Preferred method of contact:

Certified Information Security Manager (CISM) Exam Preparation

COURSE TYPE

Intermediate

Course Number

2036

Duration

4 Days

PDF Add to WishList

The challenge of protecting enterprise data is more difficult than ever. This official ISACA CISM training course provides you with in-depth coverage on the four CISM domains: security governance; risk management and compliance; security program development and management; and security incident management. This course is designed specifically for information security professionals who are preparing to take the CISM certification exam.

You Will Learn How To

  • Prepare for and pass the Certified Information Security Manager (CISM) exam
  • Develop an information security strategy and plan of action to implement the strategy
  • Manage and monitor information security risks
  • Build and maintain an information security plan both internally and externally
  • Implement policies and procedures to respond to and recover from disruptive and destructive information security events

Important Course Information

Requirements:

  • IT professionals must have at least 5 years of information security experience, including IT consultants, auditors, managers, security policy writers, privacy officers, information security officers, network administrators, security device administrators, and security engineers.

Exam Information:

  • Computer-Based Testing (CBT) is offered during three testing windows of eight-week durations. The windows are 1 May-30 June 2017, 1 August-30 September 2017 and 1 November-31 December 2017. With ISACA CBT exams, candidates will now receive a preliminary score report at the conclusion of their exam. Official scores will be sent to candidates via email within 10 working days of their exam.
  • The ISACA Exam Candidate Information Guide provides valuable information regarding exam day rules and information, as well as exam dates and deadlines. You can find the 2017 copy at www.isaca.org/examguide

Certification Information:

Course Outline

  • Information Security Governance
  • Establish and maintain an information security strategy, and align the strategy with corporate governance
  • Establish and maintain an information security governance framework
  • Establish and maintain information security policies
  • Develop a business case
  • Identify internal and external influences to the organization
  • Obtain management commitment
  • Define roles and responsibilities
  • Establish, monitor, evaluate, and report metrics
  • Information Risk Management and Compliance
  • Establish a process for information asset classification and ownership
  • Identify legal, regulatory, organizational, and other applicable requirements
  • Ensure that risk assessments, vulnerability assessments, and threat analyses are conducted periodically
  • Determine appropriate risk treatment options
  • Evaluate information security controls
  • Identify the gap between current and desired risk levels
  • Integrate information risk management into business and IT processes
  • Monitor existing risk
  • Report noncompliance and other changes in information risk
  • Information Security Program Development and Management
  • Establish and maintain the information security program
  • Ensure alignment between the information security program and other business functions
  • Identify, acquire, manage, and define requirements for internal and external resources
  • Establish and maintain information security architectures
  • Establish, communicate, and maintain organizational information security standards, procedures, and guidelines
  • Establish and maintain a program for information security awareness and training
  • Integrate information security requirements into organizational processes
  • Integrate information security requirements into contracts and activities of third parties
  • Establish, monitor, and periodically report program management and operational metrics
  • Information Security Incident Management
  • Establish and maintain an organizational definition of, and severity hierarchy for, information security incidents
  • Establish and maintain an incident response plan
  • Develop and implement processes to ensure the timely identification of information security incidents
  • Establish and maintain processes to investigate and document information security incidents
  • Establish and maintain incident escalation and notification processes
  • Organize, train, and equip teams to effectively respond to information security incidents
  • Test and review the incident response plan periodically
  • Establish and maintain communication plans and processes
  • Conduct post-incident reviews
  • Establish and maintain integration among the incident response plan, disaster recovery plan, and business continuity plan
Show complete outline
Show Less

Convenient Ways to Attend This Instructor-Led Course

Hassle-Free Enrollment: No advance payment required to reserve your seat.
Tuition due 30 days after you attend your course.

In the Classroom

Live, Online

Private Team Training

In the Classroom — OR — Live, Online

Tuition — Standard: $2990   Government: $2659

Dec 19 - 22 (4 Days)
9:00 AM - 4:30 PM EST
Herndon, VA / Online (AnyWare) Herndon, VA / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Apr 17 - 20 (4 Days)
9:00 AM - 4:30 PM EDT
New York / Online (AnyWare) New York / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

May 15 - 18 (4 Days)
9:00 AM - 4:30 PM EDT
Rockville, MD / Online (AnyWare) Rockville, MD / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Jun 19 - 22 (4 Days)
9:00 AM - 4:30 PM EDT
Herndon, VA / Online (AnyWare) Herndon, VA / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Sep 18 - 21 (4 Days)
9:00 AM - 4:30 PM EDT
New York / Online (AnyWare) New York / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Oct 30 - Nov 2 (4 Days)
9:00 AM - 4:30 PM EDT
Rockville, MD / Online (AnyWare) Rockville, MD / Online (AnyWare) Reserve Your Seat

How would you like to attend?

Live, Online
In-Class

Guaranteed to Run

Private Team Training

Enrolling at least 3 people in this course? Consider bringing this (or any course that can be custom designed) to your preferred location as a private team training.

For details, call 1-888-843-8733 or Click Here »

Tuition

Standard

Government

In Classroom or
Online

Standard

$2990

Government

$2659

Private Team Training

Contact Us »

Course Tuition Includes:

After-Course Instructor Coaching
When you return to work, you are entitled to schedule a free coaching session with your instructor for help and guidance as you apply your new skills.

Free Course Exam
You can take your Learning Tree course exam on the last day of your course or online at any time after class and receive a Certificate of Achievement with the designation "Awarded with Distinction."

Prev
Next

Training Hours

Standard Course Hours: 9:00 am – 4:30 pm
*Informal discussion with instructor about your projects or areas of special interest: 4:30 pm – 5:30 pm

FREE Online Course Exam (if applicable) – Last Day: 3:30 pm – 4:30 pm
By successfully completing your FREE online course exam, you will:

  • Have a record of your growth and learning results.
  • Bring proof of your progress back to your organization
  • Earn credits toward industry certifications (if applicable)

- ,

Prev
Next
Chat Now

Please Choose a Language

Canada - English

Canada - Français