C/CISO (Certified Chief Information Security Officer)
5-day training to become a Certified Chief Information Security Officer (C/CISO). C/CISO is the first and only certification in the world for CISOs and aspiring CISOs!
C/CISO (Certified Chief Information Security Officer) – mode of study
Option 1: 5-day in-class training (including the official EC-Council C/CISO exam)
Option 2: live online (remote)
Option 3: in-company training
Why become a Certified Chief Information Security Officer (C/CISO)?
Organizations are increasingly in need of a new set of skills and processes to ensure the security of information at a scale that will be required tomorrow. As a C/CISO, you possess the proven knowledge and experience to plan and oversee information security for the entire corporation. The C/CISO certification is the right choice for you and your career if you:
- Aspire to attain the most respected title within the information security profession: CISO
- Already serve as an official CISO, or
- Perform a CISO position in your organization without the official title
C/CISO at a glance
- C/CISO is the world's first and only certification for CISOs and aspiring CISOs
- C/CISO is globally recognized and backed by more than 1,500 C/CISOs around the globe
- The C/CISO content is mapped against NICE (National Initiative for Cyber Security Education)
- C/CISO is ranked as the top 5 amongst 800 certifications based on salary package
Why is the C/CISO certification important for an organization?
The C/CISO certification assures organizations that their certified professionals possess the necessary skills to identify factors that pose a risk to the successful operation of the organization and develop and implement technical, operational and procedural safeguards to manage those risks. C/CISOs are the leadership force that will protect the organization from undesired and costly security breaches by designing information security programs and leading a team of information security professionals.
C/CISO – toplevel certification training for Chief Information Security Officers
This 5-day C/CISO training has certified numerous leading information security professionals around the world. It is the first of its kind training and certification program aimed at producing top-level information security leaders. The C/CISO training does not focus solely on technical knowledge, but on the application of information security management principles from an executive management point of view. The program was developed by seasoned CISOs for current and aspiring CISOs.
The C/CISO program assumes a high-level understanding of technical topics and does not spend much time on strictly technical information, but rather on applying this technical knowledge in an information security executive's daily work. The C/CISO training aims to bridge the gap between the executive management knowledge that CISOs need and the technical knowledge that many aspiring CISOs have.
The C/CISO program has certified leading information security professionals around the world. The program is comprised of 3 components: training, the Body of Knowledge (BoK), and the C/CISO exam. The training consists of individualized instruction, hands-on labs, group exercises, and self testing.
EC-Council is the world's largest cyber security technical certification body and operates in more than 145 countries globally. EC-Council has trained and certified over 200,000 information security professionals worldwide. EC-Council is the owner and developer of the world-famous Certified Ethical Hacker (CEH) training and certification, Certified Security Analyst (ECSA)/Licensed Penetration Tester (LPT), Certified Threat Intelligence Analyst (C/TIA), among many others.
Who should be C/CISO trained and certified?
C/CISO is the step anyone interested in an executive career in information security should take after completing certification trainings like CISSP, CISA, CISM, etc. Are you working in a CISO position or do you want to work in a CISO position, then this is the training for you. The C/CISO designation is well-known, highly respected and often a certification requirement for professionals like security managers, security administrators, network engineers with a specialization in security, security specialists, security analysts, security engineers, security architects, risk officers, IT auditors, and many other information security professionals.
What will you learn in this top-level C/CISO training and certification program?
Upon completion of this C/CISO training, you will accomplish the following:
- Define, implement and manage an information security governance program that includes leadership, organizational structures and processes
- Assess the major enterprise risk factors for compliance
- Design and develop a program to monitor firewalls and identify firewall configuration issues
- Identify vulnerability and attacks associated with wireless networks and manage different wireless network security tools
- Deploy and manage anti-virus systems
- Understand various system-engineering practices
- Identify the volatile and persistent system information
- Develop and manage an organizational digital forensic program
- Identify the best practices to acquire, store and process digital evidence
- Define Key Performance Indicators (KPIs) and measure effectiveness on a continuous basis
- Allocate financial resources to projects, processes, and units within an information security program
- Identify and report financial metrics to stakeholders
- Understand the IA security requirements to be included in statements of work and other appropriate procurement documents in this C/CISO certification training program
There are no prerequisites to attend the C/CISO training. However, in order to sit the C/CISO exam, you must demonstrate 5 years of experience in 3 of the 5 C/CISO domains, verified via the EC-Council's exam eligibility application. You can substitute some of the experience requirements with experience waivers. These are available for some professional certifications, including CISSP, CISM, CISA, CRISC, CGEIT, LPT, EDRP, CIPP, PMP, ITIL and relevant higher education qualifications.
About the C/CISO domains
C/CISOs are certified in the knowledge of and experience in the following C/CISO domains:
- Domain I - covers policy, legal and compliance issues involved in the executive management of an information security program
- Domain II - is connected with audit and risk management, including understanding your organization's risk tolerance and managing accordingly
- Domain III - covers many of the day-to-day aspects of the CISO job including project, technology, and operations management
- Domain IV - delves into the technology of the CISO's role but from an executive perspective
- Domain V - covers finance and strategic management, some of the key skills that help CISOs rise to the level of their peer C-level executives
About the C/CISO exam
EC Council's exam to become a Certified Chief Information Security Officer (C/CISO) is scenario-based and consists of 150 multiple choice questions. The exams takes 2,5 hours of your time. The passing score is 72%. The delivery is computer-based and proctored by Pearson Vue at over 4,000 global testing centers, amongst which our training location. You can also choose to do your online exam remotely proctored in the comfort of your own working environment or at home.
C/CISO certification guarantee – try again for free!
Did you not pass the C/CISO exam? You may re-attend the C/CISO training within a period of 1 year free of charge.
CPE (Continuing Professional Education)
When you achieve your C/CISO certification you will earn CPE hours as well as EC-Council Continuing Education (ECE) credits.
Not yet qualified to take the C/CISO exam?
Should you not meet the minimum requirements for the C/CISO exam you can take the C/CISO training anyhow, but only those who qualify will be issued a C/CISO exam voucher. Do you not have the years of experience required for the C/CISO exam, you can take the EC-Council Information Security Manager (EISM) exam after the C/CISO training. EC-Council Information Security Managers (EISMs) may apply for the C/CISO exam once they have attained the required years of experience. The eligibility application fee is waived and EISMs will receive a 50% discount on the regular C/CISO exam fee.
C/CISO (Certified Chief Information Security Officer) – level of the training
The C/CISO training is lectured on a Bachelor level.
Renewal of your C/CISO certification
To renew your C/CISO certification you must satisfy the continuing education requirements of EC-Council and remit a renewal fee of USD 100.
Interesting trainings for you!
The following trainings could be relevant for you and/or your colleagues:
- Cyber Security Fundamentals certification
- Cyber Security Audit training and certification
- Cloud Security (CCSK) - public training or online
- Certified Cloud Security Professional (CCSP)
- ISO 31000 Risk Management
- Certified ISO 27005 Risk Manager
- Identity management & Access Control (IAM)
- Certified Secure Software Lifecycle Professional (CSSLP)
- Internet of Things (IoT) certification
- Master in Cyber Security
With at least 5 participants, an in-house training could be your best choice. An in-company training, customized to the needs of your organization, has many advantages and:
- saves you and your colleagues time
- enables you to train in the comfort of your own working environment
- saves travel and accommodation expenses
- can be arranged at a date and time convenient for you
- sensitive issues can be discussed openly since no outsiders are present
Do you prefer an in-company training? Please contact us for more information. We are more than happy to discuss the various possibilities with you.
C/CISO (Certified Chief Information Security Officer) – program
Governance (policy, legal & compliance)
- Information security management program
- Defining an information security governance program
- Regulatory and legal compliance
- Risk Management
Information security management controls en auditing management
- Designing, deploying, and managing security controls
- Understanding security control types and objectives
- Implementing control assurance frameworks
- Understanding the audit management process
Management – projects and operations (projects, technology & operations)
- The role of the CISO
- Information security projects
- Integration of security requirements into other operational processes (change management, version control, disaster recovery, etc.)
Information security core competencies
- Access controls
- Physical security
- Disaster recovery and Business Continuity Planning (BCP)
- Network security
- Threat and vulnerability management
- Application security
- System security
- Computer forensics and incident response
Strategic planning and finance
- Security strategic planning
- Alignment with business goals and risk tolerance
- Security emerging trends
- Key Performance Indicators (KPI)
- Financial planning
- Development of business cases for security
- Analysing, forecasting and developing a capital expense budget
- Analysing, forecasting and developing an operation expense budget
- Return on Investment (ROI) and cost-benefit analysis
- Vendor management
- Integrating security requirements into the contractual agreement and procurement process
Your instructor is a very experienced EC-Council accredited and certified trainer.
The C/CISO training consists of 5 days and will take place on a course location 1 hour away from Amsterdam (The Netherlands) on the following dates:
C/CISO (Certified Chief Information Security Officer) – training I
- 14 - 18 December 2020 (classroom or live online/remote)