Cyber Security

CISM® Certified Information Security Manager

Acquire the skills and knowledge expected of a world-class information security manager with the best CISM live online training course.

  • Duration 4 Days
  • Fee - Virtual Instructor-Led $3,650 + GST
  • Exam Optional Exam Voucher
  • Fee - Face-to-face Training $4,050 + GST
  • Team Training Get a quote
  • Download Course brochure

Upcoming Course Dates

View all course dates
  • Virtual Instructor-Led 07–10 May 9:00am–5:00pm AEST (GMT +10) Book Now
  • Virtual Instructor-Led 04–07 Jun 9:00am–5:00pm AEST (GMT +10) Book Now

Overview

 

CISM® Certified Information Security Manager

ATO Badge - CISMThe ISACA  Certified Information Security Manager® (CISM) is one of the most important and prestigious InfoSec qualifications in the world today.

CISM defines the core competencies and international standards of performance that information security managers are expected to master. It provides executive management with the assurance that those who have earned their CISM have the experience and knowledge to offer effective security management and advice.

This 4-day CISM training course provides an intense environment in which participants can acquire, thoroughly and properly, the skills and knowledge expected of a world-class information security manager. In the process the course provides outstanding preparation for the CISM exam.

FORMAT: Classroom, Instructor-led, 4 days.

ALC is the first ISACA® Accredited Partner for CISM and CRISC training in Australia.

ISACA Elite Plus accreditation logo

Our Trainers Make the Difference

ALC works only with the best. When it comes to CISM, ALC has exceptional world-class trainers

  • Gary Gaskell

    Gary Gaskell is a highly regarded information and cyber security specialist serving industry and government for 28 years.

    Read full bio
  • Peter Nikitser

    Peter is exceptionally well qualified for this role and brings to bear a career spanning over 30 years in Information Technology, focusing on security even before the World Wide Web became mainstream.

    Read full bio

Learning Outcomes

This course has been independently commissioned with two objectives:

  • To provide an environment in which security professionals can acquire, thoroughly and properly, the skills and knowledge expected of a world class information security manager. Whether or not you intend to sit for the CISM exam, this course is a powerful way to equip yourself with the knowledge of the five core competencies that define the successful information security manager.
  • To maximise your prospects at the CISM exam if you choose to sit it.

Who Should Attend

The CISM designation is for Information Security professionals who have 3-5 years of front-line experience with the security of information. This credential is geared towards Information Security managers and those who have information security management responsibilities.

Prerequisites:

Qualifying for CISM requires a combination of four “e’s”: experience, ethics, education and examination. Specifically, the requirements are:

  • Successful completion of the CISM exam
  • Adherence to a code of professional conduct
  • Commitment to continuing professional education
  • Submission of verified evidence of a minimum of five years of information security work experience, with a minimum of three years of information security management work experience in three or more of the job practice areas. Waivers for general information security work experience are available, if certain education or certification requirements are met

For detailed information on if you have the relevant full-time work experience* in the CISM Job Practice Areas, please visit the following page: ISACA – “How to Become CISM Certified”.

Course Contents

The Certified Information Security Manager training course is structured to follow the four Job Practice Areas as set out in the current CISM Review Manual. The course comprehensively covers each of the core competencies and associated task and knowledge statements, thereby ensuring thorough preparation for the CISM exam. The fundamental thrust of the examination is on understanding the concepts, not on memorising facts.  As a result, the course will be presented in an interactive manner to ensure the underlying concepts are understood and examination questions can be analysed properly to achieve the correct answer.

1. Information Security Governance and Strategy

  • Effective Information Security Governance
  • Key Information Security Concepts and Issues
  • The IS Manager
  • Scope and Charter of Information Security Governance
  • IS Governance Metrics
  • Developing an IS Strategy – Common Pitfalls
  • IS Strategy Objectives
  • Determining Current State of Security
  • Strategy Resources
  • Strategy Constraints
  • Action Plan Immediate Goals
  • Action Plan Intermediate Goals

Practice Questions; Review of Practice Questions;
Reference Materials and Glossary

2. Information Security Risk Management and Compliance

  • Effective Information Security Risk Management
  • Integration into Life Cycle Processes
  • Implementing Risk Management
  • Risk Identification and Analysis Methods
  • Mitigation Strategies and Prioritisation
  • Reporting Changes to Management

Practice Questions; Review of Practice Questions;
Reference Materials and Glossary

3. Information Security Program Development and Management

  • Planning
  • Security Baselines
  • Business Processes
  • Infrastructure
  • Malicious Code (Malware)
  • Life Cycles
  • Impact on End Users
  • Accountability
  • Security Metrics
  • Managing Internal and External Resources

Practice Questions; Review of Practice Questions;
Reference Materials and Glossary

4. Information Security Incident Management

  • Implementing Effective Information Security Management
  • Security Controls and Policies
  • Standards and Procedures
  • Trading Partners and Service Providers
  • Security Metrics and Monitoring
  • The Change Management Process
  • Vulnerability Assessments
  • Due Diligence
  • Resolution of Non-Compliance Issues
  • Culture, Behavior and Security Awareness

Practice Questions; Review of Practice Questions;
Reference Materials and Glossary

 

  • Gary is a great Trainer and offers insightful comparisons to real world examples. I loved how you let the discussion run, and get people talking - it is always the difference.

    Live Virtual Training | 2022

Testimonial

CISM

read more

Fees

CISM Certified Information Security Manager Training Course (4 days)

Live Virtual Training Fees:

  • CISM 4-Day Course Alone – $3,650 + gst
  • CISM Exam Voucher (Optional) – $1,060 + gst
  • CISM Course & Exam – $4,710 + gst

Fees include:

  • 4 days course presentation with Tier 1 trainer
  • Comprehensive course workbook quality printed in colour
  • Official ISACA CISM Review Manual
  • 12-month online access to Official ISACA CISM Review Questions, Answers and Explanations Manual

Face-to-Face Training Fees:

  • CISM 4-Day Course Alone – $4,050 + gst
  • CISM Exam Voucher (Optional) – $1,060 + gst
  • CISM Course & Exam – $5,110 + gst

Fees include:

  • 4 days course presentation with Tier 1 trainer at a CBD Venue
  • Catering – Morning Tea, Lunch & Afternoon Tea
  • Comprehensive course workbook quality printed in colour
  • Official ISACA CISM Review Manual
  • 12-month online access to Official ISACA CISM Review Questions, Answers and Explanations Manual
Exam Registration

You can book your exam with ALC or direct with ISACA (see above).

If you wish to book the exam with ALC and have both course and exam on the one invoice, please indicate “CISM Course + Exam” in the COMMENTS field when making your online registration and select the PAY BY INVOICE option (do not select the Pay By Card option). We will contact you with full details of what is involved.

The CISM exam is set, conducted and marked by ISACA.  All exams will be conducted online via computer-based testing centres around the world.

For more information please refer to the exams page on the ISACA website

Prerequisites:

Qualifying for CISM requires a combination of four “e’s”: experience, ethics, education and examination. Specifically, the requirements are:

  • Successful completion of the CISM exam
  • Adherence to a code of professional conduct
  • Commitment to continuing professional education
  • Submission of verified evidence of a minimum of five years of information security work experience, with a minimum of three years of information security management work experience in three or more of the job practice areas. Waivers for general information security work experience are available, if certain education or certification requirements are met

For detailed information on if you have the relevant full-time work experience* in the CISM Job Practice Areas, please visit the following page: ISACA – “How to Become CISM Certified”.

The CISM certification program recognises the achievement of the CISSP credential as a baseline representation that an individual has gained general information security skill and knowledge, just as it does with individuals who have earned a CISA. As such, CISSPs receive a two-year general information security experience waiver. However, CISSPs will not be eligible to earn a CISM unless they have the required experience and can demonstrate proficiency and practical knowledge in the role of an information security manager.

Holders of other, more specialised credentials, such as the SANS Global Information Assurance Certification (GIAC), Microsoft Security Systems Engineer (MCSE), CompTIA Security + Credential and the Disaster Recovery Institute Certified Business Continuity Professional (CBCP) also can receive a one-year general information security experience waiver.