ISACA CISM Training Course

CyberVista’s Certify CISM course provides practitioners with the benefit of structure with the flexibility of live online and on-demand delivery.

CISM CyberVista Badge
five stars

Adrian Kelley on Feb 19, 2018

I took the Certified Information Security Manager (CISM) course with CyberVista and was extremely surprised at how they captured all the key points and presented it to students using an easy to follow format. The instructor was amazing! His energy level seemed to power the light board at times. The information was well organized, concise, and in-depth during our class.

Read more reviews.


ISACA’s CISM (Certified Information Security Manager) certification is a management-focused certification designed for professionals who design, build and manage enterprise information security programs. Achieving this leading information security credential will help you join a growing and elite network.

Live Online: Our 100% online training course is structured but flexible. We couple live online teaching component with a powerful learning management system hosting all of the learning tools students need.

On-Demand: Benefit from all of the tools available within the Live Online program with even greater flexibility. Students can instantly access all course content and progress through the course at their desired pace.

Live Online Classroom

Light Board Technology: All Certify courses feature light board lectures. It’s like a glass chalkboard pumped full of light so the writing glows while the instructor looks into the camera. This isn’t death by PowerPoint.

Smarter training across the four domains.

Click to expand into sub-domains. 

Domain 1: Information Security Governance

  • 1 Introduction
  • 1.1 Information Security Governance Overview
  • 1.2 Effective Information Security Governance
  • 1.3 Roles and Responsibilities
  • 1.4 Risk Management Roles and Responsibilities
  • 1.5 Governance of Third-Party Relationships
  • 1.6 Information Security Governance Metrics
  • 1.7 Information Security Strategy Overview
  • 1.8 Information Security Strategy Objectives
  • 1.9 Determining the Current State of Security
  • 1.1 Information Security Strategy Development
  • 1.11 Strategy Resources
  • 1.12 Strategy Constraints
  • 1.13 Action Plan to Implement Strategy
  • 1.14 Information Security Program Objectives

Domain 2: Information Risk Management

  • 2 Introduction
  • 2.1 Risk Management Overview
  • 2.2 Risk Management Strategy
  • 2.3 Effective Information Risk Management
  • 2.4 Information Risk Management Concepts
  • 2.5 Implementing Risk Management
  • 2.6 Risk Assessment and Analysis Methodologies
  • 2.7 Risk Assessment
  • 2.8 Information Asset Classification
  • 2.9 Operational Risk Management
  • 2.1 Third-Party Providers
  • 2.11 Risk Management Integration with Life Cycle Process
  • 2.12 Security Control Baselines
  • 2.13 Risk Monitoring and Communication
  • 2.14 Training and Awareness
  • 2.15 Documentation

Domain 3: Information Security Program Development and Management

  • 3 Introduction
  • 3.1 Information Security Program Management Overview
  • 3.2 Information Security Program Objectives
  • 3.3 Information Security Program Concepts
  • 3.4 Scope and Charter of an Information Security Program
  • 3.5 The Information Security Management Framework
  • 3.6 Information Security Framework Components
  • 3.7 Defining and Information Security Program Road Map
  • 3.8 Information Security Infrastructure and Architecture
  • 3.9 Architecture Implementation
  • 3.1 Security Program Management and Administrative Activities
  • 3.11 Security Program Services and Operational Activities
  • 3.12 Controls and Countermeasures
  • 3.13 Security Program Metrics and Monitoring
  • 3.14 Common Information Security Program Challenges

Domain 4: Information Security Incident Management

  • 4 Introduction
  • 4.1 Incident Management Overview
  • 4.2 Incident Response Procedures
  • 4.3 Incident Management Organization
  • 4.4 Incident Management Resources
  • 4.5 Incident Management Objectives
  • 4.6 Incident Management Metrics and Indicators
  • 4.7 Defining Incident Management Procedures
  • 4.8 Current State of Incident Response Capability
  • 4.9 Developing an Incident Response Plan
  • 4.1 Business Continuity and Disaster Recovery Procedures
  • 4.11 Testing Incident Response and Business Continuity/ Disaster Recovery Plans
  • 4.12 Executing Response and Recovery Plans
  • 4.13 Post Incident Activities and Investigation

Who should earn the CISM?

The CISM is an advanced certification designed for experienced practitioners, managers, and executives. It covers a wide range of cybersecurity topics from a governance perspective.  This credential is well-suited for those in or aspiring to the following positions:

Chief Information Security Officer Security Manager
Director of Security Security Auditor
IS/IT Consultants Information Security Managers
Security Systems Engineer Security Consultant

The CISM also meets the U.S. Department of Defense Directive 8570.

About the Exam

The CISM certification from ISACA is a globally accepted standard of achievement in cybersecurity management, conveying that certification holders adapt technology to their enterprise and industry.

Performance-based Questions No
Exam Length 4 Hours, 150 Questions
Experience Level Manager
Pre-requisites 5 years experience
Exam Price  $575 member/ $760 non-member
Passing Score  450 (out of 800)

Free CISM Guide

The Anatomy of the CISM exam download dives into the CISM exam structure, content, application process, and general reasons as to why you should consider earning this in-demand cert.



Domain Foundations

Quiz Bank

More than 950 high quality practice questions. Want a quick 10 question quiz on a certain domain? Easy!

On-Demand Videos

Over 16 hours of short videos available. Content is delivered in 5-15 minute bite-sized chunks mapped to all of the sub-domains.

Performance Tracker

The Performance Tracker allows students to gauge progress and track improvement. Links directly to relevant videos.

Homestretch Tools

Summary Notes

We guide course studies with condensed fact sheets that focus on the most important concepts for easy retention.

Summary Videos

This 2-hour video series focuses on making connections across domains helping students to learn and retain the information for the long term.

Supplementary Videos

Includes three scenario videos, one management video, and one real life topics video.


400+ e-flashcards are available for students on any mobile device.

Additional Resources

Diagnostic Exam

Before students begin the course, a 100 question diagnostic exam will identify current areas of strength and weakness to help to focus efforts on growth and improvement.

Lesson Book

The CyberVista Lesson Book is a companion book to the live online sessions serving as the perfect place for note taking.


CISM Review Manual (15th Ed.) by ISACA

Midterm and Final Exam

A 100 question midterm and 150 question full-length final exam ensure that students complete the course prepared and confident to pass the CISM exam.


The schedule below is applicable to the Live Online version of the course. Within the Live Online course, students attend an online lecture three hours a week over while partnering with fellow students in our interactive, live online environment. 

CyberVista CISSP Training Learning Management System CISSP


CISM Training Course

Live Online

• Engaging Live Online Instruction
• ISACA Approved Course & Instructors
• Readiness Guarantee
• Exam Voucher Included
• Domain Foundations
• Homestretch Tools
• Additional Resources

CISM Training Course


• Flexible On-Demand Delivery
• ISACA Approved Course & Instructors
• Readiness Guarantee
• Exam Voucher Included
• Domain Foundations
• Homestretch Tools
• Additional Resources

Monthly Financing

For added flexibility and affordability, all individual students are welcome to take advantage of our partnership with Skills Fund offering monthly financing for all Certify courses.

For Business

If you are interested in training for a team or your organization, submit a request within CyberVista’s Enterprise Program. We offer scaled corporate discounts.

For Government

If you are interested in training for a public organization, agency, or government contractor, please review our Government Program. We can offer special government pricing on all courses.


Have questions?
Check out our frequently asked questions.


Test your skills with
free practice questions.


Check out the promotional offers
available for this month.


five stars

CISM Live Course

I took the Certified Information Security Manager (CISM) course with CyberVista and was extremely surprised at how they captured all the key points and presented it to students using an easy to follow format. The instructor was amazing! His energy level seemed to power the lightboard at times. The information was well organized, concise, and in-depth during our class. I currently hold an ISACA certification and I am prepared to take the CISM to advance my cyber security career.

five stars

Live Classroom for the Working Professional

CyberVista CISM Courses are great for the working professional. You can take the classes with you in the car, office, or from the house. When taking the course from a computer, you can interact with the instructor, ask questions, chat with your classmates and CyberVista provide breaks as if you were sitting in an actual classroom.

Expect homework. When you start the class you will take a pretest to assess your current skills, every week you will complete a test, and you will have both a midterm and a final exam. CyberVista wants each student to succeed and provides supplemental learning material on areas former students have struggled with learning. Oh and don’t forget the homework which is videos covering the same topics as the course presented in a slightly different way to help the material stick. CyberVista Courses are the most realistic class you can take and still be in the comfort of your own home.

five stars


I recently completed the online CISM course offered through Cybervista. I have had experience taking other courses through the government, academic institutions and other large international vendors and I can emphatically say that I have not been better prepared or more confident in taking an associated certification than with the Cybervista program.

The instructor was not only knowledgeable, but possessed the ability to convey the information in academic terms and from personal experiences. The content was well organized and thorough. The books were designed to really aid the student in putting the pieces together. The virtual classroom was cutting edge and first rate technology. Real time feedback, real time question and answers and quizzes. The staff had respect for those in the class who had other experiences and solicited others opinions.. I don’t see myself attending any other training at this point other than Cybervista.

Loading posts...
Sort Gallery
Enter your email here