Information Security

Information Systems Security Management Professional (ISSMP)

With the Information Systems Security Management Professional (ISSMP) certification, you will qualify as a manager in the field of security. You will learn and consolidate your knowledge of information security programs at the management and executive levels.

ISSMPs are responsible for meeting the financial and operational requirements of the organization and its desired risk position.

On-Site/Virtual

Preise ab€ 4.599 zzgl. 19% Ust

Duration: 3 days

Level: Experte

Code: ISSMP

CPEs: 56

The training courses are carried out in cooperation with Information Security Academy IS@R2, an official training partner of ISC2. This provides access to authorized trainers and the official training material.

Buchen Sie noch heute online oder rufen Sie uns an unter +49 7031 2024741wenn Sie Hilfe bei der Auswahl des richtigen Kurses benötigen oder über Firmenrabatte sprechen möchten.

The ISSMP is a CISSP concentration that prepares IT professionals to lead security management programs and implement security policies, practices and procedures in organizations at a strategic level.

Your benefits

Schönbrunn TASC is an accredited training organization (ATO). This means that you have access to official course materials and can take your Information Systems Security Management Professional ( ISSMP) exam during the course at the Schönbrunn TASC Training Center. If you do not pass the exam on your first attempt (which we do not expect), our performance guarantee covers you - this means you train free of charge the second time.

• You learn in small groups (max. 10 participants per course)
• In-house modern training room and test center in a distraction-free, quiet atmosphere (PSI/ Pearson Vue/ Kryterion)
• Experienced, constantly trained and ISC2 Authorized Instructors guide you through the course
• You will receive comprehensive official ISC2 training materials, manuals and case studies for self-study
• interactive discussions and group work will help you in the application
• a small breakfast, lunch, snacks and drinks are provided throughout the day
• hotel recommendations near the training and test center
• it is possible to take the exam at the Schönbrunn TASC test center afterwards**

Requirements

• CISSP + at least 2 years of professional experience
• Alternatively, at least 7 years of professional experience in the areas of the ISSMP profile or related areas
• A degree (Bachelor or Master) in Computer Science or Information Technologies

Target group

Chief Information Officer, Chief Information Security Officer, Senior Security Officer

Training schedule

Domain 1: Leadership and Business Management

1.1 Establish security's role in organizational culture, vision and mission

1.2 Align security program with organizational governance

1.3 Define and implement information security strategies

1.4 Define and maintain security policy framework Determine applicable external standards

1.5 Manage security requirements in contracts and agreements

1.6 Manage security awareness and training programs

1.7 Define, measure and report security metrics

1.8 Prepare, obtain and administer security budget

1.9 Manage security programs

1.10 Apply product development and project management principles

Domain 2: Systems Lifecycle Management

2.1 Manage integration of security into Systems Development Life Cycle (SDLC)

2.2 Integrate new business initiatives and emerging technologies into the security architecture

2.3 Define and oversee comprehensive vulnerability management programs (e.g., vulnerability scanning, penetration testing, threat analysis)

2.4 Manage security aspects of change control

Domain 3: Risk Management

3.1 Develop and manage a risk management program

3.2 Conduct risk assessments

3.3 Manage security risks within the supply chain (e.g., supplier, vendor, third-party risk)

Domain 4: Threat Intelligence and Incident Management

4.1 Establish and maintain threat intelligence program

4.2 Establish and maintain incident handling and investigation program

Domain 5: Contingency Management

5.1 Facilitate development of contingency plans

5.2 Develop recovery strategies

5.3 Maintain contingency plan, Continuity of Operations Plan (COOP), business continuity plan (BCP) and disaster recovery plan (DRP)

5.4 Manage disaster response and recovery process

Domain 6: Law, Ethics and Security Compliance Management

6.1 Identify the impact of laws and regulations that relate to information security

6.2 Adhere to the (ISC)2 Code of Ethics as related to management issues

6.3 Validate compliance in accordance with applicable laws, regulations and industry best practices

6.4 Coordinate with auditors and regulators in support of the internal and external audit processes

6.5 Document and manage compliance exceptions

 

Certification

Duration: 3 hours

Number of questions: 125

Format: Multiple choice

Pass mark: 700 out of 1000 points

Languages: English