|
CISM® Certified Information Security Manager
The CISM® (Certified Information Security Manager) certification is the primary certification for information security professionals who oversee, manage, design and/or assess an enterprise's information security.
In comparison to other certifications, CISM covers a wide body of knowledge and is recommended by the sponsoring organization, ISACA, that those sitting for the CISM certification attend a CISM training session.
For those subject to DoD 8570.01-M "Information Assurance Workforce Improvement Program," ISACA's Certified Information Systems Auditor (CISA) and Certified Information Security Manager (CISM) certifications are among those approved for DoD information assurance (IA) professionals.
Security University's offers an intensive5 day boot camp CISM reviewfor those wishing to prepare for the CISM exam.Our bootcamp is specifically designed to cover the new material that is on the 2010 exams. Each student progresses through a number of skill checks to ensure knowledge is retained. The CISM instructors are certified with the CISM designation, and serve on local ISACA boards.
|
Exam Center Locations: June 2010
Unless otherwise noted, the exam will take place on 12 June 2010.
|
Security University's CISM course...
| Class Price: |
$1,995 |
| Time: |
9am - 5pm |
| Location: |
May 31-June 4 check schedule |
| Prerequisites: |
none |
| CPE Credits: |
40 CPE's |
| Instructor: |
Mr. Krag Brotby
Krag Brotby has more than twenty five years of experience in the area of enterprise computer security architecture, governance, risk and metrics and is certified as a CISM and CGEIT. Extensive experience includes intensive involvement in governance, metrics and current and emerging enterprise security architectures. He holds a foundation patent for digital rights management and has published numerous technical and IT security related articles and books. Krag is the recipient of the 2009 ISACA John W. Lainhart IV Common Body of Knowledge Award.
Krag has served as principal author and editor of the ISACA Certified Information Security Manager Review Manual since 2005, and as the researcher and author of the widely circulated Information Security Governance, A Guide for Directors and Executive Management, 2nd ed., and the Information Security Governance : Guidance for Information Security Managers as well as a new approach to Information Security management metrics to be published in '09. He is the author of Information Security Management Metrics; Auerbach '09 and Information Security Governance; a practical development and implementation approach; Wiley '09.
He has served on the ISACA Security Practice Development Committee, appointed to the Test Enhancement Committee responsible for exam question development, and to a new committee developing a systems approach to information security called the Business Model for Information Security. He is a member of the California High Tech Task Force Steering Committee, an advisory board for law enforcement.
|
This 5-day course is structured to follow the CISM review manual and examination flow. A full day is provided for each of the core competencies and associated task and knowledge statements, thereby ensuring a detailed and thorough coverage of all areas that will be tested The fundamental thrust of examination is on understanding the concepts and critical thinking, not on memorizing facts. As a result, the course will be presented in an interactive manner to ensure the underlying concepts are understood and examination questions can be analyzed properly to achieve the best answer.
1 Information Security Governance & Strategy
Information Security Governance Overview
Effective Information Security Governance
Information Security Concepts
Information Security Manager
Scope and Charter of IS Governance
Information Security Governance Metrics
Information Security Strategy Overview
Developing an Information Security Strategy
Information Security Strategy Objectives
Determining Current State of Security
Information Security Strategy
Strategy Resources
Strategy Constraints
Action Plan for Strategy
Implementing Security Governance
Action Plan Intermediate Goals
2 Risk Management
Risk Management Overview
Risk Management Strategy
Effective IS Risk Management
IS Risk Management Concepts
Implementing Risk Management
Risk Assessment and Analysis Methodologies
Risk Assessment
Controls and Countermeasures
Information Resource Valuation
Recovery Time Objectives
Integration With Life Cycle Processes
Security Control Baselines
Risk Monitoring and Communication
Training and Awareness
Documentation
3 Information Security Program Development
IS Program Development Overview
Effective IS Program Development
IS Program Development Concepts
Information Security Manager
Scope and Charter of IS Program Development
IS Program Development Objectives
Defining an IS Program Development Road Map
IS Program Resources
Implementing an IS Program
Information Infrastructure and Architecture
Physical and Environmental Controls
IS Program Integration
IS Program Development Metric
4 Information Security Program Management
IS Management Overview
Organizational Roles and Responsibilities
The IS Management Framework
Measuring IS Management Performance
Common IS Management Challenges
Determining the State of IS Management
IS Management Resources
Other IS Management Considerations
Implementing IS Management
5 Incident Management and Response
Incident Management and Response Overview
Incident Management Concepts
Scope and Charter of Incident Management
Information Security Manager
Incident Management Objectives
Incident Management Metrics and Indicators
Defining Incident Management Procedures
Incident Management Resources
Current State of Incident Response Capability
Developing an Incident Response Plan
Developing Response and Recovery Plans
Testing Response and Recovery Plans
Executing Response and Recovery Plans
Post event Reviews
Review Questions, Review of Practice Questions,Reference Materials and Glossary.
What's Included:
- Access to 50+ online modules totaling 54 hours of training.
- Over 1000 CISM Exam practice questions
- Lecture and Text books.
Required Prerequisites:
- Workstation running any Operating System with a web browser
- High Speed Internet Connection
|
