Certified Information Security Manager® (CISM)
- Course Categorization:
- IT Security
- Course Provider:
- New Horizons Computer Learning Centers
- Learning Method:
- Classroom Learning
Lesson 1: Information Security Governance
- Develop an Information Security Strategy
- Align Information Security Strategy with Corporate Governance
- Identify Legal and Regulatory Requirements
- Justify Investment in Information Security
- Identify Drivers Affecting the Organization
- Obtain Senior Management Commitment to Information Security
- Define Roles and Responsibilities for Information Security
- Establish Reporting and Communication Channels
Lesson 2: Information Risk Management
- Implement an Information Risk Assessment Process
- Determine Information Asset Classification and Ownership
- Conduct Ongoing Threat and Vulnerability Evaluations
- Conduct Periodic BIAs
- Identify and Evaluate Risk Mitigation Strategies
- Integrate Risk Management into Business Life Cycle Processes
- Report Changes in Information Risk
Lesson 3: Information Security Program Development
- Develop Plans to Implement an Information Security Strategy
- Security Technologies and Controls
- Specify Information Security Program Activities
- Coordinate Information Security Programs with Business Assurance Functions
- Identify Resources Needed for Information Security Program Implementation
- Develop Information Security Architectures
- Develop Information Security Policies
- Develop Information Security Awareness, Training, and Education Programs
- Develop Supporting Documentation for Information Security Policies
Lesson 4: Information Security Program Implementation
- Integrate Information Security Requirements into Organizational Processes
- Integrate Information Security Controls into Contracts
- Create Information Security Program Evaluation Metrics
Lesson 5: Information Security Program Management
- Manage Information Security Program Resources
- Enforce Policy and Standards Compliance
- Enforce Contractual Information Security Controls
- Enforce Information Security During Systems Development
- Maintain Information Security Within an Organization
- Provide Information Security Advice and Guidance
- Provide Information Security Awareness and Training
- Analyze the Effectiveness of Information Security Controls
- Resolve Noncompliance Issues
Lesson 6: Incident Management and Response
- Develop an Information Security Incident Response Plan
- Establish an Escalation Process
- Develop a Communication Process
- Integrate an IRP
- Develop IRTs
- Test an IRP
- Manage Responses to Information Security Incidents
- Perform an Information Security Incident Investigation
- Conduct Post-Incident Reviews
- Urbandale, IA - June 4, 2012
- Urbandale, IA - September 10, 2012
- Mechanicsburg, PA - December 17, 2012
- Urbandale, IA - December 17, 2012
People Also Registered For
Certified Ethical Hacker (CEH)
This class will immerse the student into an interactive environment where they will be shown how to scan, test, hack and secure their own systems. Students then learn how intruders escalate...
Certified Information Systems Auditor (CISA)
In this course, students will evaluate organizational policies, procedures, and processes to ensure that an organizations information systems align with its overall business goals and objectives.
Cisco® Configuring BGP on Cisco® Routers (BGP)
This course covers the theory of BGP, configuration of BGP on Cisco IOS routers, detailed troubleshooting information, and hands-on exercises that provide learners with the skills that they need...
Cisco® Implementing Cisco® MPLS v2.3 (MPLS)
An introduction to MPLS concepts, installation, migration, operation, inspection, and troubleshooting will be covered in this 5-day course. An overview of MPLS, MPLS operation, and MPLS VPN...
Fundamentals of Multiprotocol Label Switching (MPLS)
In this course, students will describe the fundamental concepts of MPLS networks and their salient features and components.
CompTIA Security+ Certification (2011 Objectives)
The CompTIA® Security+® (2011 Objectives) course is designed to help you prepare for the SY0-301 exam. Students will implement and monitor security on networks, applications, and operating...
Related Courses
Certified Information Security Systems Professional (CISSP)
This course addresses the essential elements of the 10 domains that comprise a Common Body of Knowledge. It offers a job-related approach to the security process, and provides basic skills...
Certified Ethical Hacker (CEH)
This class will immerse the student into an interactive environment where they will be shown how to scan, test, hack and secure their own systems. Students then learn how intruders escalate...
Computer Hacking Forensics Investigator (CHFI)
This course will provide participants the necessary skills to identify an intruders footprints and to properly gather the necessary evidence to prosecute in the court of law.
The Official (ISC)2® CISSP® CBK® Review Seminar
This course provides a comprehensive discussion of the ten core subject areas fundamental to the understanding of security for CIOs, managers, and engineers. This course covers the ten domains...
EC Council Security Analyst (ECSA)
In this course, Security Professionals learn about advanced methodologies, tools and techniques required to perform comprehensive information security tests and how to design, secure and test...
CompTIA Security+ Certification (2011 Objectives)
The CompTIA® Security+® (2011 Objectives) course is designed to help you prepare for the SY0-301 exam. Students will implement and monitor security on networks, applications, and operating...
CISSP: Certified Information Systems Security Professional
This course prepares student to pass the premier security certification, the Certified Information Systems Security Professional (CISSP®).
Certified Information Security Manager® (CISM)
In this course, students will establish processes to ensure that information security measures align with established business needs.
Certified Information Systems Auditor (CISA)
In this course, students will evaluate organizational policies, procedures, and processes to ensure that an organizations information systems align with its overall business goals and objectives.
