Instructor-Led
Training
ISACA CISM Training
The ISACA Certified Information Security Manager (CISM) certification is a globally recognized credential for professionals managing and overseeing an enterprise’s information security program. It validates expertise in security governance, risk management, incident response, and program development.
Course Overview
Enterprise Security Program Management
Learn to establish, implement, and manage an enterprise-wide security program.
Security Governance & Business Alignment
Implement governance frameworks and align security strategies with business objectives.
Risk Assessment & Mitigation
Conduct security risk assessments and develop effective risk management strategies.
Incident Response & Business Continuity
Develop response plans for security incidents and ensure business continuity.
Regulatory & Legal Compliance
Understand compliance frameworks, regulatory policies, and legal requirements.
Security Architecture & Control Implementation
Oversee security architecture design and deploy security controls to protect enterprise systems.
Security Managers & IT Professionals
Responsible for enterprise information security and risk management.
IT Security Consultants & Compliance Officers
Professionals handling security compliance, risk management, and policy enforcement.
IT Auditors & Business Continuity Managers
Experts involved in IT governance, auditing, and disaster recovery planning.
Aspiring Information Security Leaders
Professionals looking to transition into leadership roles in cybersecurity management.
Security Certification Seekers
Individuals pursuing globally recognized security management certifications like CISM.
Online Instructor-Led Training
Engage with security management experts in live sessions.
Intensive Training Course
Covers risk management, governance, and compliance.
90-Day Access to Course Content
Study anytime with recorded sessions and digital resources.
Work Experience
A minimum of five years of work experience in information security management.
Education or Certification Substitution
Up to two years of experience may be substituted with relevant education or certifications, per ISACA’s criteria.
Exam Before Experience
Candidates can take the exam before meeting the experience requirement and apply for certification once the experience is met.
Information Security Governance
Security program strategy, risk alignment, and policy development.
Information Risk Management
Risk analysis, risk response strategies, and security controls.
Information Security Program Development and Management
Security architecture, implementation, and operations.
Information Security Incident Management
Incident response, forensics, and disaster recovery planning.
| Description | Designed for those who manage, design, oversee and assess an enterprise's information security function. |
|---|---|
| Experience Required | Five (5) or more years of experience in information security management. Experience waivers are available for a maximum of two (2) years. |
| Domain (%) |
Domain 1 – Information Security Governance (17%) Domain 2 – Information Security Risk Management (20%) Domain 3 – Information Security Program (33%) Domain 4 – Incident Management (30%) |
| Exam Languages | Chinese Simplified, English, Japanese, Spanish |
| Exam Length | 4 hours (240 minutes), 150 multiple choice questions |