Certified Chief Information Security Officer | CCISO
The CCISO Certification is an industry-leading program that recognizes the real-world experience necessary to succeed at the highest executive levels of information security.
Virtual Training or e-Learning?
We offer flexibility. You can choose from our selection of in-class courses as well as online courses.
Try a live virtual courseTarget audience
The Certified CISO (CCISO) EC-Council program is the first of its kind training and certification program aimed at producing top-level information security executives.
The CCISO does not focus solely on technical knowledge but on the axplication of information security management principles from an executive management point of view.
Each segment of the program has been developed with the aspiring CCISO in mind and looks to transfer the knowledge of seasoned professionals to the next generation in the areas that are most critical in the development and maintenance of a successful information security program.
Course Objectives
- Prepare for the CCISO exam
- Plan security and financial strategies
- Navigate the day-to-day responsibilities of a CISO
- Align CISO tasks with business goals and risk tolerance
- Consider the technical aspects of the CISO role from an executive perspective
5 Domains
Governance and Risk Management
Information Security Controls, Compliance and Audit Management
Security Program Management and Operation
Information Security Core Competencies
Strategic Planning, Finance, Procurement and Vendor Management
This domain covers the importance of Governance, including solid policy writing, aligning the security program to industry-recognized frameworks, and adhering to sometimes contradicting law and regulations.
This domain focuses on Management Controls, Audit Management, and Risk Management, leading students through detailed examples of how to run an audit as well as implement audit findings, choosing the correct management controls for each situation, and the importance of understanding asset value, risk tolerance, and risk treatment plans.
This domain focuses on what makes up the bulk of a CISO’s day – Project Management and the importance of ensuring information security is part of projects from their inception.
This is the only CCISO Domain that focuses on technical topics as a high level of technical proficiency is assumed of all CCISO students. Domain 4 stresses the importance of understanding technology and information security core concepts in order to lead teams of technicians and analysts and make decisions around technology issues. Technical issues are addressed from an executive point of view.
This domain consists of content regarding leadership, aligning security programs to the overall goals of the business, strategic management, executive buy-in, financial management and much more. Domain 5’s content sets the CCISO program apart from all other infosec management certifications on the market by teaching the content that technical CISOs are usually lacking.
Agenda
Day 1Hide agendaOpen agenda
Governance and Risk Management
- Define, Implement, Manage, and Maintain an Information Security Governance Program
- Information Security Drivers
- Establishing an information security management structure
- Laws/Regulations/Standards as drivers of Organizational Policy/Standards/Procedures
- Managing an enterprise information security compliance program
- Introduction to Risk Management
Day 2Hide agendaOpen agenda
** Information Security Controls, Compliance and Audit Management**
- Information Security Controls
- Compliance Management
- Guidelines, Good and Best Practices
- Audit Management
Day 3Hide agendaOpen agenda
Security Program Management & Operations
- Program Management
- Operations Management
Day 4Hide agendaOpen agenda
Information Security Core Competencies
- Access Control
- Physical Security
- Network Security
- Certified Chief
- Endpoint Protection
- Application Security
- Encryption Technologies
- Virtualization Security
- Cloud Computing Security
- Transformative Technologies
Day 5Hide agendaOpen agenda
Strategic Planning, Finance, Procurement and Vendor Management
- Strategic Planning
- Designing, Developing, and Maintaining an Enterprise Information Security Program
- Understanding the Enterprise Architecture (EA)
- Finance
- Procurement
- Vendor Management
- Summary
The Certified CISO (CCISO) program is the first of its kind training and certification program aimed at producing top-level information security executives. The CCISO does not focus solely on technical knowledge but on the application of information security management principles from an executive management point of view.
- Block duration 60 minutes
- Hours 40 hours
- Refreshments Yes
- Exam No
Prerequisites
In order to qualify to sit for the CCISO Exam without taking any training, candidates must have five years of experience in each of the 5 CCISO domains verified via the Exam Eligibility Application.
To sit for the exam after taking training, candidates must have five years of experience in three of the five CCISO Domains verified via the Exam Eligibility Application.
Prerequisites
Applicants who would like to sit for the CCISO Exam will be required to fill out and return the Exam Eligibility Application proving that in addition to the the training, they also have
5 years of IS management experience in 3 of the 5 CCISO Domains.
Once that application has been approved, instructions for purchasing a Pearson VUE voucher will be issued. Applicants who do not meet these requirements have the option of sitting for the EC-Council Information Security Manager (E|ISM) exam as part of the Associate CCISO Program.
Exam format
In order to earn the CCISO, every applicant must pass the exam covering all 5 CCISO domains, regardless of experience in each domain. The questions on the exam require extensive thought and evaluation.
Exam:
- 2.5 hours
- 150 multiple-choice questions
- 3 cognitive levels - Knowlege, Application, Analysis
- 3 cognitive levels are on the tested on the CISSO exam, but only two levels are tested on the EISM exam
- Depending on which exam form is challenged, cut scores can range from 60% to 85%
Graduate ratings
What makes our references exceptional? They are not one-off events. Clients come back to us regularly.
View the full list of reference clients.
Not sure if this is the right courese for you? Get in touch!
For assistance please give us a call.
We are available at +420 222 553 101 Always Monday to Friday: 9am - 5pm.
Cannot call? Send us a message.
Would you like a gift for your birtday?
