IT manager

Training Course: Certified Information Security Manager (CISM)


Register Now
Quick Inquiry
Discount Group Download Brochure  

IT236569

7 - 11 Sep 2026

Barcelona (Spain)

Cost : 6300 € Euro

Introduction

The Certified Information Security Manager (CISM) training program is designed by Global Horizon Training Center to equip information security professionals, IT managers, cybersecurity leaders, and governance specialists with the knowledge and management skills required to establish, govern, implement, and continuously improve enterprise information security programs. The program is aligned with internationally recognized information security management best practices and covers the four major knowledge domains of the CISM framework: Information Security Governance, Information Risk Management, Information Security Program Development & Management, and Incident Management.


Objectives

By the end of this training program, participants will be able to:

  • Understand the principles of Information Security Governance.

  • Align information security strategies with organizational objectives.

  • Develop and maintain an enterprise-wide information security program.

  • Identify, assess, analyze, and manage information security risks.

  • Apply internationally recognized governance and risk management frameworks.

  • Design security policies, standards, and procedures.

  • Establish effective security awareness and training initiatives.

  • Manage third-party and vendor security risks.

  • Develop comprehensive incident response and recovery plans.

  • Measure and improve information security performance using KPIs and security metrics.

  • Enhance executive decision-making regarding cybersecurity investments.

  • Strengthen organizational resilience against cyber threats.


Course Methodology

The program adopts an interactive management-oriented learning approach through:

  • Instructor-led presentations

  • Interactive discussions

  • Group exercises

  • Case study analysis

  • Security governance workshops

  • Risk assessment exercises

  • Incident response planning activities

  • Knowledge assessments

  • Best practice reviews

  • Practical management scenarios


Organizational Impact

Upon successful completion of this program, organizations will benefit from:

  • Stronger information security governance.

  • Better alignment between cybersecurity initiatives and business objectives.

  • Improved enterprise risk management.

  • Enhanced regulatory and compliance readiness.

  • More effective information security policies.

  • Improved incident preparedness and response capabilities.

  • Better executive reporting and security performance measurement.

  • Increased stakeholder confidence.

  • Reduced security risks and operational disruptions.

  • Improved cybersecurity maturity across the organization.


Target Audience

This program is designed for:

  • Information Security Managers

  • Cybersecurity Managers

  • IT Managers

  • Information Security Officers

  • Risk Management Professionals

  • Governance, Risk & Compliance (GRC) Professionals

  • IT Auditors

  • Security Consultants

  • Business Continuity Managers

  • Security Architects

  • Compliance Officers

  • Professionals preparing for CISM-level responsibilities


Course Outline

Day 1 – Information Security Governance

Module 1: Foundations of Information Security Management

  • Information security management concepts

  • Enterprise security governance

  • Security management principles

  • Security leadership roles and responsibilities

Module 2: Information Security Governance Frameworks

  • Governance structures

  • Organizational culture

  • Roles and accountability

  • Executive oversight

Module 3: Developing Security Strategy

  • Business alignment

  • Strategic planning

  • Security objectives

  • Governance roadmaps

Module 4: Policies and Compliance

  • Security policies

  • Standards and procedures

  • Legal and regulatory requirements

  • Compliance management

Module 5: Security Performance Measurement

  • KPIs

  • KRIs

  • Executive reporting

  • Governance metrics


Day 2 – Information Security Risk Management

Module 1: Information Asset Management

  • Asset identification

  • Asset classification

  • Critical asset protection

Module 2: Threat and Vulnerability Management

  • Threat landscape

  • Vulnerability identification

  • Security assessments

Module 3: Risk Assessment

  • Risk identification

  • Risk analysis

  • Risk evaluation

  • Business impact analysis

Module 4: Risk Treatment

  • Risk mitigation

  • Risk acceptance

  • Risk transfer

  • Risk avoidance

Module 5: Continuous Risk Monitoring

  • Risk reporting

  • Risk dashboards

  • Security monitoring

  • Risk communication


Day 3 – Information Security Program Development & Management

Module 1: Building the Information Security Program

  • Program planning

  • Security objectives

  • Resource management

  • Program governance

Module 2: Security Controls

  • Administrative controls

  • Technical controls

  • Physical controls

  • Control selection

Module 3: Security Policies and Standards

  • Policy development

  • Standards creation

  • Procedures

  • Documentation

Module 4: Security Awareness

  • Employee awareness

  • Training programs

  • Security culture

  • Executive engagement

Module 5: Third-Party Security

  • Vendor security

  • Supplier risk management

  • Contract security requirements

  • Outsourcing considerations


Day 4 – Information Security Incident Management

Module 1: Incident Management Framework

  • Incident lifecycle

  • Classification

  • Prioritization

  • Escalation

Module 2: Incident Response Planning

  • Response strategy

  • Response team

  • Roles and responsibilities

  • Communication planning

Module 3: Investigation and Recovery

  • Incident investigation

  • Root cause analysis

  • Recovery planning

  • Business restoration

Module 4: Crisis Communication

  • Executive communication

  • Stakeholder communication

  • Regulatory reporting

  • Media coordination

Module 5: Lessons Learned

  • Post-incident reviews

  • Continuous improvement

  • Documentation

  • Updating response plans


Day 5 – Integrated Information Security Management

Module 1: Enterprise Security Integration

  • Security governance integration

  • Risk integration

  • Enterprise collaboration

Module 2: Security Program Evaluation

  • Performance assessment

  • Program maturity

  • Security metrics

  • Continuous improvement

Module 3: Emerging Security Challenges

  • Cloud security governance

  • Third-party ecosystems

  • Digital transformation risks

  • Emerging cyber threats

Module 4: Executive Decision Making

  • Security investment planning

  • Security budgeting

  • Business cases

  • Executive reporting

Module 5: Comprehensive Program Review

  • Integration of governance, risk, security program, and incident management

  • Review of key concepts

  • Knowledge assessment

  • Course summary and action planning

IT manager

Training Course: Certified Information Security Manager (CISM)


Register Now
Quick Inquiry
Discount Group Download Brochure  

IT236569

7 - 11 Sep 2026

Barcelona (Spain) -

Cost: 6300 € Euro


  About Barcelona

Barcelona, the main city of Catalonia on Spain's east coast, is known for its fantastic weather and proud local culture. It is also Spain's second largest city and has all the cosmopolitan trappings you would expect. Among Barcelona's many attractions are the delicious seafood, stunning architecture and vibrant atmosphere. It began life as a Roman city and has remained important ever since. Today, it is a buzzing city offering more than enough reasons to look for flights to Barcelona. Between UNESCO World Heritage Sites, famous sports teams plus great food, there's no shortage of ways to amuse oneself.


  Things to do and places to visit in Barcelona

Barcelona really does have something for everyone. The attractions of Barcelona include beautiful beaches to relax on, almost endless historical locations to explore, all the shops you could ever wish for, one of the world's most admired football clubs and world-class eateries - you may never want to leave. Luckily, with so much to do the city's compactness makes it easy to explore. Simply wandering through the streets is a great way to soak up the atmosphere.

Just some of the great things to do in Barcelona include:

  • Marvel at Gaudi's masterwork, the Sagrada Familia.
  • Sample the wide range of tapas in Barcelona's bars.
  • See the somewhat surreal architecture of Antoni Gaudi.
  • Wander through Park Guell, which offers great views over the city and out to sea.
  • See the Cubist master’s early work in the Picasso Museum.
  • Get lost in the winding streets of the Gothic Quarter, known locally as the Barri Gotic.
  • Browse the upmarket shops along the Passeig de Gracia.
  • Soak up the tranquil atmosphere in the Cathedral of the Sea.
  • Watch the silky skills of FC Barcelona in a game at the Camp Nou.
  • Enjoy authentic paella with fresh seafood.
  • Climb Montjuic for spectacular views.
 22 Portman Square, Marylebone, London W1H 7BG, UK
 3 Oudai street, Aldouki, Giza, Giza Governorate, Egypt
 0020233379764
 00201095004484
 00201102960555
 00201102960666
 19 Mayıs Mahallesi, 19 Mayis Street No 2 Sisli, 34360 Istanbul/Turkey
 00905357839460
 811 Massachusetts Avenue, Boston, Massachusetts, 02118, USA
 6 Beirut Street - Fifth Circle Abdoun, P.O. Box 831370, 11183 Amman, Jordan
Copyright Global Horizon Training Center © 2019