CISM Certified Information Security Manager

The CISM course provides complete knowledge and skills which are required to design, deploy and manage security architecture for an organisation. The course is designed to help the delegates to pass the CISM exam in first attempt. Organisations and government agencies increasingly expect from their IT professionals to hold a CISM certification. This certification is considered essential to career development.

With the help of this training, the delegates can realise the importance of risk management as a tool to meet business requirements. The delegates will understand the key roles and responsibilities needed to execute an action plan. The training provides complete knowledge to the delegates about the solutions of several different emerging issues such as incident management, information security programs and security practices.

Exam

After completing the training, the delegates will have to pass the exam to get CISM certified. All the details related to the exam will be provided by our trainer at the end of the training.  They will have to achieve 450/800 marks to gain certification.

Exam pattern

• 200 questions
• Multiple choices
• 4 hours to complete the CISM exam

Overview of Certified Information Security Manager (CISM)

• Objectives and Expectations
• What is Information Security?
• Understand the Goals of Information Security
• Principles for Information Security Professionals

Information Risk Management and Compliance

• Understand Information Risk Management
• Task and Knowledge Statements
• Risk Management Overview
• Introduction to Risk Assessment
• Information Asset Classification
• Assessment Management
• Information Resource Valuation
• Recovery Time Objectives
• Security Control Baselines
• Risk Monitoring
• Training and Awareness
• Information Risk Management Documentation

Information Security Governance

• Outline
• Knowledge Statements
• Introduction to Information Security Governance
• Effective Information Security Governance
• Governance and Third Party Relationships
• Information Security Metrics and Governance Metrics
• Information Security Strategy and its Development
• Strategy Resources and Constraints
• Other Frameworks
• Compliances
• Action Plans to Implement Strategy
• Governance of Enterprise IT

Information Security Program Development and Management

• Task and Knowledge Statements
• Overview of Information Security Program Management
• Information Security Program Objectives and Concepts
• Information Security Program Technology Resources
• Information Security Program Development
• Information Security Program Framework and Roadmap
• Enterprise Information Security Architecture (EISA)
• Security Program Management and Administration
• Security Program Services and Operational Activities
• Controls
• Security Program Metrics and Monitoring
• Measuring Operational Performance
• Common Information Security Program Challenges

Information Security Incident Management

• Task and Knowledge Statements
• Overview of Incident Management
• Incident Management Procedures
• Incident Management Resources and Objectives
• Incident Management Metrics and Indicators
• Defining Incident Management Procedures
• Business Continuity and Disaster Recovery Procedures
• Post Incident Activities and Investigation
• ISACA Code of Professional Ethics
• Understand Laws and Regulations
• Policy Versus Law Within an Organisation
• Ethics and the Internet IAB
• Certified Information Security Manager
• Certification requirements
• CISM in the Workplace
• The CISM Priorities
• Understand How Questions Are Structured
• Preparing for the Examination
• Recommended Reading for the CISM Exam
• Exam Favourites