Exam Preparation
CISMCertified Information Security Manager
Rating:
English
Intermediate
FACE 2 FACE
ON SITE TRAINING
LIVE VIRTUAL
TRAINING
COACHING
& MENTORING
SELF-PACED
TRAINING
Select Date
Download Brochure
Course Overview
This CISM exam preparation seminar provides an overview and key points of all domains of the CISM exam. We offer the CISM exam preparation seminar in association with the ISACA Local Chapter.
CISM Prep seminar covers four information security management areas, each further defined through Tasks & Knowledge statements. These areas and statements were approved by the CISM Certification Committee and represent a job practice analysis of the work performed by information security managers as validated by prominent industry leaders, subject matter experts and industry practitioners.
CISM Prep seminar covers four information security management areas, each further defined through Tasks & Knowledge statements. These areas and statements were approved by the CISM Certification Committee and represent a job practice analysis of the work performed by information security managers as validated by prominent industry leaders, subject matter experts and industry practitioners.
Key Takeaways
1
How to design, establish and monitor an Information Security Program.
2
How to measure effectiveness and efficiency of your Information Security.
3
How to obtain management commitment for Information Security.
4
How to create allies for Information Security in your organization.
5
How to pass the CISM exam and get an internationally recognized certificate.
Information Systems Audit and Control Association
ISACA was incorporated in 1969 by a small group of individuals who recognized a need for a centralized source of information and guidance in the growing field of auditing controls for computer systems. Today, ISACA serves 140,000 professionals in 180 countries. As an independent, nonprofit, global association, ISACA engages in the development, adoption and use of globally accepted, industry-leading knowledge and practices for information systems. Previously known as the Information Systems Audit and Control Association, ISACA now goes by its acronym only, to reflect the broad range of IT governance professionals it serves.
Course Outline
Information Security Governance (17%)
Enterprise Governance
•Organizational Culture
•Legal, Regulatory, and Contractual Requirements
•Organizational Structures, Roles, and Responsibilities
Information Security Strategy
•Information Security Strategy Development
•Information Governance Frameworks and Standards
•Strategic Planning (e.g., budgets, resources, business case)
Information Security Risk Management (20%)
Information Security Risk Assessment
•Emerging Risk and Threat Landscape
•Vulnerability and Control Deficiency Analysis
•Risk Assessment and Analysis
Information Security Risk Response
•Risk Treatment / Risk Response Options
•Risk and Control Ownership
•Risk Monitoring and Reporting
Information Security Program (33%)
Information Security Program Development
•Information Security Program Resources (e.g., people, tools, technologies)
•Information Asset Identification and Classification
•Industry Standards and Frameworks for Information Security
•Information Security Policies, Procedures, and Guidelines
•Information Security Program Metrics
Information Security Program Management
•Information Security Control Design and Selection
•Information Security Control Implementation and Integrations
•Information Security Control Testing and Evaluation
•Information Security Awareness and Training
•Management of External Services (e.g., providers, suppliers, third parties, fourth parties)
•Information Security Program Communications and Reporting
Incident Management (30%)
Incident Management Readiness
•Incident Response Plan
•Business Impact Analysis (BIA)
•Business Continuity Plan (BCP)
•Disaster Recovery Plan (DRP)
•Incident Classification/Categorization
•Incident Management Training, Testing, and Evaluation
Incident Management Operations
•Incident Management Tools and Techniques
•Incident Investigation and Evaluation
•Incident Containment Methods
•Incident Response Communications (e.g., reporting, notification, escalation)
•Incident Eradication and Recovery
•Post-incident Review Practices
Who Should Attend?
This highly practical and interactive course has been specifically designed for
CISM exam is designed specifically for Information Security Managers and administrators, or anyone seeking an overall understanding of essential security risks and controls.
FAQ
What language will the course be taught in and what level of English do I need to take part in a LEORON training program?
Most LEORON courses are delivered in English. However, there are some courses offered in Arabic, mainly online. For our in-house courses, sessions can be curated and delivered in any language upon request. In general, the best way to confirm language availability is to check with our Enrollment Managers for the most up-to-date information. Simply click on “Let’s talk on WhatsApp” to chat with us directly.
What formats are the courses offered in?
LEORON delivers training in various formats including face-to-face, live virtual sessions, self-paced learning, in-house delivery as well as online courses.
Are LEORON Public courses certified by an official body/organization?
Yes, most LEORON public courses are accredited by internationally recognized bodies such as CIPD, ATD, PMI, EdEx, and many others—depending on the course.
Who accredits LEORON’s training programs?
LEORON partners with over 20 international bodies such as PMI, CIPD, ATD, EdEx, NASBA, CISI, GARP, HRCI, SHRM, ACCA, ASQ, IIA, ILM, IAC, and others
Are CPD points or PDUs provided?
Yes, learners can earn CPD credits and professional development units (PDUs) including NASBA CPEs, PMI PDUs, CISI, GARP, HRCI, SHRM, and more.
How can I register for a course?
You can register through our website by filling in the inquiry form, or by speaking directly with one of our consultants via WhatsApp or email. Once we confirm your interest, we’ll guide you through the steps.
When is the registration deadline for public courses?
Registration typically closes 14 days before the course start date, with occasional late registrations accepted upon confirmation
What is included in the course fee?
The fee generally covers 5-star venue facilities, training materials, certified instruction, lunches and refreshments, plus certification and membership where applicabl0065
Are there group rates or discounts?
Yes, group bookings and corporate-level discounts are available. Learners are encouraged to reach out to discuss specific arrangements
What support is available with registration?
Enrollment Managers and a Registration Desk assist with the entire process, including deadlines, travel logistics, and course customization. As well as any other special requests you might have. Simply to go your preferred course and click on “Let’s chat on WhatsApp” to do so.
Can I request a bespoke course at my location or within my organization?
Yes, in-house training is fully customizable in terms of curriculum, language, delivery, and timing. You can suggest dates and locations. Simply to go your preferred course and click on “Let’s chat on WhatsApp” in order to address any questions or concerns in this regards.
What is the refund or cancellation policy?
Refund and cancellation policies vary depending on the course type and location. Generally, cancellations made at least 14 days before the course start date may be eligible for a full or partial refund, while cancellations made closer to the course date may incur a fee. For exact terms, please consult your Enrollment Manager or refer to the course confirmation email.
Can I register multiple employees from my company?
Yes. We support group registrations and offer corporate packages for organizations enrolling multiple participants. Our team can help coordinate the logistics for group bookings.
Who should attend these courses?
LEORON caters to a variety of professionals: from those seeking leadership development to project managers, HR specialists, finance professionals, cybersecurity, procurement, Ai enthusiasts and many others.
Do I need prior experience or academic qualifications?
Not always. Many specialized paths, like cybersecurity, accept learners without prior experience. However, some courses (e.g., PMI PDU-based ones) may have recommended prerequisites. Its always better to chat with one of our Enrollment Managers to discuss more. Simply to go your preferred course and click on “Let’s chat on WhatsApp” to do so.
Will I receive a certificate after completing the course?
Yes. Upon full attendance and successful completion, you will receive a certificate of participation or accreditation, depending on the course.
Are meals and refreshments included in face-to-face courses?
Yes. For in-person courses, lunch and coffee breaks are provided daily at the venue.
Can LEORON deliver a course in-house at our organization?
Absolutely. All programs can be delivered privately at your company or virtually for your team, customized to match your internal goals and structure.
Reviews
- Review:IAMM Internal Audit Maturity ModelIn recognition of their dedication and contribution supporting IKEA Saudi Arabia in arranging training programs during 2017 & 2018, looking forward for more development and exciting effort this year. On behalf of IKEA Saudi Arabia, THANK YOU!Dalal Kutbi
- Review:Certified Professional in Quality and Patient SafetyDating back to 2014, Mobily’s “LEORON” experience has grown from a single collaboration to a long-term partnership. We consider “LEORON” Institute as a strategic partner, whose contribution has been nothing but premium in equipping our staff with field-based knowledge and information. Past three years have resulted with an expanded collaboration with superior customer service and support. Best Regards,Turki S. Alsahaan
- Review:Certified Professional in Quality and Patient SafetySince the partnership was signed between BAE Systems Saudi Development & Training and LEORON in 2017, we have been working together to offer the Saudi market a complete portfolio of training solutions benefiting from the wide and extensive experience of both parties. Recognizing the great success of this partnership, we are looking for further collaborations in the future that will position both companies as one of the leading training providers in Saudi Arabia. We thank the LEORON team for their full cooperation and continuing support, and look forward to further success together in the years to come.Emad Alrajih
- Review:Certified Professional in Quality and Patient SafetyWe have been working with LEORON for the past two years and will be working with them again this upcoming year. The programs they delivered were fruitful and exciting and our organization has received positive feedback from the participants. What our organization aims to do is to provide at no cost training for all the private sector employees so that they may benefit from our offered programs in Innovation and Professional development. LEORON has helped us achieve this goal. We look forward to continuing this service and wish them the best of luck. Regards,Nasser M. Al-Subaie
