ISACA Certified Information Security Manager® (CISM®)
One of Firebrand’s most in-demand courses, this accelerated 4-day Certified Information Security Manager Certification® course (CISM®) equips you to design, manage, and oversee enterprise-level security systems with confidence. You’ll gain the expertise to assess risks, implement governance, and align security with business objectives. Become competent, confident, and certified in days.
Learn your way
Choose between in-person or online
Award winning
A “Top 20 IT Training Company of the Year”
Certified fast
You’ll be trained in record time
Study with the best
We’ve trained over 135,000 professionals
Learn Online Across Canada or In Person In Ontario
CAD$3900
Duration: 4 days
Code: cism
Private Cohort pricing available
What you’ll learn
Through Firebrand's unique Lecture | Lab | Review method, you'll go through the four ISACA CISM Domains and retain information faster.
You will learn all about:
Information Security Governance
Information Risk Management and Compliance
Certified Information Security Program Development and Management
Information Security Incident Management
Curriculum
This in-depth certification course helps you become an expert across the four CISM Domains:
1. Information Security Governance (24%)
2. Information Risk Management and Compliance (33%)
3. Information Security Program Development and Management (25%)
4. Information Security Incident Management (18%)
Prerequisites
There are no formal prerequisites for attending the CISM course and sitting the exam. In fact, this is a practice accepted and encouraged by ISACA.
Achieving CISM
In order to become CISM certified, you must meet the following requirements:
● Pass the CISM exam
● Adhere to ISACA's Code of Professional Ethics
● Agree to comply with the Continuing Education Policy
● Accumulate enough work experience in the field of information security.
● Submit an Application for CISM Certification within 5 years of passing the exam - see below
CISM prerequisites
The CISM certification is built for information security professionals, managers and other assurance providers. In order to be eligible, you must be able to submit verified evidence of a minimum of five years of information security work experience, with a minimum of three years of information security management work experience in three or more of the job practise analysis areas. The work experience must be gained within the 10-year period preceding the application date for certification or within 5 years from the date of originally passing the exam.
CISM experience requirements
If you have any of the below, you can get 1 to 2 years waivered and will only need to prove 3-4 years of experience.
You can get 2 years waivered if you have:
● ISACA Certified Information Systems Auditor (CISA) in good standing
● ISC2 Certified Information Systems Security Professional (CISSP) in good standing
● Post-graduate degree in information security or a related field (e.g., business administration, information systems, information assurance)
You can get 1 year waivered if you have:
● One full year of information systems management experience
● One full year of general security management experience
● Skill-based security certifications (e.g., SANS or GIAC, Microsoft Certified Solutions Expert (MCSE), CompTIA Security +, Disaster, Recovery Institute Certified Business Continuity Professional (CBCP), ESL IT Security Manager)
● Completion of an information security management program at an institution aligned with the Model Curriculum
The experience substitutions will not satisfy any portion of the 3-year information security management work experience requirement.
Experience Exceptions
Two years as a full-time university instructor teaching the management of information security can be substituted for every 1 year of information security experience.
Exam info
The course fee includes a voucher for the official ISACA CISM exam.
Duration: 4 hours
Number of questions: 150 multiple choice
Languages: English, Chinese Simplified, Japanese, Korean and Spanish
The exam tests knowledge in the following domains:
Domain 1 - Information Security Governance (24%)
Domain 2 - Information Risk Management (30%)
Domain 3 - Information Security Program Development and Management (27%)
Domain 4 - Information Security Incident Management (19%)
FAQs
Yes, we do provide courses suitable for beginners. However, Firebrand's accelerated courses aren't easy and it's essential that you are interested and actively pursuing a career in IT.
Traditional training providers usually run their courses from 9am to 5pm. At Firebrand Training we maximise the number of learning hours to minimise the number of training days, so you’ll be back to your job as quickly as possible.
Firebrand's accelerated courses are constantly reviewed. We ask our delegates for feedback after every course. We are official partners with leading vendors and therefore, we're provided with certification changes and updates, which we can then implement in our course delivery at a very early stage. This feedback is then analysed in view of changes or discrepancies. We will then address the topics mentioned and have a panel of subject matter experts provide us with valuable suggestions for improvement and solutions.
If you need to learn new skills and you want to be able to put them into practice quickly, then Firebrand is the right training company for you.
Our unique accelerated training method means that we are your fastest way to learn.