Certified Information Security Manager® (CISM)

Price
Net €
VAT €

Price
Price on Request

Duration
4 days

For companies and job seekers:
this course is 100% fundable!

Location

Course Language
English

Training Solutions
Online Live

Request a consultation Add to favorites Print as PDF

Strategic information security is rapidly gaining importance. Structured approaches, clear governance, and confident handling of risks, compliance, and modern technologies such as AI and automation are in demand.

Key topics

Management of information security programs.
Governance, risk, and compliance models.
Protection of critical business processes and data.
Integration of AI risks and automated controls.
Measuring security, maturity, and effectiveness.

Prerequisites
Basic knowledge of IT, information security, or risk management, as well as an understanding of organizational contexts.

Target group
Specialists and managers from IT, security, governance, risk, and compliance with responsibility for security strategies and decision-making processes.

The knowledge imparted strengthens the ability to manage information security holistically and anchor it sustainably in the company – in a practical, structured manner that is compatible with current technological developments.

Print as PDF

Course content

Information security management

Corporate management
Organizational culture
Legal, regulatory, and contractual requirements
Organizational structures, roles, and responsibilities
Information security strategy
Development of an information security strategy
Frameworks and standards for information management
Strategic planning (e.g., budgets, resources, business case)

Information security risk management

Assessment of information security risks
Identification of new risks and threats
Analysis of vulnerabilities and control deficiencies
Conducting risk assessment and analysis
Responding to information security risks
Options for handling and responding to risks
Establishing responsibilities for risks and controls
Monitoring and reporting of risks

Information security program

Development of information security programs
Provision of resources (personnel, tools, technologies)
Identification and classification of valuable information
Application of security standards and frameworks
Establishment of guidelines and specifications
Use of metrics to measure success
Administration of the information security program
Design and selection of security controls
Implementation and integration of security measures
Verifying the effectiveness of security controls
Conducting training and awareness programs
Management of external service providers and partners
Communication and reporting on progress

Emergency management

Incident response plan
Business impact analysis (BIA)
Business continuity plan (BCP)
Disaster recovery plan (DRP)
Incident classification and categorization
Incident management training, testing, and evaluation
Incident management operations
Incident management tools and techniques
Investigation and assessment of incidents
Methods for Containing Incidents
Communication during incidents (e.g., reporting, notification, escalation)
Incident resolution and recovery
Post-incident review practices

Your training will be 100% funded

Our funding schemes are available exclusively to participants who live or work in Germany. Funding is not available outside Germany.

For career starters, job seekers, career changers, startups, experienced professionals, those looking to advance their careers, specialists, etc.

The QCG program for everyone in the company

Further information

The education voucher for all job seekers

Further information

Frequently asked questions

What is Certified Information Security Manager® (CISM)?

CISM is an internationally recognized certification for information security management. The focus is on strategy, risk management, governance, and security processes.

Who is CISM particularly suitable for?

Suitable for specialists and managers who are responsible for information security, IT risks, compliance, and security strategies within the company.

What content does CISM cover?

Topics covered include information security governance, risk management, security program development, and incident and crisis management.

What are the requirements for CISM certification?

Several years of professional experience in the field of information security are required. Certain degrees or certificates may substitute for some of the experience.

Why is CISM so internationally recognized?