CISM – Certified Information Security Manager

Training Courses and Certification Exam Preparation

IS security and governance

CISM is the only globally recognized certification in the fields of IS management and governance. It has earned a great reputation internationally for many years, as it sets a high and consistent standard worldwide. 

The CISM Job Practice Area consists of five “domains”, 37 “tasks” and 60 “knowledge statements”. Because the different tasks refer to the relevant COBIT processes, COBIT is an integral part of the CISM training and certification.

This training is organized by ACTAGIS SA in collaboration with Swiss Chapter of ISACA (www.isaca.ch).

Official BCI Certification

Official CISM ISACA Training

ACTAGIS, as the exclusive partner of ISACA for Switzerland, proposes learning and preparation classes for CISM certification.

We guarantee your exam success

We will support you until you pass the exam of the course in which you enrol (some conditions apply). We offer the official mock exams to help you prepare.

Real life project experience

Our trainers have extensive practical experience in implementing cyber security frameworks and programs in large organizations and are certified GDPR, CISSP, ISO 27001, SABSA, and COBIT5.

Hands-on exercises

Hands-on exercises

The training is a combination of directly applicable theory, hands-on exercises, feedback from experience and class interaction.

Small classes

Small classes

The exchange of experience being crucial, our classes include a minimum of 3 and maximum of 10 participants.

English and French

English and French

The course is available in English and in French.

What our clients are saying

"Thank you for the great course. I did really enjoy it and got a lot of new insights and a much better understanding about what matters in a Business Continuity Management System"

-Dieter Gramberg, Business Continuity Manager, Novartis Pharma AG

“I often find that you learn more from the experience of people in the room than anything in the training material and this was definitely the case at ACTAGIS. Jeff has a wealth of experience and he did an excellent job of adapting his delivery the training to the needs of the class.”

-Anthony Scarfe, Information Security Services Specialist

"I thank ACTAGIS, and especially Jeff Primus, for organizing the GDPR - Certified Data Protection Officer –training, which is very useful to me in the context of my professional activities and which I strongly recommend. Organizing trainings for a limited number of participants enables to take full advantage of the courses and to exchange interesting information more easily between professionals active in that domain”

-Chiara Tanteri - Vice-présidence pour les systèmes d’information, Ecole Polytechnique Fédérale de Lausanne (EPFL)

"A great course and a serious levelling up with a good dive into the universe of CISA."

-Josselin Renard, IT Systems Auditor, UBS

"Jeff Primus provided a great CISA training. His motivation, engagement and professionalism made the training really interesting and easy to understand. I enjoyed to take part in this training and would like to thank ACTAGIS for helping me to succeed the CISA exam."

-Melany Scherer, Global IT Audit - Compliance, Jet Aviation AG

“The course was highly interesting. The tools for managing a Business Continuity Program were teached in a very descriptive and understandable way. I can recommend this course to everybody having a key position in a Business Continuity Program.”

-Philip Sauter, Business Continuity Manager, ISS Facility Services AG

"Attending the GDPR - Certified Data Protection Officer – training provided by ACTAGIS was at the same time a challenge and a pleasure. The content was extremely interesting and provided by a highly skilled trainer. The setup of the classroom, the small group and the given material contributed to make it successful."

-Grégoire Ramuz - CIO, Transports publics fribourgeois

“ACTAGIS trainer has first hand experience in most the domains covered by the CISA program. This proved to be invaluable in making ISACA’s somewhat theoretical subjects very tangible and meaningful. Many thanks for this great step towards the CISA certification.”

-Tom Royston, CIO

“During all of the CISA, CBCI and ISO 27001 LI sessions, the consultant openly shared his insightful experiences, carefully listened to all of the participants’ most puzzling questions, remarks, criticisms… and gave precious explanations, recommendations and advice.”

-Savrak Sar, Head of IT, Haute école pédagogique

At our BCI certification training, the trainer managed not only to cover perfectly the specific, certification-related topics but he also opened windows and connections to other standardization bodies. It was an excellent week enriching our knowledge broadly. Thank you!

-Christoph Teuber, Group Safety & Security Manager, Swiss Re

"The Business Continuity (BC) course with ACTAGIS enabled me to consolidate and reinforce the knowledge related to the domain. A successful training that will help me to bring BC practices in my company at a higher professional level."

-Paulo Grilo, Directeur Etudes & Développements, TUI France

“I thank ACTAGIS' BC-trainer for his professionalism and his motivation during this course which allowed me to obtain the CBCI certification. I recommend this training to anyone who wishes to strengthen and consolidate the topic of Business Continuity."

-Jean-Charles Coral, BC Manager, Nestlé Switzerland

“I had a great pleasure participating to the ISO 9001 Lead Implenter training provided by Jeff Primus from ACTAGIS. His engagement, professionalism, motivation and technical expertise gave me full satisfaction. Eeased by his ability of communication, I had no difficulties to assimilate the content of the course. Without any hesitation, I gladly recommend ACTAGIS to everyone who needs guidance for SMQ implementation projects.”

-Mehmed Cormehic, Continuous improvement project manager, GOLDEC SA

"I thank the consultant for this ISO 27001 training. His pedagogy, technical expertise and long experience in the field make the difference and bring real added value. Course materials are of high quality and the exchanges throughout this training allowed me to assimilate the material and go beyond theory."

-Daniel Meier, Head Internal Audit, Vaudoise Assurances


Modular approach

The course is presented in two modules:

  • Module 1 is a detailed 10 day course covering all CISM material
  • Module 2 is a 3 day exam preparation session
ISACA CISM

Certification organisations

ISACA - CISA

ITACS - CISA

Certificate Sample

CISM Certificate Sample

Module 1

A detailed 10 day course

In this module, we will go through all CISM themes, in a detailed manner. This module contains:

  • Theoretical and conceptual sections
  • Case studies
  • Tests by theme
  • Group work
  • Interactive sessions

Module 1 is mostly aimed at the following profiles:

  • Chief Information Officer
  • Security Officer
  • IT project manager
  • Compliance Officer
  • IT Architect
  • IT Resources Manager

Module 1 of this course is subdivided into 9 chapters, covering all CISM Job Practice Areas in details, by going through the following chapters:

  1. Introduction (1 day): ISACA, CISM Job Practice Areas, course concept, learning technique, personal study
  2. Basics (2 days): IT risk management & ICS (Internal Control System), IT governance
  3. Application lifecycle (1 day): Project management, software development, integration, security, user controls
  4. Organisational security (1 day): Economic & IT criminality, risk analysis, cultural aspects of security, awareness-training
  5. Risk management (1 day): Identification, assessment and management of IT risks. Comparison of various frameworks such as ISO 27005, RiskIT
  6. Performance management (1 day): Maturity models, Key Performance Indicators, Balanced Score Card, Benchmarking
  7. Security management (1 day): Design and implementation of an Information Systems Management System (ISMS), ISO 2700x, CobiT Security Baseline, certification
  8. Technical security (1 day): Physical security, IT protection against fire, telecommunication security, encryption
  9. Incident management (1 day): Incident management, IT Disaster Recovery, Business Continuity Management (BCM)

Days

Courses with guaranteed dates
are highlighted in green
(subject to availability)

Upcoming courses

Course dates can be based on your requirements. Please contact us for the corresponding in-house or public session trainings, so that we can propose sessions taking into account your availability.

Module 2

A 3 day exam preparation session

Building on pre-course preparation work, we will go through all the CISM domains and conclude the course with a realistic test examination followed by an evaluation and discussions. With the appropriate level of personal preparation, you will acquire the necessary knowledge to be able to pass the CISM exam. Our aim is to optimally prepare you for this challenging test, by going through the Job Practice Area and by offering a realistic test exam.

This training is intended to professionals who have already had IT experience. It is recommended for the participants to have a detailed knowledge of the CISM Job Practice Area and having read through the CISM Review Manual prior to taking the course and, ideally, to have several years of professional experience in different areas of IT. The CISM exam preparation course is aimed at all persons who deal with the governance, audit or security of information systems, such as:

  • Chief Information Officer
  • Security Officer
  • IT project manager
  • Compliance Officer
  • IT Architect
  • IT Resources Manager

Our instructors are all certified professionals, who bring with them over 20 years of field experience in the domain of IT security. Our course can be given in English and in French, and includes a realistic exam simulation, as well as two complete exams with personal detailed analysis, in English. This is an intensive 4-days course for advanced participants who have already gone through the CISM Job Practice Area and the CISM Review Manual.

The first two and a half days of the course consist of an intensive and systematic review of all tasks within the CISM Job Practice Area. Here the aspects which are important from the examination perspective are presented, without going into the details of each task, which is why some level of expertise is required. Those who would like to study all CISM tasks in detail should join our advanced course. Following the first two and a half days, a realistic test examination is organized (in English) during half a day. After this four-hour test exam we will provide you with a personal evaluation of the 200 multiple choice questions and discuss the results during the following course day. You will also be provided with a second test, which you can perform on your own time. We will then correct it and send you back your results. The domains covered by this certification are:

  1. Information Security Governance (24%)
  2. Risk Management (33%)
  3. Implementation of an Information Security Program (25%)
  4. Information Security Incidents Management (18%)
  • CISA tasks: some
  • CISM tasks: all
  • CGEIT tasks: some
  • CRISC tasks: some
  • COBIT5 processes: (all)

In order to become CISM-certified, and in addition to passing the CISM exam, the candidate must have a minimum of five years of professional IS audit, control, assurance or security work experience. Substitution and waivers for professional experience include for example some university semester credit hours, a bachelor’s or master’s degree, or teaching experience in a related field. For more information please read the detailed course description at www.isaca.org.

The examination fees start at USD 450 for ISACA members and USD 635 for non-members (depending on how early you register).

Days

Courses with guaranteed dates
are highlighted in green
(subject to availability)

Upcoming courses

27nov(nov 27)09:0029(nov 29)16:30CISM - Module 2Geneva / Lausanne - Switzerland

10jan(jan 10)09:0012(jan 12)16:30CISM - Module 2Geneva / Lausanne - Switzerland

27mar(mar 27)09:0029(mar 29)16:30CISM - Module 2Geneva / Lausanne - Switzerland

07may(may 7)09:0009(may 9)16:30CISM - Module 2Geneva / Lausanne - Switzerland

03oct(oct 3)09:0005(oct 5)16:30CISM - Module 2Geneva / Lausanne - Switzerland

%

Exam pass rate

Up To Date

The “Actagis Guarantee” means that we will support you until you pass the exam of the course in which you enrol. Some limitations apply. See conditions.

You will be well prepared for the exam. Counting all our students, 98.3% have been successful.

All our courses are up to date. They have been adapted to the latest changes of the different exams. We are in constant contact with each certification organisation.

Interested? Ask us more!

Your interest

Your name (required)

Your email (required)

Your phone (required)

Your message

Actagis Academy

Learn more about Actagis Academy and how it can benefit you and your organisation.

Share This
X
X