The CISM (Certified Information Security Manager) is one of the most-in demand certifications for information security professionals worldwide. It has been developed and maintained by ISACA at the highest level of quality to meet the ANSI standard 17024 of 2012, a very strict standard that sets a very high bar for the training and certifying of professionals. Shared with the ISO, the 17024 ensures that the CISM is recognized and accepted by the security profession, commercial employers, and government agencies worldwide.
This learning path lays the foundation for your studies towards the CISM certification, before taking our ‘CISM Domains’ Learning Path (to be released soon!), but even if you’re not interested in taking the exam, you will obtain a comprehensive understanding of information security that will ultimately be useful for you and your organization.
We begin with an introduction to the CISM: background information about the certification, how you will be assessed, how the exams are structured and carried out, the requirements of the exam, and recommendations for passing. We then move on to look at security topics themselves.
This learning path covers risk appetite, tolerance, and capacity, cost considerations for managing risk, risk analysis and risk management frameworks, controlling and monitoring security threats, and risk management strategies and metrics.
We’ll also take a look at business continuity and disaster recovery method and strategies and look at how we can test their efficacy within an organization. You’ll learn about cybersecurity and how to keep your cloud infrastructure safe.