Site Powered by

Information Security Manager
Build skills equivalent to ISACA's CISM program
  • Credit Hours: 3 Days

  • Format: Virtual Classroom - Instructor-led, Online

  • Professional Certificate: CISM

  • Recommended for: Experienced information security managers, IT consultants, network administrators, and security engineers

The Information Security Manager course prepares students for employment in the Informational Technology industry. This course was developed by the Information Systems Audit and Control Association (ISACA) for experience information security management professionals who understand the programs relationship with overall business goals. Throughout this theory-based training, students will gain the knowledge and understanding of information security governance, risk management and compliance, program development and management, and security incident management. The programs curriculum satisfies the requirements needed to obtain employment and/or career advancement. 

This program prepares students for employment as a Network Systems Administrator. According to the Bureau of Labor Statistics, employment change between 2010 and 2020 will grow by 12% greater than the annual average.

What You'll Learn

  • Information Security Governance
  • Information Risk Management and Compliance
  • Information Security Program Development and Management
  • Information Security Incident Management

Who Needs to Attend

Experienced information security managers and those who have information security management responsibilities, including IT consultants, auditors, managers, security policy writers, privacy officers, information security officers, network administrators, security device administrators, and security engineers.


Five years of experience with audit, IT systems, and security of information systems; systems administration experience; familiarity with TCP/IP; and an understanding of UNIX, Linux, and Windows. This advanced course also requires intermediate-level knowledge of the security concepts covered in our Security+ Prep Course course.

Course Outline

1. CISM Overview

2. Information Security Governance

  • Asset Identification
  • Risk Assessment
  • Vulnerability Assessments
  • Asset Management

3. Information Risk Management

  • Asset Classification and Ownership
  • Structured Information Risk Assessment Process
  • Business Impact Assessments
  • Change Management

4. Information Security Program Development

  • Information Security Strategy
  • Program Alignment of Other Assurance Functions
  • Development of Information Security Architectures
  • Security Awareness, Training, and Education
  • Communication and Maintenance of Standards, Procedures, and Other Documentation
  • Change Control
  • Lifecycle Activities
  • Security Metrics

5. Information Security Program Management

  • Security Program Management Overview
  • Planning
  • Security Baselines
  • Business Processes
  • Security Program Infrastructure
  • Lifecycle Methodologies
  • Security Impact on Users
  • Accountability
  • Security Metrics
  • Managing Resources

6. Incident Management and Response

  • Response Management Overview
  • Importance of Response Management
  • Performing a Business Impact Analysis
  • Developing Response and Recovery Plans
  • The Incident Response Process
  • Implementing Response and Recovery Plans
  • Response Documentation
  • Post-Event Reviews


Purchase this Course


Become versed as an Information Security Manager in 3 days