Prepare for the first domain of the Certified Information Security Manager (CISM) certification exam: Information Security Governance.
Certified Information Security Manager (CISM) Cert Prep: 1 Information Security Governance
Overview
Syllabus
Introduction
- Welcome
- What you need to know
- Study resources
- The goals of information security
- Designing an information security strategy
- Aligning security with the business
- Strategic Influences
- Organizational processes
- Security roles and responsibilities
- Control frameworks
- Developing security baselines
- Leveraging industry standards
- Customizing security standards
- Developing a security budget
- Capital vs. operational expenses
- Budget monitoring and reporting
- Information security governance
- Security governance frameworks
- Security policy framework
- Security policies
- Understanding data security
- Data security policies
- Data security roles
- Data privacy
- Limiting data collection
- Privileged access management
- Organizational structure
- Obtaining leadership support
- Collecting security process data
- Management review and approval
- Security metrics
- Audits and assessments
- Control management
- Need to know and least privilege
- Separation of duties and responsibilities
- Continuing your studies
Taught by
Mike Chapple
