Overview What You Will Learn Curriculum Instructor

Course Overview

The ISACA CISM Certified Information Security Manager course is designed for professionals seeking expertise in information security management. With organizations facing increasing cyber threats, mastering security governance, risk management, and incident response is crucial. This course prepares learners for the CISM certification, equipping them with the skills to manage and develop robust security programs aligned with business objectives.

This course begins with an introduction to the CISM certification, outlining its scope and exam details. It then explores Information Security Governance, covering strategy, frameworks, risk alignment, and compliance. Next, Risk Management and Compliance delves into risk assessment methodologies, classification, monitoring, and legal requirements. Information Security Program Development Management addresses security architecture, implementation, awareness training, and third-party security. The Security Incident Management section focuses on incident response, disaster recovery, forensic analysis, and business continuity. Finally, the course concludes with Passing the Exam, offering essential exam strategies.

By completing this course, learners will gain a strong foundation in security governance, risk management, and incident response, enhancing their ability to manage enterprise security programs and achieve CISM certification.

What You Will Learn

  • Learn how to establish and/or maintain an Information Security Governance Framework
  • Learn how to manage information risk to an acceptable level based on risk appetite in order to meet organizational goals and objectives
  • Learn how to develop and manage Information Security Program
  • Learn how to plan, establish and manage the capability to detect, investigate, respond to and recover from information security incidents to minimize business impact

Program Curriculum

  • Introduction
  • Scope and Exam Info
  • $7 Million Cybersecurity Scholarship by EC-Council

  • Introduction to Information Security Governance
  • Information Security Governance Tasks
  • Information Security Strategy
  • Alignment to the Organizational Goals
  • Security Frameworks
  • IS Roles and Responsibilities
  • Integrated Governance
  • Industry Standards
  • Balanced Scorecard
  • Structure
  • Business Case
  • Security Budget
  • Security Influencers
  • Governance, Risk, and Compliance
  • Obtain Management Commitment
  • Security Management Roles
  • Organizational Structures
  • Effective Communication
  • Security Metrics
  • Chapter 2 Quiz

  • Introduction to Risk Management and Compliance
  • Information Classification
  • Responsibility Assignment
  • Evaluate Risk Impact
  • Asset Validation Methods
  • Legal and Regulatory Requirements
  • Identifying Emerging Threats
  • When It’s Time to Reassess
  • Threat Knowledge
  • Risk Assessments and Analysis Methodology
  • Risk Assessment Methodology
  • Risk Prioritization
  • Risk Factors
  • Risk Reporting
  • Risk Monitoring
  • Risk Treatment Strategies
  • Risk Baselines
  • Monitoring Security Controls
  • Gap Analysis
  • Risk Integration
  • Compliance Reporting
  • Cost Determines Treatment
  • Chapter 3 Quiz

  • Introduction to Information Security Program Development Management
  • Alignment with the Business
  • Acquire and Deploy Security Resources
  • Keep It Running
  • Controls and Counter Measures
  • Security Architecture
  • Standards and Procedures Development
  • Security Controls
  • Security Implementation
  • Awareness and Training
  • Process Integration
  • Contracts and Third Party Security
  • Security Metrics
  • Effectiveness and Applicability Testing
  • Chapter 4 Quiz

  • Introduction to Security Incident Management
  • Incident Response Plan
  • Incident Management Concepts and Practices
  • Integration with DR and BCP
  • Recovery Terms
  • Incident Classification Methods
  • Damage Containment
  • Re-plan
  • Roles and Responsibilities
  • Incident Response Tools and Equipment
  • Reliability of Evidence
  • Validation of Evidence
  • Incident Response Reporting and Procedures
  • Root Cause Analysis
  • Business Impact Analysis
  • Detecting and Analyzing Security Events
  • Incident Management System
  • Chapter 5 Quiz

  • Passing the Exam
Load more modules

Instructor

Luciano Ferrari

Chief Executive Officer of the IT security and data defense firm Cyology Labs™ in Montréal, Canada

Luciano Ferrari is an information security leader and IoT hacking expert. He holds multiple security certifications, including CISSP, CISM, CRISC, and PCIP, and has worked at Fortune 500 companies in both technical and leadership roles. He drives progress at his own company, LufSec, where he works on security-related issues and projects. Luciano has conducted hundreds of IT security audits and penetration tests, including audits and tests on IoT devices for cable companies. He has also leveraged his IT security expertise in manufacturing, semiconductor, financial, and educational institutions. With his background in electronics and microelectronics, his distinct specialization is definitely on hardware hacking. Luciano is passionate about sharing his knowledge with others and teaching. His other areas of expertise include IT infrastructure, networking, penetration testing, risk, vulnerability, and threat management. In private, he enjoys researching new technologies and participating at security conferences and in bug bounty programs.

Join over 1 Million professionals from the most renowned Companies in the world!

certificate

Empower Your Learning with Our Flexible Plans

Invest in your future with our flexible subscription plans. Whether you're just starting out or looking to enhance your expertise, there's a plan tailored to meet your needs. Gain access to in-demand skills and courses for your continuous learning needs.

Monthly Plans
Annual Plans
Save 20% with our annual plans!

Pro

Ideal for continuous learning, offering video-based learning with 840+ courses and diverse Learning Paths to enhance your skills.

$ 69.00
Billed monthly or $599.00 billed annually
Get Started Now
Start your 7-day trial for $1

What is included

  • 840+ Premium Short Courses
  • 70+ Structured Learning Paths
  • Validation of Completion with all courses and learning paths
  • New Courses added every month
Early Access Offer

Pro +

Experience immersive learning with Practice Labs and CTF Challenges for comprehensive skill-building.

$ 79.00
Billed monthly or $699.00 billed annually
Get Started Now
Start your 7-day trial for $1

Everything in Pro and

  • 1400+ Practice Lab exercises with guided instructions
  • 150+ CTF Challenges with detailed walkthroughs
  • New Practice Labs and Challenges added every month

Related Courses

  • Hacking WEP/WPA/WPA2 Wi-Fi Networks Using Kali Linux 2.

    Hacking WEP/WPA/WPA2 Wi-Fi Networks Using Kali Linux 2

    Short Course

    Hacking WEP/WPA/WPA2 Wi-Fi Networks Using Kali Linux 2

    Vulnerability Assessment and Pentesting

    The comprehensive course to secure & crack WEP/WPA/WPA2 k...

    $69.99

    Intermediate

    5 hr 12 m

  • Bootstrap 4 Quick Website Bootstrap Components Course.

    Bootstrap 4 Quick Website Bootstrap Components Course

    Short Course

    Bootstrap 4 Quick Website Bootstrap Components Course

    Software Development

    Explore the basics of Bootstrap and learn to create a website...

    $49.99

    Beginner

    1 hr 30 m

  • CCNA - Understanding Routers and Switches.

    CCNA - Understanding Routers and Switches

    Short Course

    CCNA - Understanding Routers and Switches

    Security Architecture and Operations

    A comprehensive guide to understanding the in-depth functioni...

    $49.99

    Intermediate

    2 hr 0 m

  • The Complete Full-Stack JavaScript Course.

    The Complete Full-Stack JavaScript Course

    Short Course

    The Complete Full-Stack JavaScript Course

    Software Development

    Learn full-stack web development using JavaScript (ReactJS, N...

    $79.99

    Beginner

    24 hr 17 m

  • React.JS for Ecommerce: Building a Store with React.JS

    React.JS for Ecommerce: Building a Store with React.JS

    Short Course

    React.JS for Ecommerce: Building a Store with React.JS

    DevSecOps

    From React.js Fundamentals to Crafting an Online Storefront

    $49.99

    Advanced

    3 hr 30 m

  • CISSP Certification Domains 5, 6, 7, and 8 Video Training.

    CISSP Certification Domains 5, 6, 7, and 8 Video Training

    Short Course

    CISSP Certification Domains 5, 6, 7, and 8 Video Training

    Cybersecurity

    This course is ideal for individuals who desire to pass the I...

    $69.99

    Intermediate

    6 hr 30 m

  • Helm 3 - Package Manager for Kubernetes.

    Helm 3 - Package Manager for Kubernetes

    Short Course

    Helm 3 - Package Manager for Kubernetes

    Software Development

    A must tool for every DevOps engineer

    $49.99

    Intermediate

    1 hr 27 m

  • Learn Ethical Hacking by Hacking Real Websites Legally.

    Learn Ethical Hacking by Hacking Real Websites Legally

    Short Course

    Learn Ethical Hacking by Hacking Real Websites Legally

    Vulnerability Assessment and Pentesting

    Fun way to learn ethical hacking by playing online hacking ga...

    $69.99

    Beginner

    4 hr 18 m

1 50
View all