Certified Information Security Manager (CISM)
The ’CISM’ training will allow participants to gain a wide set of knowledge to manage risk, handle incidents, and support enterprise information security programs. You will have all required skills to face the most difficult problems, which include information security strategy development, selecting and appropriate risk governance frameworks, and choosing the right organizational structure and roles to establish incident management processes.
Course Information
Price: $2,755.00
Duration: 5 days
Certification: None
Exam:
Learning Credits:
Continuing Education Credits:
Check out our full list of training locations and learning formats. Please note that the location you choose may be an Established HD-ILT location with a virtual live instructor.
Train face-to-face with the live instructor.
Access to on-demand training content anytime, anywhere.
Attend the live class from the comfort of your home or office.
Interact with a live, remote instructor from a specialized, HD-equipped classroom near you. An SLI sales rep will confirm location availability prior to registration confirmation.
All Sunset Learning dates are guaranteed to run!
Register
- Please Contact Us to request a class date or speak with someone about scheduling options.
Prerequisites:
Target Audience:
Designed for those who manage, design, oversee, and assess an enterprise’s information security function.
Course Objectives:
Upon completion of the CISM exam preparation course, delegates will:
- Ensure that an enterprise’s information is protected
- Have the expertise needed to reduce risk and protect the enterprise
- Design, develop, implement, and manage an effective security management program
- Establish and maintain an IT governance framework aligned with business objectives
- Identify and manage information security risks
- Have an understanding of the format and structure of the CISM certification exam
- Have knowledge of the various topics and technical areas covered by the exam
- Practice with specific strategies, tips, and techniques for taking and passing the exam
Course Outline:
- Explain how a Security Operations Center (SOC) operates and describe the different types of services that are performed from a Tier 1 SOC analyst’s perspective
- Explain Network Security Monitoring (NSM) tools that are available to the network security analyst
- Explain the data that is available to the network security analyst
- Describe the basic concepts and uses of cryptography
- Describe security flaws in the TCP/IP protocol and how they can be used to attack networks and hosts
- Understand common endpoint security technologies
- Understand the kill chain and the diamond models for incident investigations, and the use of exploit kits by threat actors
- Identify resources for hunting cyber threats
- Explain the need for event data normalization and event correlation
- Identify the common attack vectors
- Identify malicious activities
- Identify patterns of suspicious behaviors
- Conduct security incident investigations
- Explain the use of a typical playbook in the SOC
- Explain the use of SOC metrics to measure the effectiveness of the SOC
- Explain the use of a workflow management system and automation to improve the effectiveness of the SOC
- Describe a typical incident response plan and the functions of a typical Computer Security Incident Response Team (CSIRT)
- Explain the use of Vocabulary for Event Recording and Incident Sharing (VERIS) to document security incidents in a standard format