A Quick Glance

  • black-arrow

    Comprehensive guidance with CISM Exam Application Process

  • black-arrow

    Understand how to design and manage enterprise information security

  • black-arrow

    Prove knowledge of information security best practices to employers

  • black-arrow

    Taught by experienced and charismatic trainers

CISM certification is a program made for information security executives, information security experts and persons who are planning a career in information security management.

Our CISM training thoroughly prepares delegates for CISM certification, which combines the achievement of passing an internationally-respected exam with recognition of the knowledge, skills and experience required to work effectively within Information Security Management. 

This training course looks at the four main domains of information security management as covered by the CISM exam, with an eye to passing first time and achieving this highly-respected certification.

Who should take this course

  • Information Security Managers
  • Aspiring Information Security Managers 
  • IS/IT Consultants
More

Prerequisites

There are no prerequisites to attend the course or take the CISM exam. However, full CISM certification has an experience requirement of a minimum of five years of information security work experience, with a minimum of three years of information security management work experience in three or more of job practice areas covered by the exam.

More

What Will You Learn

  • Demonstrate understanding of the relationship between information security and business strategy
  • Prove your knowledge and experience of information security management
  • Join a network of global information security experts 
More

What's included

  Course Overview

The ISACA Certified Information Security Manager (CISM) exam is intended to certify the competency of security professionals to manage, design, oversees and assess an enterprise’s information security.

Our 4-day CISM course provides a thorough look at the requirements of the CISM exam, covering in-depth the four information security management domains which the exam measures capability in. These are:

  • Information Security Governance
  • Information Risk Management and Compliance
  • Information Security Program Development and Management
  • Information Security Incident Management

 

CISM Exam:

  • Exam Type: Multiple-choice
  • Duration: 4 hours
  • Closed Book Exam
More

  Course Content

Introduction to Certified Information Security Manager (CISM)

  • Objectives and Expectations
  • What is Information Security?
  • The Goals of Information Security
  • Principles for Information Security Professionals

 

Domain 1 – Information Security Governance

  • Outline
  • Knowledge Statements
  • Introduction to Information Security Governance
  • Effective Information Security Governance
  • Governance and Third Party Relationships
  • Information Security Metrics
  • Information Security Governance Metrics
  • Information Security Strategy
  • Information Security Strategy Development
  • Strategy Resources and Constraints
  • Other Frameworks
  • Compliances
  • Action Plans to Implement Strategy
  • Governance of Enterprise IT

 

Domain 2 – Information Risk Management and Compliance

  • Information Risk Management
  • Task and Knowledge Statements
  • Risk Management Overview
  • Risk Assessment
  • Information Asset Classification
  • Assessment Management
  • Information Resource Valuation
  • Recovery Time Objectives
  • Security Control Baselines
  • Risk Monitoring
  • Training and Awareness
  • Information Risk Management Documentation

 

Domain 3 – Information Security Program Development and Management

  • Task and Knowledge Statements
  • Information Security Program Management Overview
  • Information Security Program Objectives
  • Information Security Program Concepts
  • Information Security Program Technology Resources
  • Information Security Program Development
  • Information Security Program Framework
  • Information Security Program Roadmap
  • Enterprise Information Security Architecture (EISA)
  • Security Program Management and Administration
  • Security Program Services and Operational Activities
  • Controls
  • Security Program Metrics and Monitoring
  • Measuring Operational Performance
  • Common Information Security Program Challenges

 

Domain 4 – Information Security Incident Management

  • Task and Knowledge Statements
  • Incident Management Overview
  • Incident Management Procedures
  • Incident Management Resources
  • Incident Management Objectives
  • Incident Management Metrics and Indicators
  • Defining Incident Management Procedures
  • Business Continuity and Disaster Recovery Procedures
  • Post Incident Activities and Investigation
  • ISACA Code of Professional Ethics
  • Laws and Regulations
  • Policy Versus Law Within an Organization
  • Ethics and the Internet IAB
  • Certification requirements
  • CISM in the Workplace
  • The CISM Priorities
  • Understand How Questions Are Structured
  • Preparing for the Examination
  • Recommended Reading for the CISM Exam
  • Exam Favourites
More


CISM Certified Information Security Manager Enquiry

 

Enquire Now


----- OR -------

Reach us at +44 1344 961530 or info@pentagonit.co.uk for more information.

About Dundee

Dundee is Scotland's fourth-largest city. It is the 51st-most-populous region in the United Kingdom. According to the census of 2016, its population was 148,270. It is situated in the eastern central Lowlands of the Firth of Tay, which then falls into the North Sea. Under the name of Dundee City, it achieves one of the 32 council areas used for local government in Scotland.

Accurately part of Angus, the city familiar into a burgh in the late 12th century and documented itself as a significant east coast trading port. Fast growth was transported on by the Industrial Rebellion, mainly in the 19th century when Dundee was the centre of the global jute industry. This, along with its other main industries gave Dundee its nickname as the city of jute, jam and journalism.

Governance:

Historically part of Angus, the city industrialised into a burgh in the late 12th century and recognised itself as an important east coast transaction port. Rapid growth was brought on by the Industrial Rebellion, chiefly in the 19th century when Dundee was the centre of the global jute industry. This, along with its other major industries provided Dundee with its nickname as the city of "jute, jam and journalism".

 

More