Certified Information Security Manager (CISM)

Cultivate your career with expert-led programs, job-ready certificates, and 10,000 ways to grow. All for $25/month, billed annually. Save now

Certified Information Security Manager (CISM)

Instructor: Packt - Course Instructors

Included with Coursera Plus

Learn more

4 modules

Gain insight into a topic and learn the fundamentals.

Intermediate level

Recommended experience

15 hours to complete

3 weeks at 5 hours a week

Flexible schedule

Learn at your own pace

4 modules

Gain insight into a topic and learn the fundamentals.

Intermediate level

Recommended experience

15 hours to complete

3 weeks at 5 hours a week

Flexible schedule

Learn at your own pace

What you'll learn

Master integration of security governance into organizational practices.
Conduct risk assessments and apply effective risk treatment strategies.
Develop comprehensive security programs and align them with business goals.
Plan and execute incident response, business continuity, and disaster recovery.

Skills you'll gain

Details to know

Shareable certificate

Add to your LinkedIn profile

See how employees at top companies are mastering in-demand skills

Learn more about Coursera for Business

Earn a career certificate

Add this credential to your LinkedIn profile, resume, or CV

Share it on social media and in your performance review

There are 4 modules in this course

Gain a competitive edge in the field of cybersecurity with this comprehensive Certified Information Security Manager (CISM) course. Designed to elevate your expertise, this course offers an in-depth exploration of critical information security management practices. You'll learn to integrate security governance, manage risks effectively, develop robust security programs, and handle incidents with precision—all aligned with the CISM certification.

Your journey begins with Information Security Governance, where you'll explore the foundations of integrating security practices into organizational policies, cultivating culture, and ensuring compliance with legal frameworks. Progressing through Information Security Risk Management, you’ll dive into assessing vulnerabilities, analyzing risks, and implementing risk treatment strategies to mitigate emerging threats. The course also covers the design and execution of Information Security Programs, detailing how to classify assets, define policies, and establish secure operational frameworks. Finally, the Incident Management module equips you with essential skills in response planning, business continuity, disaster recovery, and post-incident analysis, ensuring you are prepared to lead in crisis scenarios. This course is ideal for IT professionals, security managers, and those aspiring to earn the prestigious CISM certification. While prior experience in IT security or governance is helpful, the course is structured to support learners at an intermediate level, ensuring a balance of foundational knowledge and advanced insights.

In this module, we will explore the foundational elements of Information Security Governance, a critical aspect of the CISM certification. Beginning with an overview of the course, we will dive into topics such as organizational culture, governance frameworks, strategic planning, and regulatory compliance. By the end of this section, you will be equipped with the knowledge to define and implement an effective governance framework that supports enterprise objectives and prepares you for the CISM exam.

What's included

9 videos1 reading1 assignment

9 videosTotal 170 minutes

Course Overview5 minutesPreview module
Enterprise Governance25 minutes
Organizational Culture16 minutes
Legal Regulatory and Contractual Requirements20 minutes
Organizational Structures Roles and Responsibilities24 minutes
Information Security Strategy Development21 minutes
Information Governance Frameworks and Standards20 minutes
Strategic Planning17 minutes
Information Security Governance - Key Points18 minutes

1 readingTotal 10 minutes

Full Course Resources10 minutes

1 assignmentTotal 15 minutes

Assessment 115 minutes

In this module, we will delve into the critical aspects of Information Security Risk Management, a cornerstone of the CISM certification. Topics include risk assessment, emerging threats, vulnerability analysis, and control ownership. You will learn to design and implement strategies for risk treatment, monitoring, and reporting, enabling integration into broader business and IT processes. This section concludes with a focused review of key points essential for mastering Domain 2 and excelling in the CISM exam.

What's included

12 videos1 assignment

12 videosTotal 209 minutes

Information Security Risk Assessment19 minutesPreview module
Emerging Risk and Threat Landscape22 minutes
Vulnerability and Control Deficiency Analysis16 minutes
Risk Assessment and Analysis - Background24 minutes
Risk Assessment and Analysis - Scenarios18 minutes
Risk Assessment and Analysis - Process16 minutes
Risk Assessment and Analysis - Methodologies21 minutes
Risk Assessment and Analysis - Analysis22 minutes
Risk Treatment and Risk Response Options12 minutes
Risk and Control Ownership5 minutes
Risk Monitoring and Reporting8 minutes
Information Security Risk Management - Key Points21 minutes

1 assignmentTotal 15 minutes

Assessment 215 minutes

In this module, we will uncover the critical components of an effective Information Security Program, central to the CISM certification. From defining responsibilities and resources to aligning with IT operations and external services, this section covers it all. We will also explore metrics, reporting, and awareness programs to ensure continuous program improvement. By the end, you’ll grasp the essential knowledge needed to design, implement, and manage robust information security initiatives and master Domain 3 of the CISM exam.

What's included

15 videos1 assignment

15 videosTotal 240 minutes

Information Security Program Overview19 minutesPreview module
Information Security Program Resources11 minutes
Information Asset Identification and Classification17 minutes
Standards and Frameworks for Information Security21 minutes
Information Security Policies Procedures and Guidelines10 minutes
Information Security Program Metrics9 minutes
Information Security Control Design and Selection10 minutes
Control Implementation Integration Testing and Evaluation17 minutes
Information Security Awareness and Training8 minutes
Integration with IT Operations - SDLC and DevOps15 minutes
Integration with IT Operations - ITSM20 minutes
Integration with IT Operations - Cloud21 minutes
Management of External Services19 minutes
Information Security Program Communications and Reporting22 minutes
Information Security Program - Key Points16 minutes

1 assignmentTotal 15 minutes

Assessment 315 minutes

In this module, we will focus on Incident Management, an essential pillar of the CISM certification. Topics include incident readiness, response planning, and integration with BIA, BCP, and DRP strategies. You will explore methods for classifying and containing incidents, tools for managing responses, and techniques for post-incident reviews to drive continuous improvement. This section concludes with a summary of Domain 4, ensuring you are well-prepared to tackle incident management questions on the CISM exam.

What's included

12 videos2 assignments

12 videosTotal 208 minutes

Incident Management Readiness20 minutesPreview module
Incident Response Plan12 minutes
Business Impact Analysis (BIA)16 minutes
Spotlight on BIA Derived Objectives22 minutes
Business Continuity Plan (BCP)22 minutes
Disaster Recovery Plan (DRP)17 minutes
Incident Classification and Categorization18 minutes
Incident Management Training Testing and Evaluation15 minutes
Incident Management Tools and Techniques12 minutes
Evaluation Containment Communication and Recovery15 minutes
Post-incident Review Practices11 minutes
Incident Management - Key Points22 minutes

2 assignmentsTotal 75 minutes

Assessment 415 minutes
Final Course Assessment60 minutes

Instructor

Packt - Course Instructors

Packt

568 Courses83,851 learners

Offered by

Packt

Recommended if you're interested in Security

Packt
CISSP Certified Information Systems Security Professional
Specialization
Packt
Security and Risk Management
Course
Packt
Risk Management for Cyber Security Managers
Course
Packt
Cybersecurity Incident Response and Communication
Course

Why people choose Coursera for their career

Felipe M.

Learner since 2018

"To be able to take courses at my own pace and rhythm has been an amazing experience. I can learn whenever it fits my schedule and mood."

Jennifer J.

Learner since 2020

"I directly applied the concepts and skills I learned from my courses to an exciting new project at work."

Larry W.

Learner since 2021

"When I need courses on topics that my university doesn't offer, Coursera is one of the best places to go."

Chaitanya A.

"Learning isn't just about being better at your job: it's so much more than that. Coursera allows me to learn without limits."

New to Security? Start here.

Marketing Analytics: What It Is, Why It's Important, and More

March 15, 2025

Article

How to Connect Analytics to Google Ads

March 15, 2025

Article

How to Use Shopify Google Analytics

January 21, 2025

Article

What Is a Niche Market? And How to Reach One

November 21, 2024

Article

Open new doors with Coursera Plus

Unlimited access to 10,000+ world-class courses, hands-on projects, and job-ready certificate programs - all included in your subscription

Learn more

Advance your career with an online degree

Earn a degree from world-class universities - 100% online

Explore degrees

Join over 3,400 global companies that choose Coursera for Business

Upskill your employees to excel in the digital economy

Learn more

Frequently asked questions

Yes, you can preview the first video and view the syllabus before you enroll. You must purchase the course to access content not included in the preview.

If you decide to enroll in the course before the session start date, you will have access to all of the lecture videos and readings for the course. You’ll be able to submit assignments once the session starts.

Once you enroll and your session begins, you will have access to all videos and other resources, including reading items and the course discussion forum. You’ll be able to view and submit practice assessments, and complete required graded assignments to earn a grade and a Course Certificate.

See how employees at top companies are mastering in-demand skills

Earn a career certificate

Information Security Governance

What's included

Information Security Risk Management

What's included

Information Security Program

What's included

Incident Management

What's included

CISSP Certified Information Systems Security Professional

Security and Risk Management

Risk Management for Cyber Security Managers

Cybersecurity Incident Response and Communication

Marketing Analytics: What It Is, Why It's Important, and More

How to Connect Analytics to Google Ads

How to Use Shopify Google Analytics

What Is a Niche Market? And How to Reach One

Can I preview a course before enrolling?

When will I have access to the lectures and assignments?

What will I get when I enroll?

More questions