Skip to main content

Certified Information Security Manager – CISM

Awarding body

Information Systems Audit and Control Association (ISACA).


Information Technology (IT)

This program is about:

Designing for IT professionals with technical expertise and experience in IS/IT security and control looking to transition from team player to manager. CISM can add credibility and confidence to interactions with internal and external stakeholders and peers and regulators.

It indicates expertise in information security governance, program development and management, incident management and risk management. Professional IT are mid-career aspiring to senior management roles in IT security and control, CISM can get the professional the visibility he/she needs.

At the end of the program, you will be able to:

  1. Identify internal and external influences on the organization that impact the information security strategy.
  2. Participate in and/or oversee the risk identification, risk assessment and risk treatment process.
  3. Compile and present reports to key stakeholders on the activities, trends, and overall effectiveness of the information security program.
  4. Establish and maintain an incident response plan, in alignment with the business continuity plan, and disaster recovery plan.

The program provide you with:

  1. Domain 1: Information security governance.
  2. Domain 2: Information security risk management.
  3. Domain 3: Information security program
  4. Domain 4: Incident management

The program is suitable for:

  • Profession level: Managers, directors, and consultants responsible for IT security, compliance, risk, and privacy.
  • Education level: CISA Certification, Diploma or BA degree in IT fields and related fields of science and preferably with some work experience.

Awarding body:

Information Systems Audit and Control Association (ISACA)


Information Technology (IT)

Type of certificate:



Online Exam

Career progression:

It leads to higher career levels:


Enma Institue

Tamkeen support scheme:

Professional Scheme

Learner Obligations:

Compliance to program rules & regulations set by the institute and awarding body.


  • Domain 1: Information Security Governance
  • Domain 2: Information Security Risk Management
  • Domain 3: Information Security Program
  • Domain 4: Incident Management

40 hours




Certified Information Security Manager – CISM







Program Cost

1,200 BD

Supported by