Opleiding: CISM Preparation Course

Intensive CISM exam training with officially ISACA-accredited trainers

Establish and maintain an information security governance framework and supporting processes;

Manage information risk to an acceptable level based on risk appetite;

Develop and maintain an information security program;

Plan, establish and manage the capability to detect, investigate, respond to and recover from information security incidents.

The language of instruction for this course is English.

CISM® Preparation Course – Intensive CISM training

Our CISM Preparation Course will help you master the skills you need to pass the ISACA Certified Information Security Manager certification exam and earn your CISM qualification. In this intensive five-day CISM training, you will learn how to manage, design, oversee and assess enterprise information security. You will cover all domains of the CISM certification exam with expert trainers who are active in cyber security risk management
and incident management and can help you with practical insights. To fully prepare for your CISM certification
exam and future career, the course will challenge you to practice exam-style questions as well as apply your
knowledge in practical contexts.

The Security Academy is an Accredited ISACA Training Partner, which means you will get access to official ISACA CISM® courseware.

Completing this unique CISM Preparation Course, you will gain in-depth understanding of the ISACA CISM domains (Information Security Governance, Information Security Risk Management, Information Security Program and Incident Management). At the same time, you will benefit from the guidance of real-world (cyber) security management experts who are up to date with current practices that will help you excel at your CISM certification exam as well as your career in an information security management role.

Is this CISM Preparation Course for you?

This CISM Preparation Course is intended for information or IT security professionals who aspire to manage information security programs and advance their career to a senior information security management role. Since the ISACA CISM certification is particularly popular amongst professionals with an IT or information security background, our CISM exam training is typically attended by IT (security) managers, information security officers, security consultants, security program managers and IT auditors.

Prerequisites to joining this CISM Preparation Course

This CISM Preparation Course is designed to prepare you for the ISACA CISM certification exam. To make the most of the training, you need to have a good understanding of fundamental information security management and technical IT security principles.

Are you new to information security management? Or would you just feel more comfortable taking an entry-level information security management training before moving on to CISM? Learn all the essentials in three days in our  Information Security Foundation course.

Unsure if you know enough of IT security to follow CISM®? Take three days to cover the basics in our IT Security Foundation course.

What is included in this CISM Preparation Course?

Before the training starts, you will receive your official ISACA CISM® courseware through our student portal. The course materials are in English. The language of instruction is either English or Dutch, depending on the participants..

Your CISM training package includes:

• Official ISACA CISM® courseware
• Additional course materials (slides, use cases, exam questions)
• Expert trainer who is active in security risk management and incident management
• Practice exam, evaluation and discussion on the last day

This CISM Preparation Course is intended for information or IT security professionals who aspire to manage information security programs and advance their career to a senior information security management role. Since the ISACA CISM certification is particularly popular amongst professionals with an IT or information security background, our CISM exam training is typically attended by IT (security) managers, information security officers, security consultants, security program managers and IT auditors.

CISM Preparation Course ModulesModule 1: Information Security Governance

‘Establish and maintain an information security governance framework and supporting processes to ensure that the information security strategy is aligned with organizational goals and objectives.’

This module covers the organization and management of the information security function within an organization. This includes describing information security goals (in measurable terms), determining roles and responsibilities, describing the current and desired situation, performing a gap analysis, translating your findings to a plan of action… and getting to work!

Module 2: Information Risk Management and Compliance

‘Manage information risk to an acceptable level based on risk appetite to meet organizational goals and objectives.’

This module provides insights into formulating a risk management strategy, identifying associated roles and responsibilities, determining the risk management framework, performing risk gap analysis, assessing and treatingrisks, integrating risk management with life cycle processes and working with baseline measures, as well as risk monitoring and communication.

Module 3: Information Security Program Development

‘Develop an information security program that identifies, manages and protects the organization’s assets while aligning to information security strategy and business goals, thereby supporting an effective security posture.’

In this module, you will start translating the action plan made in Module 1 into an information security program. You will determine program objectives and program scope, perform a gap analysis, and outline the current and desired situation. Based on this, you will develop an information security program, paying attention to information security architectures, management tasks, operational aspects of program implementation, third party influences, and the types of measures that can be implemented. You will also grasp how to establish metrics to evaluate the effectiveness of an information security program.

Module 4: Managing an Information Security Program

‘In Module 3 you covered Information Security Program Development. In this module you will learn how to manage the security program you just developed.’

Module 5: Incident Management and Response

‘Plan, establish and manage the capability to detect, investigate, respond to and recover from information security incidents to minimize business impact.’

And what if the unexpected happens? What if an incident turns into a disaster?  In this module, you will learn how to develop incident response goals and procedures and how to establish a competent and trained incident response team. You will explore how to develop and implement incident response plans, disaster recovery plans and procedures. Plans need to be extensively tested and integrated with the organization’s disaster recovery (DR) and business continuity plan, so you will also get a good grounding in this area. Finally, you will learn what to do after an incident: how to conduct reviews to identify the causes, how to define corrective actions, and how to re-assess relevant risks.

Practice Exam

On your last course day, you will take an extensive CISM practice exam, so that you can judge for yourself to what extent you are ready for the official ISACA CISM certification exam and to which domains you should pay more attention. After taking the practice exam, you will have the opportunity to discuss answers or potential issues with your trainer and the group. 

Completing this unique CISM Preparation Course, you will gain in-depth understanding of the ISACA CISM domains (Information Security Governance, Information Security Risk Management, Information Security Program and Incident Management). At the same time, you will benefit from the guidance of real-world (cyber) security management experts who are up to date with current practices that will help you excel at your CISM certification exam as well as your career in an information security management role.

What is included in this CISM Preparation Course?

Before the training starts, you will receive your official ISACA CISM® courseware through our student portal. The course materials are in English. The language of instruction is either English or Dutch, depending on the participants..

Your CISM training package includes:

• Official ISACA CISM® courseware
• Additional course materials (slides, use cases, exam questions)
• Expert trainer who is active in security risk management and incident management
• Practice exam, evaluation and discussion on the last day

• 5 course days
• 40-60 hours of self-study
• One CPE credit per hour (including self-study)
• English spoken online classroom

For follow-up options, please visit our website.