The security of confidential data is of utmost importance to all organisations, as it improves business reputation and makes any business more effective. Information security allows businesses to prevent unauthorised access and keep their data secure from hackers. Information Security Manager plays an important role to help organisations protect themselves from various threats like viruses, security breaches, hacker attacks, and more. Any individual who holds Certified Information Security Manager (CISM) certification is recognised as a professional in program development and management, information security governance, incident management and risk management.

Our Certified Information Security Manager (CISM) certification covers the four domains in detail. Gaining in-depth knowledge of these domains will certify you as a professional in information security management. This Certified Information Security Manager (CISM) certification will equip professionals for their job roles. Our specially tailored course will help professionals comprehend Certified Information Security Manager (CISM) and pass their certification exam in their 1st attempt.

• Pass the CISM exam, and
• You need five years of experience in information security within a decade before you apply for the certification.

The CISM certification is meant for candidates who are tasked with or are aspiring to manage information security for organizations or industries.

Introduction to CISM (Certified Information Security Manager)

• Objectives and Expectations
• Understand Information Security
• Information Security Goals
• Principles for Information Security Professionals

Domain 1 – Information Security Governance

• Knowledge Statements
• Information Security Governance Overview
• Effective Information Security Governance
• Relationships of Governance and Third-Party
• Information
  • Security Metrics
  • Governance Metrics
  • Strategy Development
• Strategy Resources and Constraints
• Other Frameworks
• Compliances
• Action Plans to Implement Strategy

Domain 2 – Information Risk Management and Compliance

• Information Risk Management
• Task and Knowledge Statements
• Overview of Risk Management
• Understand Risk Assessment
• Information Asset Classification
• Assessment Management
• Objectives of Recovery Time
• Security Control Baselines
• Risk Monitoring
• Training and Awareness
• Information Risk Management Documentation

Domain 3 – Information Security Program Development and Management

• Task and Knowledge Statements
• Information Security Program
• EISA (Enterprise Information Security Architecture)
• Security Program Metrics and Monitoring
• Measuring Operational Performance
• Information Security Program’s Common Challenges

Domain 4 – Information Security Incident Management

• Task and Knowledge Statements
• Incident Management
• Incident Management Procedures
• Disaster Recovery and Business Continuity Procedures
• Post Incident Activities and Investigation
• ISACA Code of Professional Ethics
• Laws and Regulations
• Policy Versus Law Within an Organisation
• Ethics and the Internet IAB
• CISM in the Workplace
• Priorities of CISM
• Learn How Questions Are Made
• Getting Prepared for the Examination
• Recommended Reading for the CISM Exam

• 200 questions
• Multiple choice
• 800 marks available – 450/800 needs to be achieved to gain the certification

4 hours

Examinations occur three times a year during June, September, and December.

Updated information from www.isaca.org

Updated information from www.isaca.org

You will get a certificate of completion, which is highly reputed and accepted by employers.