cybersecurity company logo

Certified Chief Information Security Officer (CCISO) Training

Certified Chief Information Security Officer (CCISO) is an industry-leading cyber security program that recognizes the real-world experience necessary to succeed at the highest executive levels of information security. Essentially, CCISO aims to bridge the gap between the executive management knowledge that CISOs need and the technical knowledge that many aspiring CISOs have. The course focuses on five key areas – governance, risk management, information security controls, IS management & controls and national and international security standards. The course prepares individuals for executive-level management responsibilities, providing knowledge to establish and maintain high-level information security programs and is ideal for aspiring CISOs and current IT security heads aiming to enhance their skills and knowledge in information security management.

The AegiSec 5-day training aims to teach the learners all of the components required for C-level positions. The participants will analyse a combination of topics such as audit management, governance, IS controls, human capital management, strategic program development etc from the EC-Council’s five information security management domains. The curriculum is tailored and aligned to the CCISO certification and is designed by trained instructors and established Chief Information Security Officers (CISO).

 

Learning Objectives of AegiSec CCISO Training

  • Gain thorough understanding of all five domains of the CCISO exam.
  • Governance, Risk and Compliance; information security management program, defining an information security governance program, regulatory and legal compliance, risk management
  • Information Security Controls and Audit Management; designing, deploying, and managing security controls, understanding security controls types and objectives, implementing control assurance frameworks, understanding the audit management process
  • Security Program Management & Operations; the role of the CISO, information security projects, integration of security requirements into other operational processes (change management, version control, disaster recovery etc)
  • Information Security Core Concepts; access controls, physical security, disaster recovery and business continuity planning, network security, threat and vulnerability management, application security, system security, encryption, vulnerability assessments and penetration testing, computer forensics and incident response
  • Strategic Planning, Finance, Procurement and Third-Party Management; security strategic planning, alignment with business goals and risk tolerance, emerging trends, KPI, financial planning, development of business cases for security, analysing, forecasting, and developing a capital expense budget, analysing, forecasting, and developing an operating expense budget, ROI and cost-benefit analysis, vendor management, integrating security requirements into the contractual agreement and procurement process

Training Duration: 40 hours

Delivery Format:        

  • Regular Batch – One week (5 weekdays, 8 hours per day)
  • Weekend Batch – Two weeks (Sat, Sun – 10 hours per day)

CCISO Exam Domains and Weightage

  • Domain 1: Governance, Risk, Compliance – 21%
  • Domain 2: Information Security Controls and Audit Management – 20%
  • Domain 3: Security Program Management and Operations – 21%
  • Domain 4: Information Security Core Concepts – 19%
  • Domain 5: Strategic Planning, Finance, Procurement, Third-Party Management- 19%

Target Audience

The CCISO certification is ideal for current C-Level managers looking to improve their technical competencies, cybersecurity professionals interested in advancing their careers, Information Security team leaders aiming for high-level management roles.

Experience Requirement for CCISO Certification

Candidates who aim to earn the CCISO certification must show experience in all five CCISO domains via the application process to take the CCISO Exam and earn the certification. Credit towards experience is granted in certain domains in the case of industry-accepted, professional certifications and higher degrees in information security as prescribed by EC-Council. Applicants can get a maximum waiver of 3 years of experience for each domain.

Scroll to Top