-
-
Cart
There are no items in your cart. Continue shopping on our Course Directory page.
SUBTOTALPay now -or- pay later
Pay by credit card at checkout
-or- pay later by invoice, as always.
-
Certified Information Security Manager (CISM) Training & Certification
Level: Intermediate
Rating:
4.76/5 Based on 164 Reviews
Achieve CISM certification with this official ISACA course. Gain an in-depth knowledge of the four CISM domains: security governance; risk management and compliance; security program development and management; and security incident management.
This Certified Information Security Manager course is designed specifically for information security professionals who are preparing to take the CISM certification exam.
Key Features of this CISM Training:
- Choose from on-demand and instructor-led learning options
- Official ISACA Curriculum
- After-course instructor coaching benefit
- Course tuition includes an exam voucher from ISACA (Does not apply to the On Demand Option)
You Will Learn How To:
- Prepare for and pass the Certified Information Security Manager (CISM) exam
- Develop an information security strategy and plan of action to implement the strategy
- Manage and monitor information security risks
- Build and maintain an information security plan both internally and externally
- Implement policies and procedures to respond to and recover from disruptive and destructive information security events
Certifications/Credits:
Choose the Training Solution That Best Fits Your Individual Needs or Organizational Goals
ON DEMAND
On Demand + Instructor Coaching
- Downloadable workbook and job aids
- Case study activities
- Practice exam
- Earn 21 CPEs
- 17 hours of on-demand training
LIVE, INSTRUCTOR-LED
In Class & Live, Online Training
- 4-day instructor-led training course
- Earn 23 NASBA credits (live, in-class training only)
- One-on-one after-course instructor coaching
- Tuition can be paid later by invoice -OR- at the time of checkout by credit card
TRAINING AT YOUR SITE
Team Training
- Bring this or any training to your organization
- Full - scale program development
- Delivered when, where, and how you want it
- Blended learning models
- Tailored content
- Expert team coaching
Customize Your Team Training Experience
CONTACT USSave More On Training with FlexVouchers – A Unique Training Savings Account
Our FlexVouchers help you lock in your training budgets without having to commit to a traditional 1 voucher = 1 course classroom-only attendance. FlexVouchers expand your purchasing power to modern blended solutions and services that are completely customizable. For details, please call 888-843-8733 or chat live.
On Demand + Instructor Coaching
Important CISM Course Information
-
Requirements
- IT professionals must have at least 5 years of information security experience, including IT consultants, auditors, managers, security policy writers, privacy officers, information security officers, network administrators, security device administrators, and security engineers.
-
Exam Information
- ISACA offers continuous Computer-Based Testing (CBT). With ISACA CBT exams, candidates will now receive a preliminary score report at the conclusion of their exam. Official scores will be sent to candidates via email within 10 working days of their exam.
- The ISACA Exam Candidate Information Guide provides valuable information regarding exam day rules and information, as well as exam dates and deadlines. You can find the 2019 copy at www.isaca.org
-
Certification Information
- This is an ISACA certification prep course. Click here to view more ISACA certification prep training ›
CISM Course Outline
-
Information Security Governance
- Establish and maintain an information security strategy, and align the strategy with corporate governance
- Establish and maintain an information security governance framework
- Establish and maintain information security policies
- Develop a business case
- Identify internal and external influences to the organization
- Obtain management commitment
- Define roles and responsibilities
- Establish, monitor, evaluate, and report metrics
-
Information Risk Management and Compliance
- Establish a process for information asset classification and ownership
- Identify legal, regulatory, organizational, and other applicable requirements
- Ensure that risk assessments, vulnerability assessments, and threat analyses are conducted periodically
- Determine appropriate risk treatment options
- Evaluate information security controls
- Identify the gap between current and desired risk levels
- Integrate information risk management into business and IT processes
- Monitor existing risk
- Report noncompliance and other changes in information risk
-
Information Security Program Development and Management
- Establish and maintain the information security program
- Ensure alignment between the information security program and other business functions
- Identify, acquire, manage, and define requirements for internal and external resources
- Establish and maintain information security architectures
- Establish, communicate, and maintain organizational information security standards, procedures, and guidelines
- Establish and maintain a program for information security awareness and training
- Integrate information security requirements into organizational processes
- Integrate information security requirements into contracts and activities of third parties
- Establish, monitor, and periodically report program management and operational metrics
-
Information Security Incident Management
- Establish and maintain an organizational definition of, and severity hierarchy for, information security incidents
- Establish and maintain an incident response plan
- Develop and implement processes to ensure the timely identification of information security incidents
- Establish and maintain processes to investigate and document information security incidents
- Establish and maintain incident escalation and notification processes
- Organize, train, and equip teams to effectively respond to information security incidents
- Test and review the incident response plan periodically
- Establish and maintain communication plans and processes
- Conduct post-incident reviews
- Establish and maintain integration among the incident response plan, disaster recovery plan, and business continuity plan
In Class & Live, Online Training
Important CISM Course Information
-
Requirements
- IT professionals must have at least 5 years of information security experience, including IT consultants, auditors, managers, security policy writers, privacy officers, information security officers, network administrators, security device administrators, and security engineers.
-
Exam Information
- Course tuition includes an exam voucher from ISACA.
- ISACA offers continuous Computer-Based Testing (CBT). With ISACA CBT exams, candidates will now receive a preliminary score report at the conclusion of their exam. Official scores will be sent to candidates via email within 10 working days of their exam.
- The ISACA Exam Candidate Information Guide provides valuable information regarding exam day rules and information, as well as exam dates and deadlines. You can find the 2019 copy at www.isaca.org
-
Certification Information
- This is an ISACA certification prep course. Click here to view more ISACA certification prep training ›
Time Zone Legend:
Note: This course runs for 4 Days
-
Feb 18 - 21 9:00 AM - 4:30 PM EST Greenbelt,MD / Online (AnyWare) Reserve Your Seat
-
Mar 3 - 6 9:00 AM - 4:30 PM EST New York / Online (AnyWare) Reserve Your Seat
-
Mar 17 - 20 9:00 AM - 4:30 PM EDT Washington, DC / Online (AnyWare) Reserve Your Seat
-
Apr 14 - 17 9:00 AM - 4:30 PM CDT Austin / Online (AnyWare) Reserve Your Seat
-
Apr 21 - 24 9:00 AM - 4:30 PM PDT Seattle / Online (AnyWare) Reserve Your Seat
-
Apr 28 - May 1 9:00 AM - 4:30 PM EDT Washington, DC / Online (AnyWare) Reserve Your Seat
-
May 5 - 8 9:00 AM - 4:30 PM MDT Denver / Online (AnyWare) Reserve Your Seat
-
May 19 - 22 9:00 AM - 4:30 PM EDT Greenbelt,MD / Online (AnyWare) Reserve Your Seat
-
May 26 - 29 9:00 AM - 4:30 PM EDT Atlanta / Online (AnyWare) Reserve Your Seat
-
May 26 - 29 9:00 AM - 4:30 PM EDT Boston / Online (AnyWare) Reserve Your Seat
-
May 26 - 29 9:00 AM - 4:30 PM EDT Philadelphia / Online (AnyWare) Reserve Your Seat
-
May 26 - 29 9:00 AM - 4:30 PM EDT Herndon, VA / Online (AnyWare) Reserve Your Seat
-
Jul 14 - 17 9:00 AM - 4:30 PM EDT Ottawa / Online (AnyWare) Reserve Your Seat
-
Jul 21 - 24 9:00 AM - 4:30 PM PDT San Francisco / Online (AnyWare) Reserve Your Seat
-
Aug 11 - 14 9:00 AM - 4:30 PM EDT Greenbelt,MD / Online (AnyWare) Reserve Your Seat
-
Sep 1 - 4 9:00 AM - 4:30 PM EDT New York / Online (AnyWare) Reserve Your Seat
-
Sep 15 - 18 9:00 AM - 4:30 PM EDT Washington, DC / Online (AnyWare) Reserve Your Seat
-
Sep 29 - Oct 2 9:00 AM - 4:30 PM CDT Austin / Online (AnyWare) Reserve Your Seat
-
Oct 20 - 23 9:00 AM - 4:30 PM MDT Denver / Online (AnyWare) Reserve Your Seat
-
Oct 27 - 30 9:00 AM - 4:30 PM PDT Seattle / Online (AnyWare) Reserve Your Seat
-
Nov 17 - 20 9:00 AM - 4:30 PM EST Greenbelt,MD / Online (AnyWare) Reserve Your Seat
-
Dec 8 - 11 9:00 AM - 4:30 PM EST Atlanta / Online (AnyWare) Reserve Your Seat
-
Dec 8 - 11 9:00 AM - 4:30 PM EST Boston / Online (AnyWare) Reserve Your Seat
-
Dec 8 - 11 9:00 AM - 4:30 PM EST Philadelphia / Online (AnyWare) Reserve Your Seat
-
Dec 8 - 11 9:00 AM - 4:30 PM EST Herndon, VA / Online (AnyWare) Reserve Your Seat
Guaranteed to Run
When you see the "Guaranteed to Run" icon next to a course event, you can rest assured that your course event — date, time, location — will run. Guaranteed.CISM Course Outline
-
Information Security Governance
- Establish and maintain an information security strategy, and align the strategy with corporate governance
- Establish and maintain an information security governance framework
- Establish and maintain information security policies
- Develop a business case
- Identify internal and external influences to the organization
- Obtain management commitment
- Define roles and responsibilities
- Establish, monitor, evaluate, and report metrics
-
Information Risk Management and Compliance
- Establish a process for information asset classification and ownership
- Identify legal, regulatory, organizational, and other applicable requirements
- Ensure that risk assessments, vulnerability assessments, and threat analyses are conducted periodically
- Determine appropriate risk treatment options
- Evaluate information security controls
- Identify the gap between current and desired risk levels
- Integrate information risk management into business and IT processes
- Monitor existing risk
- Report noncompliance and other changes in information risk
-
Information Security Program Development and Management
- Establish and maintain the information security program
- Ensure alignment between the information security program and other business functions
- Identify, acquire, manage, and define requirements for internal and external resources
- Establish and maintain information security architectures
- Establish, communicate, and maintain organizational information security standards, procedures, and guidelines
- Establish and maintain a program for information security awareness and training
- Integrate information security requirements into organizational processes
- Integrate information security requirements into contracts and activities of third parties
- Establish, monitor, and periodically report program management and operational metrics
-
Information Security Incident Management
- Establish and maintain an organizational definition of, and severity hierarchy for, information security incidents
- Establish and maintain an incident response plan
- Develop and implement processes to ensure the timely identification of information security incidents
- Establish and maintain processes to investigate and document information security incidents
- Establish and maintain incident escalation and notification processes
- Organize, train, and equip teams to effectively respond to information security incidents
- Test and review the incident response plan periodically
- Establish and maintain communication plans and processes
- Conduct post-incident reviews
- Establish and maintain integration among the incident response plan, disaster recovery plan, and business continuity plan
Team Training
CISM Training FAQs
-
What is the CISM certification?
The Certified Information Security Manager Exam is offered by ISACA, and recognizes individuals who manage, oversee and assess an enterprise’s information security.
-
How do I take the CISM exam?
The ISACA Exam Candidate Information Guide provides valuable information regarding exam day rules and information, as well as exam dates and deadlines. You can find the 2018 copy at ISACA.org.
-
Can I become a Certified Information Security Manager online?
Yes! We know your busy work schedule may prevent you from getting to one of our classrooms which is why we offer convenient online training to meet your needs wherever you want. This course is available in class and live online.
Your Training Comes with a 100% Satisfaction Guarantee!*
*Partner-delivered courses may have different terms that apply. Ask for details.