Certified Information Security Manager® (CISM)
Certified Information Security Manager® (CISM)
$799
GOALS & OBJECTIVES
Whether you are seeking a new career
opportunity or striving to grow within your
current organization, a CISM certification
proves your expertise in these work-related
domains:
- INFORMATION SECURITY GOVERNANCE
- INFORMATION RISK MANAGEMENT
- INFORMATION SECURITY PROGRAM
- DEVELOPMENT & MANAGEMENT
- INFORMATION SECURITY INCIDENT
MANAGEMENT
Description
Domain 1 – Information Security Governance
- Explain the need for and the desired outcomes of an
effective information security strategy - Create an information security strategy aligned with
organizational goals and objectives - Gain stakeholder support using business cases
- Identify key roles and responsibilities needed to execute
an action plan - Establish metrics to measure and monitor the
performance of security governance - Explain the importance of risk management as a tool to
meet business needs and develop a security
management program to support these needs - Identify, rank, and respond to a risk in a way that is
appropriate as defined by organizational directives - Assess the appropriateness and effectiveness of
information security controls - Report information security risk effectively
Domain 2 – Information Risk Management
- Explain the importance of risk management as a tool to
meet business needs and develop a security
management program to support these needs - Identify, rank, and respond to a risk in a way that is
appropriate as defined by organizational directives - Assess the appropriateness and effectiveness of
information security controls - Report information security risk effectively
Domain 3 – Information Security Program Development and
Management
- Align information security program requirements with those of
other business functions - Manage the information security program resources
- Design and implement information security controls
- Incorporate information security requirements into contracts,
agreements and third-party management processes
Domain 4 – Information Security Incident Management
- Understand the concepts and practices of Incident Management
- Identify the components of an Incident Response Plan and
evaluate its effectiveness - Understand the key concepts of Business Continuity Planning, or
BCP and Disaster Recovery Planning, or DRP - Be familiar with techniques commonly used to test incident
response capabilities
Only logged in customers who have purchased this product may leave a review.
Reviews
There are no reviews yet.