CHAPTER 6
Information Security Program Management
In this chapter, you will learn about
• Controls and control design
• Managing controls throughout their life cycle
• Assessing controls to determine effectiveness
• Reducing risk by conducting security awareness training
• Identifying and managing third-party service providers
• Communicating and reporting the state of the security program
This chapter covers Certified Information Security Manager (CISM) Domain 3, “Information Security Program,” part B, “Information Security Program Management.” The entire Information Security Program domain represents 33 percent of the CISM examination.
Supporting Tasks in the CISM job practice that align with the Information Security Program ...
Get CISM Certified Information Security Manager All-in-One Exam Guide, Second Edition, 2nd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.