-
-
Cart
There are no items in your cart. Continue shopping on our Course Directory page.
SUBTOTALPay now -or- pay later
Pay by credit card at checkout
-or- pay later by invoice, as always.
-
Certified Information Security Manager (CISM) Training & Certification
Level: Intermediate
Rating:
4.72/5 Based on 212 Reviews
Achieve CISM certification with this official ISACA course. Gain an in-depth knowledge of the four CISM domains: security governance; risk management and compliance; security program development and management; and security incident management.
This Certified Information Security Manager course is designed specifically for information security professionals who are preparing to take the CISM certification exam.
Key Features of this CISM Training:
- Choose from on-demand and instructor-led learning options
- Official ISACA Curriculum
- After-course instructor coaching benefit
- Course tuition fee includes an exam voucher from ISACA (Does not apply to the On Demand Option)
You Will Learn How To:
- Prepare for and pass the Certified Information Security Manager (CISM) exam
- Develop an information security strategy and plan of action to implement the strategy
- Manage and monitor information security risks
- Build and maintain an information security plan both internally and externally
- Implement policies and procedures to respond to and recover from disruptive and destructive information security events
Choose the Training Solution That Best Fits Your Individual Needs or Organisational Goals
ON DEMAND
On Demand + Instructor Coaching
- Downloadable workbook and job aids
- Case study activities
- Practise exam
- Earn 21 CPEs
- 17 hours of on-demand training
LIVE, INSTRUCTOR-LED
In Class & Live, Online Training
- 4-day instructor-led training course
- One-on-one after-course instructor coaching
- Tuition fee can be paid later by invoice -OR- at the time of checkout by credit card
TRAINING AT YOUR SITE
Team Training
- Bring this or any training to your organisation
- Full - scale program development
- Delivered when, where, and how you want it
- Blended learning models
- Tailored content
- Expert team coaching
Customize Your Team Training Experience
CONTACT USSave More on Training with Learning Tree Training Vouchers!
Our flexible, easy-to-redeem training vouchers are available to any employee within your organisation. For details, please call 0800 282 353 or chat live.
On Demand + Instructor Coaching
Important CISM Course Information
Requirements
- IT professionals must have at least 5 years of information security experience, including IT consultants, auditors, managers, security policy writers, privacy officers, information security officers, network administrators, security device administrators, and security engineers.
Exam Information
- ISACA offers continuous Computer-Based Testing (CBT). With ISACA CBT exams, candidates will now receive a preliminary score report at the conclusion of their exam. Official scores will be sent to candidates via email within 10 working days of their exam.
- The ISACA Exam Candidate Information Guide provides valuable information regarding exam day rules and information, as well as exam dates and deadlines. You can find the 2019 copy at www.isaca.org
- Exam voucher not included in the tutition of the course.
Certification Information
- This is an ISACA certification prep course. Click here to view more ISACA certification prep training ›
CISM Course Outline
Information Security Governance
- Establish and maintain an information security strategy, and align the strategy with corporate governance
- Establish and maintain an information security governance framework
- Establish and maintain information security policies
- Develop a business case
- Identify internal and external influences to the organisation
- Obtain management commitment
- Define roles and responsibilities
- Establish, monitor, evaluate, and report metrics
Information Risk Management and Compliance
- Establish a process for information asset classification and ownership
- Identify legal, regulatory, organisational, and other applicable requirements
- Ensure that risk assessments, vulnerability assessments, and threat analyses are conducted periodically
- Determine appropriate risk treatment options
- Evaluate information security controls
- Identify the gap between current and desired risk levels
- Integrate information risk management into business and IT processes
- Monitor existing risk
- Report noncompliance and other changes in information risk
Information Security Program Development and Management
- Establish and maintain the information security program
- Ensure alignment between the information security program and other business functions
- Identify, acquire, manage, and define requirements for internal and external resources
- Establish and maintain information security architectures
- Establish, communicate, and maintain organisational information security standards, procedures, and guidelines
- Establish and maintain a program for information security awareness and training
- Integrate information security requirements into organisational processes
- Integrate information security requirements into contracts and activities of third parties
- Establish, monitor, and periodically report program management and operational metrics
Information Security Incident Management
- Establish and maintain an organisational definition of, and severity hierarchy for, information security incidents
- Establish and maintain an incident response plan
- Develop and implement processes to ensure the timely identification of information security incidents
- Establish and maintain processes to investigate and document information security incidents
- Establish and maintain incident escalation and notification processes
- Organise, train, and equip teams to effectively respond to information security incidents
- Test and review the incident response plan periodically
- Establish and maintain communication plans and processes
- Conduct post-incident reviews
- Establish and maintain integration amongst the incident response plan, disaster recovery plan, and business continuity plan
In Class & Live, Online Training
Important CISM Course Information
Requirements
- IT professionals must have at least 5 years of information security experience, including IT consultants, auditors, managers, security policy writers, privacy officers, information security officers, network administrators, security device administrators, and security engineers.
Exam Information
- Course tuition fee includes an exam voucher from ISACA.
- ISACA offers continuous Computer-Based Testing (CBT). With ISACA CBT exams, candidates will now receive a preliminary score report at the conclusion of their exam. Official scores will be sent to candidates via email within 10 working days of their exam.
- The ISACA Exam Candidate Information Guide provides valuable information regarding exam day rules and information, as well as exam dates and deadlines. You can find the 2019 copy at www.isaca.org
- CISM Exam blackout dates:
- May 26th - 28th
- November 28th - 30th
Certification Information
- This is an ISACA certification prep course. Click here to view more ISACA certification prep training ›
Note: This course runs for 4 Days
-
1 - 4 Mar 9:00 AM - 4:30 PM GMT Online (AnyWare)
Reserve Your Seat -
7 - 10 Jun 9:00 AM - 4:30 PM BST Online (AnyWare)
Reserve Your Seat -
16 - 19 Aug 9:00 AM - 4:30 PM BST Online (AnyWare)
Reserve Your Seat -
15 - 18 Nov 9:00 AM - 4:30 PM GMT Online (AnyWare)
Reserve Your Seat -
2 - 5 Mar 2:00 PM - 9:30 PM GMT Online (AnyWare)
Reserve Your Seat -
8 - 11 Jun 2:00 PM - 9:30 PM BST Herndon, VA / Online (AnyWare)
Reserve Your Seat -
31 Aug - 3 Sep 2:00 PM - 9:30 PM BST New York / Online (AnyWare)
Reserve Your Seat -
30 Nov - 3 Dec 2:00 PM - 9:30 PM GMT Herndon, VA / Online (AnyWare)
Reserve Your Seat
Guaranteed to Run
When you see the "Guaranteed to Run" icon next to a course event, you can rest assured that your course event — date, time — will run. Guaranteed.CISM Course Outline
Information Security Governance
- Establish and maintain an information security strategy, and align the strategy with corporate governance
- Establish and maintain an information security governance framework
- Establish and maintain information security policies
- Develop a business case
- Identify internal and external influences to the organisation
- Obtain management commitment
- Define roles and responsibilities
- Establish, monitor, evaluate, and report metrics
Information Risk Management and Compliance
- Establish a process for information asset classification and ownership
- Identify legal, regulatory, organisational, and other applicable requirements
- Ensure that risk assessments, vulnerability assessments, and threat analyses are conducted periodically
- Determine appropriate risk treatment options
- Evaluate information security controls
- Identify the gap between current and desired risk levels
- Integrate information risk management into business and IT processes
- Monitor existing risk
- Report noncompliance and other changes in information risk
Information Security Program Development and Management
- Establish and maintain the information security program
- Ensure alignment between the information security program and other business functions
- Identify, acquire, manage, and define requirements for internal and external resources
- Establish and maintain information security architectures
- Establish, communicate, and maintain organisational information security standards, procedures, and guidelines
- Establish and maintain a program for information security awareness and training
- Integrate information security requirements into organisational processes
- Integrate information security requirements into contracts and activities of third parties
- Establish, monitor, and periodically report program management and operational metrics
Information Security Incident Management
- Establish and maintain an organisational definition of, and severity hierarchy for, information security incidents
- Establish and maintain an incident response plan
- Develop and implement processes to ensure the timely identification of information security incidents
- Establish and maintain processes to investigate and document information security incidents
- Establish and maintain incident escalation and notification processes
- Organise, train, and equip teams to effectively respond to information security incidents
- Test and review the incident response plan periodically
- Establish and maintain communication plans and processes
- Conduct post-incident reviews
- Establish and maintain integration amongst the incident response plan, disaster recovery plan, and business continuity plan
Team Training
CISM Training FAQs
What is the CISM certification?
The Certified Information Security Manager Exam is offered by ISACA, and recognises individuals who manage, oversee and assess an enterprise’s information security.
How do I take the CISM exam?
The ISACA Exam Candidate Information Guide provides valuable information regarding exam day rules and information, as well as exam dates and deadlines. You can find the 2018 copy at ISACA.org.
Can I become a Certified Information Security Manager online?
Yes! We know your busy work schedule may prevent you from getting to one of our classrooms which is why we offer convenient online training to meet your needs wherever you want. This course is available in class and live online.
Your Training Comes with a 100% Satisfaction Guarantee!*
*Partner-delivered courses may have different terms that apply. Ask for details.