Certified Information Security Manager (CISM)

Information Systems Audit and Control Association (ISACA) provides three testing opportunities each year, so we developed this Certified Information Security Manager (CISM) exam prep course to help you get it right the first time. The course focuses on advanced risk management and specific compliance and security management operations.

 

 Course Objectives

In-depth coverage of the four domains required to pass the CISM exam:

  1. Information Security Governance
  2. Information Risk Management and Compliance
  3. Information Security Program Development and Management
  4. Information Security Incident Management

 

Outline Course Contents

 

  1. Testing-Taking Tips and Study Techniques
  • Preparation for the CISM exam
  • Submitting Required Paperwork
  • Resources and Study Aids
  • Passing the Exam, the First Time

 

  1. Information Security Governance
  • Asset Identification
  • Risk Assessment
  • Vulnerability Assessments
  • Asset Management

 

  1. Information Risk Management
  • Asset Classification and Ownership
  • Structured Information Risk Assessment Process
  • Business Impact Assessments
  • Change Management

 

  1. Information Security Program Development
  • Information Security Strategy
  • Program Alignment of Other Assurance Functions
  • Development of Information Security Architectures
  • Security Awareness, Training, and Education
  • Communication and Maintenance of Standards, Procedures, and Other Documentation
  • Change Control
  • Lifecycle Activities
  • Security Metrics

 

  1. Information Security Program Management
  • Security Program Management Overview
  • Planning
  • Security Baselines
  • Business Processes
  • Security Program Infrastructure
  • Lifecycle Methodologies
  • Security Impact on Users
  • Accountability
  • Security Metrics
  • Managing Resources

 

  1. Incident Management and Response
  • Response Management Overview
  • Importance of Response Management
  • Performing a Business Impact Analysis
  • Developing Response and Recovery Plans
  • The Incident Response Process
  • Implementing Response and Recovery Plans
  • Response Documentation
  • Post-Event Reviews

 

  1. Review and Q&A Session
  • Final Review and Test Prep

 

 

Course Prerequisites

  • Five years of experience with audit, IT systems, and security of information systems; systems administration experience; familiarity with TCP/IP; and an understanding of UNIX, Linux, and Windows.
  • This advanced course also requires intermediate-level knowledge of the security concepts covered in our Security+ Prep Course course.

 

 

Course Details: CISM

Duration: 4 days

 

Apply Course Here

Leave a Reply

Your email address will not be published. Required fields are marked *

// Omit Closing PHP Tags