This comprehensive course is designed to guide professionals through the process of preparing for and attaining the Certified Information Security Manager (CISM) certification, a globally recognized standard of achievement in information security management. The course is structured around the five key domains of the CISM certification exam: Information Security Governance, Information Risk Management, Information Security Program Development and Management, Information Security Incident Management, and Governance, Risk Management, and Compliance.
Starting with an overview of the CISM certification, the course dives into the benefits of achieving CISM status, emphasizing its role in career advancement, enhanced credibility, and increased earning potential in the field of information security.
Domain 1:
In the first domain, learners will explore the concepts of Information Security Governance, focusing on establishing and managing an Information Security Governance Framework, developing and implementing information security strategies aligned with corporate goals, and utilizing metrics and reporting to assess and communicate governance effectiveness.
Domain 2:
The second domain explore the Information Risk Management, covering the establishment of a risk management program, risk assessment methodologies, asset classification, and risk response strategies. This section ensures learners can identify, evaluate, and manage information security risks effectively.
Domain 3:
The third domain addresses Information Security Program Development and Management, offering insights into integrating security programs into business processes, lifecycle management of information security, and ensuring the security of information systems.
Domain 4:
In the fourth domain, participants will learn about Information Security Incident Management, including the development of an incident management program, response procedures, evidence collection, and incident communication strategies.
Our Learners Feedback
Discover what our learners have to say about their experience with us! We invite you to explore our learners' feedback on Trustpilot to get firsthand accounts of their journey and successes. Your trust is our top priority, and who better to hear from than those who have walked the path themselves? Visit Trustpilot now to read reviews and see why our community continues to grow. Join us and become part of a learning experience that truly makes a difference.
Click here: https://www.trustpilot.com/review/infosec4tc.com
Course Curriculum
- Understanding information security governance (8:09)
- Roles and responsibilities of information security governance (3:02)
- CISO JD (4:02)
- Establishing an Information Steering Committee ISSC (3:27)
- Policies and Procedures (8:57)
- IS Policy Sample (7:34)
- Policy Template Resources (1:35)
- Compliance and Legal Requirements (3:04)
- Implementing information security governance frameworks (7:26)
- ISO 27001 Standards (8:56)
- PCI-DSS (9:31)
- Mapping between standards (2:47)
- NIST 800-53 (2:38)
- SP NIST 800-53 (4:02)
- HIPAA (3:02)
- Governance using AI Part 1 (9:24)
- Governance using AI Part 2 (5:06)
- Awareness and Education (7:47)
- Resources CIS (4:17)
- Security Policy Framework (24:53)
- The Relationship Between Security Document Types (3:42)
- Identify, analyze, and prioritize Business Continuity (BC) requirements (8:17)
- BCP Phases (12:00)
- Business Impact Analysis - BIA (10:41)
- NIST SP 800-34 (8:06)
- 27. MTD-RTO-RPO- (11:29)
- Business Continuity Controls (9:41)
- High availability and Fault Tolerance (11:28)
