CISM, Certified IS Manager, certification preparation

  • This course allows you to prepare for the CISM®, Certified Information Security Manager exam, covering the entire CBK (Common Body of Knowledge) course, a common core of security knowledge defined by ISACA®, Information Systems Audit and Control Association. CISM certification is recognized around the world.

IS directors, auditors, business continuity or security managers or those for whom mastery of IS constitutes a fundamental element in achieving their objectives.

Basic knowledge in the operation of information systems. Understanding of English is necessary because the documentation provided is in English (training is given in French).

5 Days.

Practical exercises and demonstrations will allow you to put into practice the theoretical concepts presented.

For “Distance” training, they are carried out with a Teams or Zoom type videoconferencing tool depending on the case, allowing the trainer to adapt his teaching methods.
Find on our website all the details about distance sessions or virtual classes.

  • Domain 1: information security governance
  • Alignment of information security strategy with corporate and management strategy.
  • Development of the information security policy.
  • Senior management engagement and support for IT security across the enterprise.
  • Definition of roles and responsibilities in the governance of information security.

Practical work
Questions from previous CISM sessions (or comparable exams).

  • Domain 2: information risk management and compliance
  • Development of a systematic and analytical approach, as well as the continuous process of risk management.
  • Identification, analysis and assessment of risks.
  • Definition of risk treatment strategies.
  • Communication of risk management.

Practical work
Questions from previous CISM sessions (or comparable exams).

  • Domain 3: implementation, information security program management
  • Information security architecture.
  • Methods for defining required security measures.
  • Management of information security contracts and prerequisites.
  • Metrics and evaluation of information security performance.

Practical work
Questions from previous CISM sessions (or comparable exams).

  • Domain 4: management of information security incidents
  • Components of a security incident management plan.
  • Concepts and practices in security incident management.
  • Classification method.
  • Notification and escalation process.
  • Techniques for detecting and analyzing incidents.

Practical work
Questions from previous CISM sessions (or comparable exams).

  • Mock exam and certification procedure
  • Partial simulation of the exam (mock exam) carried out at the end of the training.
  • Registration to be done on the site www.isaca.org, the closing of registrations is made 2 months before the date of the exam.
  • Exam procedure: 4 hours of MCQ with 200 questions (exam available only in English).