk Management
• Incident Risk: Management Functions
• Information Risk: Management Introduction
• Information Security: Incident Management
• Process, How it works, best practices
• Responsibilities and Procedures
• CISM Course summary

REVIEWS

"To pass the exam in order to receive the CISM certificate is not easy. Some of my colleagues attended an in-company training course. About 40% failed the first exam. I decided to use this online training course. It helped me well. It gave me confidence and the knowledge to pass the exam. And I did the first try! ” Robin Carlsson

“Well-structured and clear course material and eLearning course. Very practical. The questions at the end of each module to check comprehension were very useful. ”

Ulf Dahlberg

When can I take the live online courses?

The timing of each course varies for different groups/ cohort. You will be given access to a dashboard with a number of different time slots for the same session/topic. You decide which date and time works best for you. Some are scheduled for weekday afternoons, while others are scheduled for weekend mornings or evenings. Scheduling is based on factors such as the number of interested participants and the availability of trainers. If you miss a session, you can always watch recordings of that session. You will never miss out!