CISM® – Certified Information Security Manager
Strategic Information Security Governance, Risk, and Leadership
(includes training and materials)
Training Delivery Mode:
- Physical Classroom
- Live Virtual Training
Course Overview
The Certified Information Security Manager (CISM®) is a globally recognised certification developed by ISACA for professionals responsible for designing, managing, and governing enterprise information security programmes.
Unlike technical security certifications, CISM focuses on the strategic and managerial aspects of information security, enabling professionals to align security initiatives with business objectives, manage risk effectively, and lead incident response and security operations at an organisational level.
This course is fully aligned with the CISM Exam Content Outline and prepares participants for leadership roles in information security management, governance, and risk.
Course Module
Domain 1: Information Security Governance
- Enterprise Governance
- Information Security Strategy
Domain 2: Information Security Risk Management
- Information Security Risk Assessment
- Information Security Risk Response
Domain 3: Information Security Program
- Information Security Program Development
- Information Security Program Management
Domain 4: Incident Management
- Incident Management Readiness
- Incident Management Operations
What You Will Learn
By the end of this course, participants will be able to:
- Establish and manage an enterprise information security governance framework
- Develop and align information security strategy with business goals
- Identify, assess, and manage information security risks
- Design and manage an effective information security programme
- Lead incident management readiness and response activities
- Communicate security risk and performance to executive stakeholders
- Prepare confidently for the CISM certification examination
Practical and Experiential Learning
This course is strategic, scenario-based, and leadership-focused, featuring:
- Real-world security governance case studies
- Risk management and decision-making simulations
- Incident response tabletop exercises
- Executive-level security reporting scenarios
- Exam-aligned practice questions
Participants gain management-ready security expertise, not just certification knowledge.
Who This Course Is For
This course is ideal for professionals working in or aspiring to roles involving IT risk and control, including:
- IT Risk Managers and Analysts
- Enterprise Risk Management (ERM) Professionals
- IT and Business Auditors
- Governance, Risk, and Compliance (GRC) Professionals
- Information Security Managers
- Technology and Digital Risk Consultants
- Professionals preparing for the CRISC certification exam
Prior experience in IT, risk, audit, or governance is recommended.
Career Benefits
After completing this course, participants can pursue senior roles such as:
- Information Security Manager
- Cybersecurity Manager
- Chief Information Security Officer (CISO)
- Risk and Compliance Manager
- Information Security Consultant
- IT Governance and Assurance Manager
Benefits include:
- Globally respected ISACA credential
- Recognition as a security leadership professional
- Strong demand across regulated industries
- Pathway to executive cybersecurity leadership
Tools, Platforms, and Standards Covered
- ISACA CISM Framework
- COBIT® (Governance of Enterprise IT)
- Information Security Governance Models
- Enterprise Risk Management (ERM)
- Incident Management and Response Frameworks
Certification
Participants will be prepared for:
CISM® – Certified Information Security Manager
Awarding Body: ISACA
A Certificate of Completion will also be issued by SCILS Management Centre.