BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//wp-events-plugin.com//6.4.7.3//EN
BEGIN:VEVENT
UID:981@acinfotec.com
DTSTART:20260921T023000Z
DTEND:20260924T093000Z
DTSTAMP:20250910T073407Z
URL:https://www.acinfotec.com/training-event/cism-examination-preparation-
 exam-excluded-15/
SUMMARY:CISM Examination Preparation (Exam Excluded)
DESCRIPTION:About this course\nWhile information has become more easily acc
 essible and readily available\, the associated risks and security threats 
 have not only increased in number\, but also complexity.  As a result\, t
 he importance of ensuring that an enterprise’s information is protected 
 has also increased.  It is now more important than ever for executives to
  ensure that their IT security managers have the expertise needed to reduc
 e risk and protect the enterprise.\n\nDesigned specifically for informatio
 n security professionals who are preparing to sit for the CISM exam\, the 
 course focuses on the four content areas of the Certified Information Secu
 rity Manager (CISM) job practice:  information security governance\, risk
  management and compliance\, information security program development and 
 management\, information security incident management. Sample exam items w
 ill be used throughout the course to reinforce content and familiarize att
 endees with the CISM exam question format.\nCourse Benefits\nThe demand fo
 r skilled information security management professionals is on the rise\, a
 nd the CISM certification is the globally accepted standard of achievement
  in this area.\n\nCISMs understand the business. They know how to manage a
 nd adapt technology to their enterprise and industry.\nWho should Attend?\
 n\n 	Risk managers.\n 	Security professionals with front-line experience.\
 n 	Security auditors.\n 	Information security staff.\n 	Compliance personn
 el.\n 	Information security managers.\n 	CSOs\, CISOs and CIOs.\n 	Informa
 tion security assurance providers\n\nCourse Contents\nDay 1 – Informatio
 n Security Governance\n\nAttendees will understand the broad requirements 
 for effective information security governance\, the elements and actions r
 equired to develop an information security strategy\, and be able to formu
 late a plan of action to implement this strategy.\n\n 	Establish and maint
 ain an information security strategy and align the strategy with corporate
  governance\n 	Establish and maintain an information security governance f
 ramework\n 	Establish and maintain information security policies\n 	Develo
 p a business case\n 	Identify internal and external influences to the orga
 nization\n 	Obtain management commitment\n 	Define roles and responsibilit
 ies\n 	Establish\, monitor\, evaluate and report metrics\n\nDay 2 – Info
 rmation Risk Management and Compliance\n\nAttendees will be able to manage
  information security risks.\n\n 	Establish a process for information asse
 t classification and ownership\n 	Identify legal\, regulatory\, organizati
 onal and other applicable requirements\n 	Ensure that risk assessments\, v
 ulnerability assessments and threat analyses are conducted periodically.\n
  	Determine appropriate risk treatment options.\n 	Evaluate information se
 curity controls\n 	Identify the gap between current and desired risk level
 s\n 	Integrate information risk management into business and IT processes\
 n 	Monitor existing risk.\n 	Report noncompliance and other changes in inf
 ormation risk\n\nDay 3 – Information Security Program Development and Ma
 nagement\n\nAttendees will be able to develop and manage an information se
 curity plan.\n\n 	Establish and maintain the information security program\
 n 	Ensure alignment between the information security program and other bus
 iness functions\n 	Identify\, acquire\, manage and define requirements for
  internal and external resources\n 	Establish and maintain information sec
 urity architectures\n 	Establish\, communicate and maintain organizational
  information security standards\, procedures\, guidelines\n 	Establish and
  maintain a program for information security awareness and training\n 	Int
 egrate information security requirements into organizational processes\n 	
 Integrate information security requirements into contracts and activities 
 of third parties\n 	Establish\, monitor and periodically report program ma
 nagement and operational metrics\n\nDay 4 – Information Security Inciden
 t Management \n\nStudents will effectively manage information security wit
 hin an enterprise and develop policies and procedures to respond to and re
 cover from disruptive and destructive information security events.\n\n 	Es
 tablish and maintain an organizational definition of\, and severity hierar
 chy for\, information security incidents\n 	Establish and maintain an inci
 dent response plan\n 	Develop and implement processes to ensure the timely
  identification of information security incidents\n 	Establish and maintai
 n processes to investigate and document information security incidents\n 	
 Establish and maintain incident escalation and notification processes\n 	O
 rganize\, train and equip teams to effectively respond to information secu
 rity incidents\n 	Test and review the incident response plan periodically\
 n 	Establish and maintain communication plans and processes\n 	Conduct pos
 t-incident reviews\n 	Establish and maintain integration among the inciden
 t response plan\, disaster recovery plan and business continuity plan\n\nC
 ertification and Accreditation\nTo become a CISM\, an applicant must:\n•
  Achieve a passing score on the CISM exam.\n• Submit an application with
  verified evidence of three years of work experience as described below.\n
 • Agree to abide by the ISACA Code of Professional Ethics\, which can be
  viewed at www.isaca.org/ethics.\n• Agree to abide by the CRISC continui
 ng professional education (CPE) policy\, which can be viewed at ISACA CISM
  Maintenance Page.\nExamination\n\n 	Computer-based examination\n 	4 hours
 \n 	150 multiple-choice question exam\n 	ISACA uses a 200 - 800 point scal
 e with 450 as the passing mark for the exams\n\nTraining Info\nLanguage :
  Conducted in Thai Language\nDuration : 4 Days\nDate :  Sept 21-24\, 20
 26\nTime : 9.30 am. – 16.30 pm.\nLocation : ACinfotec Training Cente
 r\nContact : T 02 670 8980-3 Ext. 303\, 304\, 305\nE training@acinfotec.c
 om\n\nPrice : 34\,000 Bhts (Excluding Vat 7%)
ATTACH;FMTTYPE=image/jpeg:https://www.acinfotec.com/wp-content/uploads/202
 3/09/2.png
CATEGORIES:ISC2 &amp; ISACA
END:VEVENT
END:VCALENDAR