CISM: Domain 2 - Module 3

This section of the CISM Domains focuses on creating and implementing an action plan for risk management. We'll look at how to build a risk management program and the people and processes involved in that. You'll learn how training, assessment, and awareness are essential for keeping the program running smoothly.

Finally, we'll take a look at the technical aspects of managing risk and setting standards to ensure risks are mitigating effectively.

Learning Objectives

• Get a solid understanding of how to build risk management action plan
• Understand how people and process are essential for risk management
• Learn about training, the technical aspects, and standards for risk management

Intended Audience

This lesson is intended for anyone preparing for the Certified Information Security Management exam or anyone who is simply interested in improving their knowledge of information security governance.

Prerequisites

Before taking this lesson, we recommend taking the CISM Foundations course first.