Certified Information Security Manager (CISM) Course Outline

Description: The Certified Information Security Manager (CISM) course is designed to equip participants with the knowledge and skills required to manage, design, oversee, and assess an enterprise’s information security. This globally recognized certification is ideal for IT and security professionals aiming to advance their careers in information security management.

What You’ll Learn:

• Understand the core competencies of information security management.
• Learn how to develop and implement an information security strategy aligned with organizational objectives.
• Gain insights into risk management and mitigation strategies in the context of information security.
• Explore the principles of governance and compliance frameworks relevant to information security management.
• Learn how to manage incident response and disaster recovery processes effectively.

Requirements:

• Basic understanding of information security concepts.
• Familiarity with IT governance and risk management principles.
• Prior experience in IT or security-related roles is recommended but not mandatory.

Curriculum:

1. Information Security Governance
   • Understanding governance frameworks and their application in information security management.
   • Roles and responsibilities of stakeholders in establishing and maintaining information security governance.
   • Developing and implementing information security policies, procedures, and standards.
   • Establishing accountability and oversight mechanisms for information security within the organization.
2. Information Security Risk Management
   • Identifying and assessing information security risks in the organization.
   • Risk management methodologies and techniques for prioritizing and mitigating risks.
   • Implementing risk treatment strategies to address identified vulnerabilities and threats.
   • Monitoring and reviewing the effectiveness of risk management controls.
3. Information Security Program
   • Designing and implementing an information security program aligned with organizational objectives and regulatory requirements.
   • Developing a comprehensive information security architecture, including technical controls and security frameworks.
   • Establishing security awareness and training programs for employees to promote a culture of security awareness.
   • Conducting security audits and assessments to evaluate the effectiveness of the information security program.
4. Incident Management
   • Establishing incident response procedures and protocols for identifying, containing, and mitigating security incidents.
   • Developing incident response plans to address common security incidents, such as data breaches, malware infections, and system intrusions.
   • Coordinating incident response efforts with internal teams and external stakeholders, such as law enforcement and regulatory agencies.
   • Conducting post-incident reviews and analysis to identify lessons learned and improve incident response capabilities.

Instructor Profile Name: Roy Biakpara

• Credentials: [Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), etc.] Certificate in Information Security Management Principles (CISMP), ISO/IEC 27001 Lead Auditor, Certified Information Systems Auditor (CISA), Integrated Data Privacy Professional (IDPP), Certified in Risk and Information Systems Control (CRISC), Certified Data Privacy Solutions Engineer (CDPSE), Certified Lead Cloud Security Manager, Certified Data Privacy Practitioner (CDPP)
• Experience: 15 years of experience in information security management.
• Expertise: Specializes in Governance, Risk Management and Compliance.
• Qualifications: Holds an MSc. In Information Security from Royal Holloway University of London.
• Teaching Style: Engaging and interactive approach to facilitate learning and practical application of concepts.

For more information or to enroll in the course, please contact Cyber Path Insight at training@cyberpathisnight-uk.com.