| Printed Courseware Catalogue
|
|
|
|
|
|
|
|
|
Catalogue IT & CertificationIT Management
|
Certified Information Security Manager (CISM): |
|
|
Element K
Security
411 pages
Purchase Price
1-9 manuals: $275 per manual
10+ manuals: $245 per manual
Trainer Material: Instructor's Edition $300 each
|
Code: EK85-063
Series: IT & Certification
Format: A4
Duration: 5 day(s)
Download Data Files
Printer friendly version of this outline
|
|
Outline
Information Security Governance
Develop an Information Security Strategy
Align Information Security Strategy with Corporate Governance
Identify Legal and Regulatory Requirements
Justify Investment in Information Security
Identify Drivers Affecting the Organization
Obtain Senior Management Commitment to Information Security
Define Roles and Responsibilities for Information Security
Establish Reporting and Communication Channels
Information Risk Management
Implement an Information Risk Assessment Process
Determine Information Asset Classification and Ownership
Conduct Ongoing Threat and Vulnerability Evaluations
Conduct Periodic BIAs
Identify and Evaluate Risk Mitigation Strategies
Integrate Risk Management into Business Life Cycle Processes
Report Changes in Information Risk
Information Security Program Development
Develop Plans to Implement an Information Security Strategy
Security Technologies and Controls
Specify Information Security Program Activities
Coordinate Information Security Programs with Business Assurance Functions
Identify Resources Needed for Information Security Program Implementation
Develop Information Security Architectures
Develop Information Security Policies
Develop Information Security Awareness, Training, and Education Programs
Develop Supporting Documentation for Information Security Policies
| Information
Security Program Implementation
Integrate Information Security Requirements into Organizational Processes
Integrate Information Security Controls into Contracts
Create Information Security Program Evaluation Metrics
Information Security Program Management
Manage Information Security Program Resources
Enforce Policy and Standards Compliance
Enforce Contractual Information Security Controls
Enforce Information Security During Systems Development
Maintain Information Security Within an Organization
Provide Information Security Advice and Guidance
Provide Information Security Awareness and Training
Analyze the Effectiveness of Information Security Controls
Resolve Noncompliance Issues
Incident Management and Response
Develop an Information Security Incident Response Plan
Establish an Escalation Process
Develop a Communication Process
Integrate an IRP
Develop IRTs
Test an IRP
Manage Responses to Information Security Incidents
Perform an Information Security Incident Investigation
Conduct Post-Incident Reviews
Appendix A: ISACA® CISM® Certification Process
|
After completing this course, students will know how to:
- Establish and maintain a framework to provide assurance that information
security strategies are aligned with business objectives and consistent with
applicable laws and
regulations.
- Identify and manage information security risks to achieve business objectives.
- Create a program to implement the information security strategy.
- Implement an information security program.
- Oversee and direct information security activities to execute the information
security program.
- Plan, develop, and manage capabilities to detect, respond to, and recover from
information security incidents.
|
Prerequisites
Students taking this course should have professional experience in information
security in at least one of the following areas: Information security
governance, Information risk management, Information security program
development, Information security program management, Incident management and
response.
|
|
|
|
|
|
|
|