Prepare for the CISM exam and become an Information Security Manager
65,000+ CISM credentials earned since its inception in 2002
CISM stands for Certified Information Security Manager and it is ISACA’s professional certification developed for mid-career IT professionals aspiring to senior management roles in IT security management.
With more than 145,000 members in over 180 countries, ISACA™ is a globally recognized leader in IT governance, control and assurance. CISM initiated in 2003, is one of ISACA’s premium certifications with more than 50K certified professionals worldwide. With the CISM, in contrast to other similar certifications, iyou can move your career out of the technical realm to senior management positions, because it proves your managerial expertise in aligning organization’s information security program with broader business goals and objectives.
The CISM Prep Course
This is the official CISM Prep Course offered by ES Learning, an ISACA Accredited Training Organization (ATO) in association with the Hellenic American Union. It is given by ISACA accredited trainers in accordance with ISACA’s Accredited Training Program.
The course provides an in-depth knowledge on the following four CISM domains that are covered on the CISM exam.
- Information Security Governance
- Information Risk Management
- Information Security Program Development & Management
- Information Security Incident Management
This course is offered online (9 sessions).
New dates: 26 - 21/2/2025, 2024, 18.00-21.00
Check Tuition and Training Options below.
Premium Package
€1780 - What's included:
- ISACA membership fee*
- CISM eManual
- CISM Q&A Database Annual Subscription*
- Exam Fee*
- CISM Prep Course (30 hours of training Live Online)
Prepayment is required at least 7 working days before the start of each preparation seminar.
*Valid for 1 year from date of voucher purchase.
Basic Package
€1210 - No exam fees included. This package includes:
- ISACA membership fee*
- CISM eManual
- CISM Q&A Database Annual Subscription*
- CISM Prep Course (30 training hours Live Online)
Prepayment is required at least 7 working days before the start of each preparation seminar
*Valid for 1 year from date of voucher purchase.
Please contact us at 210-3680911, 210-3680907 to receive your discount coupon for the final fee of 1210 Euros.
ES-Learning is a Saudi company based in Riyadh, specializing in capacity building and professionalization, by providing specialized workshops and programs in the following areas: Business Process Management, Facilitation through Trainings, Quality & Performance Management, Services Design, Strategy.
As ISACA'S ATOs, our partners meet ISACA's high training standards. Courses are taughted by accredited and certified trainers, follow ethical practices, and use ISACA's designated materials to make sure you get the most up to date training.
CISM Prep course offers you the following:
- 30 training hours with a thorough overview and key points of the 4 domain areas of the CISM Exam
- ISACA training material
- Post-training access to the instructor for advice and support
- Analysis of particular topics which are popular exam questions
- Practice on the “philosophy” of the examination questions and testing conditions,
- Reference tools
- 28 CPEs
CISM is an exam that tests experience and experience cannot be taught. However this course, will give you specific guidelines in your study by providing an overview of the core knowledge bases included in the CISM examination ‘Body of Knowledge’.
Following each section, you will work through a series of sample questions to give you a "feel" for the format and the types of questions you will encounter.
The instructor will provide you with many reference tools and study guides, together with the official ISACA training material. You should continue to study the course materials and rehearse the sample questions after the course until the exam date. Practice with as many sample questions as you can is a key factor for succeeding in the test.
Participants should continue to study the course materials and rehearse the sample questions after the course until the exam date.
The CISΜ certification is addressed to mid-career IT professionals who are responsible for information security programs. Typical participants in this course are:
- IT Managers
- IT Security Managers
- CISOs
- IT Consultants
- IT Auditors
- System Security Architects
- Chief Compliance Executives
- ISO Auditors & Professionals
- IT Security Analysts
- IT Risk Managers
CISM Certification pre-requisites
To certify with CISM, you must pass the CISM exam and also meet the following prerequisites:
A minimum of 5 years of experience in information security, with at least three years in the role of information security manager. Experience must be gained within the past 10 years of the application submission date. This experience must be in at least three of the 4 CISM Job Practice Areas. Substitutions and waivers may apply for up to 2 years of experience, as follows:
- Being certified with CISA, or CISSP, or having a post-graduate degree in information security or related filed( e.g. information systems) can substitute for 2 years of experience
- 1 year of information systems management experience, or general security management experience, or being certified with certain skill-based or general security certifications (pls consult ISACA’s website for those certifications), may substitute for 1 year of experience
- Completing an academic program on information security management at an institution aligned with ISACA’s Model Curriculum may substitute for 1 year of experience
These substitutions will not satisfy any portion of the 3-year information security management work experience requirement.
For more information on how to become a CISM professional visit https://www.isaca.org/credentialing/cism
Introducing the CISM exam and CISM Certification
Domain 1—Information Security Governance - (24%) – How to establish and/or maintain an information security governance framework and supporting processes to ensure that the information security strategy is aligned with organizational goals and objectives.
Domain 2—Information Risk Management - (30%) – How to manage information risk to an acceptable level based on risk appetite in order to meet organizational goals and objectives.
Domain 3—Information Security Program Development and Management - (27%) - How to develop and maintain an information security program that identifies, manages and protects the organization’s assets while aligning to information security strategy and business goals, thereby supporting an effective security posture.
Domain 4— Information Security Incident Management - (19%) – How to plan, establish and manage the capability to detect, investigate, respond to and recover from information security incidents to minimize business impact.
The Anatomy of a CISM Question
-
Question writer rules
-
The best approach to the CISM exam
Exam Tips
Exam logistics
Nikolaos is an ISACA Accredited Trainer and member of ISACA Athens Chapter, authorized to offer ISACA's Certification prep courses for CISA, CISM and CRISC. Nikolaos works in the field ...
Learn moreYou can register, or have your employer register you up to one day before the start date of the program if there are still available places.
Important: You can proceed directly with your order through our eshop for the Premium Package of 1780 Euros which provides you with everything you need for your preparation and exam fees.
If you choose the Basic Package, or the Course Only Package please contact us at 210-3680911, or 210-3680907, or send an email to training@hau.gr to receive the corresponding discount coupon, so that you can forward your order through our eshop.
Add the program to the shopping basket. The first time you place an order you need to register. For company registrations please check the box “I am booking on behalf of my company”. Then, you fill out your personal details and you select an invoice or receipt to be issued. Then you must pay the tuition fee. Payment is available by: a) debit, prepaid, or credit card (interest-free installments will be visible if available), b) Bank payment ID, that you can use to pay at the bank or via ebanking, or c) IRIS and direct debiting your bank account.
Please note that once you successfully place your order you will receive an automated confirmation message. This does not mean that your registration is complete. Your place is reserved once you pay the relevant tuition fee. When payment is visible, we will contact you to confirm your registration.
Zoom is a web-based video conferencing tool, compatible with Mac, Windows, Linux, iOS, and Android, that allows users to meet and attend classes online. You can use Zoom from your PC or laptop, but also from your iPad or smartphone. You will have to download Zoom to one of your devices to be able to attend this program. We will send you a step-by-step guide once you register. If you use your PC or laptop you will also need a webcam, microphone, and speaker. Most computers have a microphone and speaker, but you can also use a headset with a microphone for better sound quality.
The seminar can be organized exclusively for your company, if there is a group of people who wishes to attend. The content, dates, and schedule will be tailored to your employees' needs.
How is CISM different from the other security certifications? Certified Information Systems Security Practitioner (CISSP)?
What differentiates CISM from other security certifications is the experience required in information security management.
Other subject matter related certifications require technical skills or knowledge on specific platforms and/or products. Usually, those certifications target technical experts or specialists in the earlier years of their career. CISM targets professionals in mid level to senior level positions and in managerial roles. This is why CISM requires at least 3 years (with no waivers) in information security managerial roles.
As for CISSP: there are many differences between the body of knowledge required for CISSP and the 4 Job practice areas of CISM. CISSP is far more technical oriented than CISM. Also CISSP has no information security managerial requirements. CISSP and CISM complement each other.
How is this course different from others?
This is an ISACA ATO Accredited Course especially designed for CISM candidates, according to ISACA standards. It includes ISACA Training Material, and the trainers have following ISACA Training process.
The course also offers 27 CPEs. CPEs are not required for getting the CISM Certification. CPEs of this course cannot be used after you certify with CISM for maintaining the certification. However they can count for any other ISACA Certification you may already have (i.e CISA).
How difficult is the CISM exam? How long would it take to study?
CISM is a professional certification, therefore experience is critical. Experience can be a good judge since you must have already been exposed to a lot of theory and processes, but can also be a tricky advisor and mislead you away from the “by the book” approach of ISACA. Therefore you need to study hard on the theory and the CISM Review Manual and then practice with as many sample questions as you can.
We recommend that you dedicate at least 2 to 3 months after the CISM prep Course and study every day from 1 to 3 hours.
Why certify with CISM
- CISM demonstrates your experience in managing information security programs and can move up your career from technical to managerial roles
- CISM is the only certification in the field of information technology that showcases managerial competencies in information security that go beyond technical skills or specific platforms, product or other related tools expertise. CISM shows leadership over the organization’s information security program.
- According to ISACA, with the CISM you can gain up to 70% improved expertise in information security practices, and accomplish up to 90% more effective teams to handle enterprise and business systems security
- CISM is among the highest-paying IT certifications, with an average salary of 115+K U.S.D
- CISM is ranked among the top 15 paying certifications for the sixth straight year in the 2020
IT Skills and Salary Survey conducted by Global Knowledge.
- With CISM you validate your information security expertise among your peers, managers, internal and external stakeholders, and compliance and regulatory professionals
How to apply for CISM
One must first pass the CISM exam and then proceed with the CISM certification application which includes information on:
- At least 5 years of experience in information security, with at least three years in the role of information security manager. Experience must be gained within the past 10 years of the application submission date. This experience must be in at least three of the 4 CISM Job Practice Areas (substitutions and waivers apply)
- Adherence to the Code of Professional Ethics
- Compliance with the CISM Continuing Professional Education Policy
Those who pass the test but do not have the experience required, have up to 5 years to meet the experience requirements.
How do I report my experience and who verifies it?
Your experience is independently verified in the Experience Verification Form by a supervisor, manager or client with whom you have worked. Verifiers fill out this form independently and return it to the candidate to include this in their certification application.
The CISM Exam Format
Domain 1 – Information Security Governance (24%)
Domain 2 – Information Risk Management (30%)
Domain 3 – Information Security Program Development and Management (27%)
Domain 4 – Information Security Incident Management (19%)
- 150 questions
- 4 hours to complete the exam
- Questions format: multiple-choice
- Passing marks: 450 out of 800. (The exam is graded on a scale of 200 to 800 points
- CISM certification exams can now be taken via online remote proctored or at an in-person testing center.
When can I take the test?
There are no specific exam dates. You can take the test online from anywhere, even at the comfort of your home, or you can take it in a designated computer lab. There is one designated lab in Athens and one in Thessaloniki. Contact us for more information.
How much does it cost if I don't take the HAU package?
Cost varies whether you are an ISACA member or not. Members get better prices.
CISM fees, including training, breakdown as follows - these fees are indicative, please refer to www.isaca.org :
- CISM Exam fee: Members $575, Non-Members $760
- ISACA membership fee: $145 (+$30 ISACA Athens Chapter dues – optional)
- CISM Manual ebook: from $109
- CISM e-database questions:from $299
- CISM Certification application: $50 (non-refundable)
- Our prep course package only: Members 650€, Non-members: 850€
To maintain your certification you must also pay a CISA certification maintenance fee of $85 every year.
I took the test and I passed – what next?
To renew your CISM certification you must attain 120 CPE hours every 3 year with a minimum of 20 CPE hours per year. You must also pay a re-certification fee. See more at www.isaca.org
During this course we explain all exam logistics and what you need to know to apply for the CISM certification and maintaining it.