info@rekhindo.com +62-22-87318234 +62-851-0599-8123

X

Certified Information Security Manager (CISM)

irna Thu, 01/19/2023 - 03:26
CISM

Price

--- Call Us ---
Duration
4 Days

Duration

4 Days

The Certified Information Security Manager (CISM) course helps the candidates to achieve the CISM certification. The certification is offered by the Information Systems Audit and Control Association (ISACA) to validate the expertise and knowledge of the candidates regarding the relationship between an information security program and the broader business targets. The certification also validates that the candidate has the hands-on knowledge of developing, managing and implementing an information security program for an organization.


KEY OUTCOMES:
Be able to:

  • Prepare for and pass the Certified Information Security Manager (CISM) exam
  • Develop an information security strategy and plan of action to implement the strategy
  • Manage and monitor information security risks
  • Build and maintain an information security plan both internally and externally
  • Implement policies and procedures to respond to and recover from disruptive and destructive information security events

Objectives

  • Information Security Governance
    o Establish and maintain an information security strategy, and align the strategy with corporate governance
    o Establish and maintain an information security governance framework
    o Establish and maintain information security policies
    o etc
  • Information Risk Management and Compliance
    o Establish a process for information asset classification and ownership
    o Identify legal, regulatory, organizational, and other applicable requirements
    o Ensure that risk assessments, vulnerability assessments, and threat analyses are conducted periodically
    o etc
  • Information Security Program Development and Management
    o Establish and maintain the information security program
    o Ensure alignment between the information security program and other business functions
    o Identify, acquire, manage, and define requirements for internal and external resources
    o etc
  • Information Security Incident Management
    o Establish and maintain an organizational definition of, and severity hierarchy for, information security incidents
    o Establish and maintain an incident response plan
    o Develop and implement processes to ensure the timely identification of information security incidents
    o etc