Certified Information Security Manager (CISM)

Our Certified Information Security Manager (CISM) training course will cover the following topics:

Module 1: Information Security Governance

In this module, you will learn how to:

• Establish and maintain an information security strategy and align the strategy with corporate governance
• Identify internal and external influences to the organisation
• Define roles and responsibilities
• Establish, monitor, evaluate, and report metrics

Module 2: Information Risk Management and Compliance

In this module, you will learn how to:

• Establish a process for information asset classification and ownership
• Identify legal, regulatory, organisational, and other applicable requirements
• Ensure that risk assessments, vulnerability assessments, and threat analyses are conducted periodically
• Determine appropriate risk treatment options
• Evaluate information security controls
• Identify the gap between current and desired risk levels
• Integrate information risk management into business and IT processes
• Monitor existing risk
• Report noncompliance and other changes in information risk

Module 3: Information Security Programme Development and Management

In this module, you will learn how to:

• Establish and maintain the information security program
• Identify, acquire, manage, and define requirements for internal and external resources
• Establish and maintain information security architectures
• Establish, communicate, and maintain organisational information security standards, procedures, and guidelines
• Establish and maintain a programme for information security awareness and training
• Integrate information security requirements into organisational processes, as well as into contracts and activities of third parties
• Establish, monitor, and periodically report programme management and operational metrics

Module 4: Information Security Incident Management

In this module, you will learn how to:

• Establish and maintain an organisational definition and severity hierarchy for information security incidents
• Establish and maintain an incident response plan
• Develop and implement processes to ensure timely identification of information security incidents
• Establish and maintain processes to investigate and document information security incidents
• Establish and maintain incident escalation and notification processes
• Organise, train, and equip teams to effectively respond to information security incidents
• Test and review the incident response plan periodically
• Establish and maintain communication plans and processes
• Conduct post-incident reviews
• Establish and maintain integration among the incident response plan, disaster recovery plan, and business continuity plan

Our Certified Information Security Manager (CISM) training course is suitable for:

• Risk Managers
• Security Professionals With Front-Line Experience
• Security Auditors
• Information Security Staff
• Compliance Personnel
• Information Security Managers
• CSO's
• CISO's,
• CIO's
• Information Security Assurance Providers

Our Certified Information Security Manager (CISM) training course includes the following:

• 4-day instructor-led training course
• Official ISACA curriculum
• ISACA Exam Voucher included
• One-on-one after-course instructor coaching
• Pre-reading
• Course Manuel
• Quizzes
• Exercises

Our Certified Information Security Manager (CISM) training course requires attendees to have a minimum of five years of information security experience in at least one of the following roles:

• IT consultant, auditor, or manager
• Security policy writer
• Privacy officer
• Information security officer
• Network administrator
• Security device administrator
• Security engineers

A copy of the current 'CISM Review Manual' is essential, it may assist you in your learning experience and quest for knowledge.

Certified Information Security Manager (CISM) Examination:

• Format: Multiple Choice.
• Pass Mark: 450

Our Certified Information Systems certificates have emerged as key qualifications for Security Professionals. More and more organisations are demanding experienced Information Security Professionals with the qualifications to prove that you can protect their valuable information and assets. It is the ideal time to achieve and maintain up to date qualifications. Purple Griffon currently offer the following Certified Information Systems classroom-based training courses:

• Certified Information Systems Auditor (CISA)
• Certified Information Security Manager (CISM)
• Certified Information Systems Security Professional (CISSP)
• BCS Certificate In Information Security Management Principles (CISMP)
• Certified In Risk & Information Systems Control (CRISC)

Upon passing the Certified Information Security Manager (CISM) exam and successful certification application, you will be awarded the ISACA Certified Information Security Manager (CISM) qualification.

For the certification application the following requirements must be met:

• Pass the Certified Information Security Manager (CISM) exam within the past five years.
• Have the relevant full-time work experience in the CISM job practice areas.
• Submit the Certified Information Security Manager (CISM) certification application including the application processing fee.