Cyber Security
Certified Information Security Manager
IITCC-ISM-CP · IITCC™ Certified Professional · 2025
Study Duration
90–120 hours
Credential Level
IITCC™ Certified Professional
Assessment
Case study analysis
Pass Mark
72%
About This Certification
The IITCC™ Certified Information Security Manager credential is designed for security professionals moving into governance and management roles. It validates the ability to design, oversee, and align an organisation's information security programme with business objectives, risk appetite, and regulatory obligations.
Programme Content
What You Will Study
01
Information Security Governance
- Security strategy alignment with business goals
- Board and executive reporting
- Security metrics and KPIs
- Security governance frameworks: COBIT, ISO 27001
02
Information Risk Management
- Enterprise risk identification and assessment
- Risk treatment options: accept, mitigate, transfer
- Risk register management
- Third-party and supply chain risk
03
Security Programme Development
- Building and managing a security team
- Security policy and procedure development
- Security awareness training programmes
- Budget planning for security initiatives
04
Incident Management & Response
- Building an incident response capability
- Crisis communication and escalation procedures
- Post-incident review and lessons learned
- Coordination with law enforcement
05
Regulatory & Legal Compliance
- Data protection regulations: GDPR, PDPA
- Industry-specific compliance: PCI-DSS, HIPAA
- Internal audit and assurance
- Vendor due diligence and contractual obligations
06
Business Continuity & Disaster Recovery
- BIA and recovery time objectives
- Disaster recovery planning and testing
- Crisis management frameworks
- Resilience by design
What You Will Demonstrate
Skills Validated
Design and govern an organisation-wide information security programme
Manage enterprise security risk within a business context
Develop security policies, procedures, and awareness programmes
Oversee incident response and crisis management
Ensure compliance with regulatory and legal obligations
Ideal Candidates
Who Should Enrol
Senior security professionals targeting CISO or security manager roles
IT managers assuming security governance responsibilities
Risk and compliance professionals in financial and regulated industries
Security consultants advising at the strategic level
Certification Assessment
How You Are Assessed
Assessment Format
Case study analysis + examination
Duration
3 hours
Pass Mark
72%
Attempts
Up to 2 attempts included
Upon Successful Completion
IITCC™ Digital Certificate of Professional Competence
Blockchain-secured credential badge (Edubuk)
Unique Certification ID for employer verification
Skill transcript for LinkedIn and job applications
Project Validation Record (where applicable)
Employer Readiness Score
Get Certified
Ready to Enrol?
Submit your enrolment enquiry and our team will be in touch within 3 business days with full programme details, study resources, and next steps.