Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Certified Information Security Manager Exam Prep Guide
  • Table Of Contents Toc
Certified Information Security Manager Exam Prep Guide

Certified Information Security Manager Exam Prep Guide

By : Hemang Doshi
4.8 (25)
Buy this Book
close
close
Certified Information Security Manager Exam Prep Guide

Certified Information Security Manager Exam Prep Guide

4.8 (25)
By: Hemang Doshi
Buy this Book

Overview of this book

With cyber threats on the rise, IT professionals are now choosing cybersecurity as the next step to boost their career, and holding the relevant certification can prove to be a game-changer in this competitive market. CISM is one of the top-paying and most sought-after certifications by employers. This CISM Certification Guide comprises comprehensive self-study exam content for those who want to achieve CISM certification on the first attempt. This book is a great resource for information security leaders with a pragmatic approach to challenges related to real-world case scenarios. You'll learn about the practical aspects of information security governance and information security risk management. As you advance through the chapters, you'll get to grips with information security program development and management. The book will also help you to gain a clear understanding of the procedural aspects of information security incident management. By the end of this CISM exam book, you'll have covered everything needed to pass the CISM certification exam and have a handy, on-the-job desktop reference guide.
Table of Contents (17 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Download the color images
Icon
Get in touch
Icon
Share your thoughts
1
Section 1: Information Security Governance
Icon
Section 1: Information Security Governance
Lock Free Chapter
2
Chapter 1: Information Security Governance
chevron up
Icon
Chapter 1: Information Security Governance
Icon
Introducing information security governance
Icon
Understanding governance, risk management, and compliance
Icon
Discovering the maturity model
Icon
Getting to know the information security roles and responsibilities
Icon
Finding out about the governance of third-party relationships
Icon
Obtaining commitment from senior management
Icon
Introducing the business case and the feasibility study
Icon
Understanding information security governance metrics
Icon
Summary
3
Chapter 2: Practical Aspects of Information Security Governance
Icon
Chapter 2: Practical Aspects of Information Security Governance
Icon
Information security strategy and plan
Icon
Information security program
Icon
Enterprise information security architecture
Icon
Organizational structure
Icon
Record retention
Icon
Awareness and education
Icon
Summary
4
Section 2: Information Risk Management
Icon
Section 2: Information Risk Management
5
Chapter 3: Overview of Information Risk Management
Icon
Chapter 3: Overview of Information Risk Management
Icon
Risk management overview
Icon
Risk management strategy
Icon
Implementing risk management
Icon
Risk assessment and analysis methodologies
Icon
Risk assessment
Icon
Summary
6
Chapter 4: Practical Aspects of Information Risk Management
Icon
Chapter 4: Practical Aspects of Information Risk Management
Icon
Information asset classification
Icon
Asset valuation
Icon
Operational risk management
Icon
Outsourcing and third-party service providers
Icon
Risk management integration with the process life cycle
Icon
Summary
7
Chapter 5: Procedural Aspects of Information Risk Management
Icon
Chapter 5: Procedural Aspects of Information Risk Management
Icon
Change management
Icon
Patch management
Icon
Security baseline controls
Icon
Risk monitoring and communication
Icon
Security awareness training and education
Icon
Documentation
Icon
Summary
8
Section 3: Information Security Program Development Management
Icon
Section 3: Information Security Program Development Management
9
Chapter 6: Overview of Information Security Program Development Management
Icon
Chapter 6: Overview of Information Security Program Development Management
Icon
Information security program management overview
Icon
Information security program objectives
Icon
Information security framework components
Icon
Defining an information security program road map
Icon
Policy, standards, and procedures
Icon
Security budget
Icon
Security program management and administrative activities
Icon
Privacy laws
Icon
Summary
10
Chapter 7: Information Security Infrastructure and Architecture
Icon
Chapter 7: Information Security Infrastructure and Architecture
Icon
Information security architecture
Icon
Architecture implementation
Icon
Access control
Icon
Virtual private networks
Icon
Biometrics
Icon
Factors of authentication
Icon
Wireless network
Icon
Different attack methods
Icon
Summary
11
Chapter 8: Practical Aspects of Information Security Program Development Management
Icon
Chapter 8: Practical Aspects of Information Security Program Development Management
Icon
Cloud computing
Icon
Controls and countermeasures
Icon
Penetration testing
Icon
Security program metrics and monitoring
Icon
Summary
12
Chapter 9: Information Security Monitoring Tools and Techniques
Icon
Chapter 9: Information Security Monitoring Tools and Techniques
Icon
Firewall types and their implementation
Icon
IDSes and IPSes
Icon
Digital signature
Icon
Elements of PKI
Icon
Asymmetric encryption
Icon
Summary
13
Section 4: Information Security Incident Management
Icon
Section 4: Information Security Incident Management
14
Chapter 10: Overview of Information Security Incident Manager
Icon
Chapter 10: Overview of Information Security Incident Manager
Icon
Incident management overview
Icon
Incident response procedure
Icon
Incident management metrics and indicators
Icon
The current state of the incident response capabilities
Icon
Developing an incident response plan
Icon
Summary
15
Chapter 11: Practical Aspects of Information Security Incident Management
Icon
Chapter 11: Practical Aspects of Information Security Incident Management
Icon
Business continuity and disaster recovery procedures
Icon
Testing incident response, BCP, and DRP
Icon
Executing response and recovery plans
Icon
Post-incident activities and investigation
Icon
Summary
Icon
Why subscribe?
16
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Packt is searching for authors like you
Icon
Share your thoughts

Chapter 1: Information Security Governance

Governance is an important aspect of the certified information security manager (CISM) exam.

In this chapter, we will cover an overview of information security governance and aim to understand the impact of good governance on the effectiveness of information security projects.

You will learn about assurance functions such as governance, risk, and compliance (GRC), and details about the various roles and responsibilities of the security function. You will also be introduced to the best practices for obtaining the commitment from the senior management of an organization toward information security.

The following topics will be covered in this chapter:

  • Introducing information security governance
  • Understanding GRC
  • Discovering the maturity model
  • Getting to know the information security roles and responsibilities
  • Finding out about the governance of third-party relationships
  • Obtaining commitment from senior management
  • Introducing the business case and the feasibility study
  • Understanding information security governance metrics

Let's dive in and discuss each one of these topics in detail.

Visually different images
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Certified Information Security Manager Exam Prep Guide
End of Section 2
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon