This is five days course based on ISACA’s job practice, which serves as the basis for the exam requirements to become a CISM professional. This job practice consists of task and knowledge statements organized by ISACA CISM domains. Enterprises demand IS audit professionals that possess the knowledge and expertise to help them identify critical issues and customize practices to support trust in and value from information systems. The skills and practices that CISM promotes and evaluates are the building blocks of success in the field. Possessing the CISM demonstrates proficiency in information security management.

The job practice domains and task and knowledge statements are as follows:

• Domain 1—Information Security Governance (24%)
• Domain 2—Information Risk Management (30%)
• Domain 3—Information Security Program Development and Management (27%)
• Domain 4—Information Security Incident Management (19%)