15% Discount Available | Enrolment Deadline 31st October

ISACA Certified Information Security Manager® (CISM®)
One of Firebrand’s most in-demand courses, this accelerated 4-day Certified Information Security Manager Certification® course (CISM®) equips you to design, manage, and oversee enterprise-level security systems with confidence. You’ll gain the expertise to assess risks, implement governance, and align security with business objectives. Become competent, confident, and certified in days.
Learn your way
Choose between in-person or online
Award winning
A “Top 20 IT Training Company of the Year”
Certified fast
You’ll be trained in record time
Study with the best
We’ve trained over 135,000 professionals

What you’ll learn
Through Firebrand's unique Lecture | Lab | Review method, you'll go through the four ISACA CISM Domains and retain information faster.
You will learn all about:
Information Security Governance
Information Risk Management and Compliance
Certified Information Security Program Development and Management
Information Security Incident Management
Curriculum
This in-depth certification course helps you become an expert across the four CISM Domains:
1. Information Security Governance (24%)
2. Information Risk Management and Compliance (33%)
3. Information Security Program Development and Management (25%)
4. Information Security Incident Management (18%)
Prerequisites
There are no formal prerequisites for attending the CISM course and sitting the exam. In fact, this is a practice accepted and encouraged by ISACA.
Achieving CISM
In order to become CISM certified, you must meet the following requirements:
● Pass the CISM exam
● Adhere to ISACA's Code of Professional Ethics
● Agree to comply with the Continuing Education Policy
● Accumulate enough work experience in the field of information security.
● Submit an Application for CISM Certification within 5 years of passing the exam - see below
CISM prerequisites
The CISM certification is built for information security professionals, managers and other assurance providers. In order to be eligible, you must be able to submit verified evidence of a minimum of five years of information security work experience, with a minimum of three years of information security management work experience in three or more of the job practise analysis areas. The work experience must be gained within the 10-year period preceding the application date for certification or within 5 years from the date of originally passing the exam.
CISM experience requirements
If you have any of the below, you can get 1 to 2 years waivered and will only need to prove 3-4 years of experience.
You can get 2 years waivered if you have:
● ISACA Certified Information Systems Auditor (CISA) in good standing
● ISC2 Certified Information Systems Security Professional (CISSP) in good standing
● Post-graduate degree in information security or a related field (e.g., business administration, information systems, information assurance)
You can get 1 year waivered if you have:
● One full year of information systems management experience
● One full year of general security management experience
● Skill-based security certifications (e.g., SANS or GIAC, Microsoft Certified Solutions Expert (MCSE), CompTIA Security +, Disaster, Recovery Institute Certified Business Continuity Professional (CBCP), ESL IT Security Manager)
● Completion of an information security management program at an institution aligned with the Model Curriculum
The experience substitutions will not satisfy any portion of the 3-year information security management work experience requirement.
Experience Exceptions
Two years as a full-time university instructor teaching the management of information security can be substituted for every 1 year of information security experience.
Exam info
You'll sit the official CISM exam at the Firebrand Training Centre, covered by your Certification Guarantee:
Duration: 4 hours
Number of questions: 150 multiple choice
Languages: English, Chinese Simplified, Japanese, Korean and Spanish
The exam tests knowledge in the following domains:
Domain 1 - Information Security Governance (24%)
Domain 2 - Information Risk Management (30%)
Domain 3 - Information Security Program Development and Management (27%)
Domain 4 - Information Security Incident Management (19%)
Upcoming Courses
Filter courses by learning type:
Sorry, there are currently no dates available for this course. Please submit an enquiry and one of our team will contact you about potential future dates or alternative options.
Sorry, there are currently no dates available for this course. Please submit an enquiry and one of our team will contact you about potential future dates or alternative options.
FAQs
Yes, we do provide courses suitable for beginners. However, Firebrand's accelerated courses aren't easy and it's essential that you are interested and actively pursuing a career in IT.
Traditional training providers usually run their courses from 9am to 5pm. At Firebrand Training we maximise the number of learning hours to minimise the number of training days, so you’ll be back to your job as quickly as possible. You don’t waste time travelling to several courses and finding an exam centre after that.
Firebrand's accelerated courses are constantly reviewed. We ask our delegates for feedback after every course. We are official partners with leading vendors and therefore, we're provided with certification changes and updates, which we can then implement in our course delivery at a very early stage. This feedback is then analysed in view of changes or discrepancies. We will then address the topics mentioned and have a panel of subject matter experts provide us with valuable suggestions for improvement and solutions.
If you need to learn new skills and you want to be able to put them into practice quickly, then Firebrand is the right training company for you.
Our unique accelerated training method means that we are your fastest way to learn. By delivering training for up to 12 hours per day, seven days per week, with exam centres on-site, we ensure that you are trained and certified quicker than anywhere else, having spent less time out of the office away from the day job.
It’s our promise that if you don’t pass your certification exam the first time, you can retrain for free on the same course and delivery mode (Async Online, Live Online, or Classroom) within 12 months of your original course start date. You won’t pay course fees again, only a exam rebooking fee. To qualify, you must: 1. Attend all scheduled training dates 2. Score at least 60% on your first mock exam.