加入 Systematic Facebook 擁躉群  

這個頁面上的內容需要較新版本的 Adobe Flash Player。

取得 Adobe Flash Player


想定期知道最新課程及優惠嗎?
免費訂閱本中心的課程通訊!

課堂錄影隨時睇 10 大優點之低至 85 折:回饋社會及協助全港市民進修增值,本中心現正推出低至 85 折優惠!

CISM 國際認可證書課程

  • 課程時間
  • 課程簡介
  • 課程特點
  • 考試須知
  • 課程內容

傳統服務:課程上堂時間表 (地點:旺角   總費用:$2,380)

超震撼: 凡於 2018年 9月 28日 (五) 或之前報讀本課程,
原價 $2,980,現只需
$2,380!

編號 日期 (dd/mm) 星期 時間 費用 導師  
PP1160EM  17/11 - 24/11
17/11, 24/11
 下載詳細上課日期
2:30pm - 9:30pm (dinner: 5:30pm-6:30pm) $2,380 Franco 按此報名

*** 質素保證:免費於任何地點試睇首 1 小時課堂錄影,從而可預先了解導師及教材的質素,才報讀課程來上堂。***
請致電與本中心職員預約。 查看各地點電話
旺角 2332-6544
觀塘 3563-8425
北角 3580-1893
沙田 2151-9360
屯門 3523-1560

免費補堂: 學員可於任何地點補看課堂錄影,從而可銜接往後的課堂!
免費重讀: 學員可於課程結束後三個月內於任何地點不限次數地重看課堂錄影,從而可反覆重溫整個課程!
課時: 12 小時
課堂導師: Franco (任教課程清單)

傳統服務的免費補堂或免費重讀,若選擇旺角或觀塘的閒日星期一至四,便需於 6:30p.m. 或之前完成觀看課堂錄影。


地區 地址 電話 教育局註冊編號
旺角 九龍旺角亞皆老街 109 號,皆旺商業大廈 18 樓 2332-6544 533459
觀塘 九龍觀塘成業街 7 號寧晉中心 12 樓 G2 室 3563-8425 588571
北角 香港北角馬寶道 41-47 號華寶商業大廈 3 樓 01-02 號舖 3580-1893 591262
沙田 新界沙田石門安群街 3 號京瑞廣場 1 期 10 樓 M 室 2151-9360 604488
屯門 新界屯門屯喜路 2 號屯門柏麗廣場 17 樓 1708 室 3523-1560 592552
注意! 客戶必須查問報讀學校的教育局註冊編號,以確認該校為註冊學校,以免蒙受不必要的損失!


ISACA® 成立於 1969 年,多年來不斷參與各項系統確認性與安全、企業資訊治理及資訊風險的活動,口碑載譽。

ISACA® 會員遍佈逾 180 個國家,總數超過 140,000 人。其頒授的全球認可的國際資訊安全經理人 (CISM® - Certified Information Security Manager®) 資格,更是各位資訊管理人員必考的證書。

CISM 認證是為信息安全經理和處理信息安全管理職責的專業人員而設計。擁有 CISM 認證標誌著該專業人員具備信息風險管理,同時在管理和設計資訊安全計劃上具備認可的專業知識。


課程時數: 合共 12 小時 (共 4 堂)
適合人士: 具備 5 年或以上安全管理工作經驗
授課語言: 以廣東話為主,輔以英語
課程筆記: 本中心導師親自編寫英文為主筆記,而部份英文字附有中文對照。

1. Franco Tsang (CCIE #19772) 親自教授: 本課程由擁有 CISM, CISA, CISSP, ITIL Expert 的 Franco Tsang 親自教授。
2. Franco Tsang 親自編寫筆記: Franco 親自編寫英文為主筆記,而部份英文字附有中文對照,令你無須「死鋤」如字典般厚及不適合香港讀書格調的書本。
3. 理論與考試並重: Franco 會在課堂上深入淺出地講解相關概念,務求令同學理解抽象的電腦信息風險管理、管理和設計資訊安全計劃概念。並會在課堂上操練具質素的題目以應用所學的知識。
4. 免費重讀: 傳統課堂學員可於課程結束後三個月內免費重看課堂錄影。

Since 2017, CBT (Computer-Based Testing) for the CISA, CRISC, CISM, and CGEIT certifications will be offered during three testing windows of eight-week durations.

通過考試後,同學需要

  • 具備 5 年或以上安全管理工作經驗
  • 同意遵守 ISACA 制定的職業道德準則
  • 提交 CISM 申請表

完成上述事項後,便能成為 CISM。

本中心為 PSI 指定的 CISM 考試試場,導師會在課堂上講解考試程序。考試費用如下:

  • ISACA Member: US $575
  • ISACA Nonmember: US $760



1. Information Security Governance

  • Develop an IS strategy aligned with organization / business goals and objectives.
  • Align IS strategy with corporate governance.
  • Develop business cases justifying investment in information security.
  • Identify current and potential legal and regulatory requirements affecting information security.
  • Identify factors affecting the organization and their impact on information security.
  • Gain or obtain senior management commitment to information security.
  • Define roles and responsibilities for information security throughout the organization.
  • Establish internal and external reporting and communication channels that support information security.
  • Go through and practice questions of this domain

2. Information Risk Management

  • Establish information asset classification and ownership.
  • Implement a structured information risk assessment process.
  • Ensure that business impact assessments are conducted periodically.
  • Plan ongoing threat and vulnerability evaluations.
  • Identify and evaluate information security controls and their countermeasures to mitigate risks to acceptable levels.
  • Integrate risk, threat and vulnerability identification and management into life cycle processes
  • Report changes in information risk to appropriate levels of management for acceptance on both a periodic and event-driven basis.
  • Go through and practice questions of this domain

3. Information Security Program Development and Management

  • Develop and maintain plans to implement the information security strategy.
  • Specify the activities to be performed within the information security program.
  • Ensure alignment between the information security program and other assurance functions
  • Identify internal and external resources
  • Ensure the development of information security architectures
  • Establish, communicate and maintain information security policies that support the security strategy.
  • Design and develop a program for information security awareness, training and education.
  • Ensure the development, communication and maintenance of standards, procedures and other documentation
  • Integrate information security requirements into the organization’s processes
  • Develop a process to integrate information security controls into contracts
  • Establish metrics to evaluate the effectiveness of the information security program.
  • Information Security Program Management
  • Incident Management and Response
  • Manage organization resources
  • Ensure that processes and procedures are performed in compliance with the organization’s IS policies.
  • Ensure that IS is an integral part of the systems development process.
  • Ensure that IS is maintained throughout the organization’s processes and lifecycle activities.
  • Provide IS advice and guidance to the organization.
  • Provide IS awareness, training and education to stakeholders.
  • Monitor, measure, and report on the effectiveness and efficiency of IS controls and compliance with IS policies.
  • Ensure that noncompliance issues and other variances are resolved in a timely manner.
  • Go through and practice questions of this domain

4. Information Security Incident Management

  • Plan, develop and implement processes for detecting, identifying, analyzing and responding to information security incidents.
  • Establish escalation and communication processes and lines of authority.
  • Develop plans to respond to and document information security incidents.
  • Plan and establish the ability to investigate information security incidents.
  • Develop a process to communicate with internal parties and external organizations.
  • Integrate information security incident response plans with the organization’s DRP and BCP.
  • Develop a team to respond to information security incidents.
  • Periodically test and improve information security incident response plans.
  • Manage the response to information security incidents.
  • Conduct reviews to identify causes of information security incidents.
  • Develop corrective actions.
  • Go through and practice questions of this domain

The course content above may change at any time without notice in order to better reflect the content of the examination.


 

更多綜合課程
  法律課程
  • 代理人的法律責任
  • 公司董事和合夥人的法律責任
  • 婚姻的法律責任
  • 遺產繼承的合法權益
  英文課程
  • IPA 拼音:級別 1 2 3 4
  普通話課程
  • 基礎普通話拼音 (免費)
  • 進階普通話拼音
  • 普通話會話:級別 1 2 3
  西班牙語文課程
  • 級別 1 2 3
  中醫課程
  • 濕疹與皮膚敏感病
  • 暗瘡與色斑 | 鼻敏感與感冒
  • 脫髮與白髮 | 從五官看健康
  攝影課程
  • 攝影初級
  • 攝影中級 (風景專題)
  風水命理課程
  • 紫微斗數:級別 1 2 3
  • 子平八字:級別 1 2 3
  • 八字風水:級別 1 2 3
  • 奇門遁甲:級別 1 2 3

這個頁面上的內容需要較新版本的 Adobe Flash Player。

取得 Adobe Flash Player