Saturday, November 25, 2023

Training Syllabus CISM ISACA Exam Preparation


Trainer CISM

Hery Purnama ,SE.,MM.
CBAP, TOGAF, CTFL, ISO/IEC 27000, ISO/IEC 20000, ISO 31000

Syllabus CISM


The ISACA CISM Exam Preparation course is designed to provide in-depth knowledge and skills in information security management. The course aligns with ISACA’s guidelines and covers the four key domains of the CISM exam. It is aimed at equipping participants with the ability to manage, design, oversee, and assess an enterprise’s information security.


  1. Information Security Governance: Establishing and maintaining an information security governance framework and supporting processes.
  2. Information Risk Management: Identifying and managing information security risks to achieve business objectives.
  3. Information Security Program Development and Management: Developing and managing an information security program that aligns with business goals.
  4. Information Security Incident Management: Planning, establishing, and managing the capability to respond to and recover from information security incidents.


  • 4 Days

Exam Fee

  • The CISM exam fee varies based on ISACA membership and exam location. Fees typically range from $575 to $760.

Exam Number of Questions and Duration

  • The CISM exam consists of 150 multiple-choice questions.
  • The duration of the exam is 4 hours.

Eligibility Requirements for the Exam

  • A minimum of five years of professional experience in information security management.
  • Work experience must be gained within the 10-year period preceding the application date for certification or within five years from the date of initially passing the exam.

Syllabus: ISACA CISM Exam Preparation

Day 1: Information Security Governance

  • Principles of information security governance
  • Establishing an information security strategy
  • Policy development and implementation

Day 2: Information Risk Management

  • Risk assessment methodologies
  • Risk response techniques
  • Integration of risk management into business processes

Day 3: Information Security Program Development and Management

  • Designing and developing an information security program
  • Information security management frameworks
  • Aligning security program with organizational goals

Day 4: Information Security Incident Management

  • Incident management planning and preparation
  • Response and recovery processes
  • Post-incident activities and review

Exam Preparation

  • Comprehensive review of all domains
  • Practice questions and exam strategies
  • Final Q&A and wrap-up session

This course is tailored to ensure that participants are thoroughly prepared for the CISM exam and are equipped with practical skills applicable in their professional roles


Post a Comment

Silahkan isikan comment box untuk komentar Anda..