Course 2 Career’s CISM certification training is designed to help you master the skills and knowledge necessary to become a recognised information security professional. Take advantage of our flexible and affordable training programs to enhance your career growth prospects.

The ISACA Certified Information Security Manager (CISM) course is a professional certification designed for information security management. It is offered by ISACA, a global professional association for IT governance, risk management, and cybersecurity professionals.

The Certified Information Security Manager (CISM) certification is specifically tailored for professionals responsible for managing, developing, and overseeing information security systems in an enterprise. It focuses on providing a comprehensive understanding of information security management, governance, program development and management, and incident management.

1. Information Security Governance (24%):

   – Establishing and maintaining an information security governance framework and supporting processes.

   – Establishing and maintaining information security policies, standards, and procedures.

2. Information Risk Management (30%):

   – Identifying and managing information security risks to achieve business objectives.

   – Developing and managing an information security risk management program.

3. Information Security Program Development and Management (27%):

   – Establishing and managing the information security program.

   – Developing and managing information security strategies and plans.

4. Information Security Incident Management (19%):

   – Establishing and managing the capability to respond to and recover from information security incidents.

   – Establishing and managing the information security incident management program.

1. Domain 1: Information Security Governance:

   – Information Security Governance Framework and Supporting Processes

   – Information Security Governance and Policy Development

   – Information Security Governance Metrics

2. Domain 2: Information Risk Management:

   – Information Security Risk Management

   – Information Security Program

   – Information Security Management and Strategy

3. Domain 3: Information Security Program Development and Management:

   – Information Security Program Development and Management

   – Information Security Program Alignment and Support

   – Information Security Management Resources

4. Domain 4: Information Security Incident Management:

   – Establishing and Maintaining an Information Security Incident Management and Response Process