Your browser is not supported any more. Download your preferred modern browser and STAY secure!

CISM Prep Course

Information Technology
Starting Soon
27 hours

Prepare for the CISM exam with the ISACA Athens Chapter and ISACA Accredited Trainers

65,000+ CISM credentials earned since its inception in 2002

CISM stands for Certified Information Security Manager and it is ISACA’s professional certification developed for mid-career IT professionals aspiring to senior management roles in IT security management.

With more than 145,000 members in over 180 countries, ISACA™ is a globally recognized leader in IT governance, control and assurance.  CISM initiated in 2003, is one of ISACA’s premium certifications with more than 50K certified professionals worldwide.  With the CISM, in contrast to other similar certifications, iyou can move your career out of the technical realm to senior management positions, because it proves your managerial expertise in aligning organization’s information security program with broader business goals and objectives.

The CISM Prep Course

This is the official CISΜ Prep Course offered by the ISACA Athens Chapter and association with the Hellenic American Union, and it is fully aligned with the CISM Review Manual. It is given by ISACA accredited trainers in accordance with ISACA’s Accredited Training Program launched in September 2017.

The course provides an in-depth knowledge on the following four CISM domains that are covered on the CISM exam.

  • Information Security Governance
  • Information Risk Management
  • Information Security Program Development & Management
  • Information Security Incident Management

This course is offered online (9 sessions) and in-class (4 days).

Special fees apply for ISACA members. Contact us at 210-3680064 to learn more about this offer.

CISM Prep course offers you the following:

  • 27 training hours with a thorough overview and key points of the 4 domain areas of  the CISM Exam
  • ISACA training material
  • Post-training access to the instructor for advice and support
  • Analysis of particular topics which are popular exam questions
  • Practice on the “philosophy” of the examination questions and testing conditions,
  • Reference tools
  • 27 CPEs

CISM is an exam that tests experience and experience cannot be taught.  However this course, will give you specific guidelines in your study by providing an overview of the core knowledge bases included in the CISM examination ‘Body of Knowledge’.

Following each section, you will work through a series of sample questions to give you a "feel" for the format and the types of questions you will encounter.

The instructor will provide you with many reference tools and study guides, together with the official ISACA training material. You should continue to study the course materials and rehearse the sample questions after the course until the exam date. Practice with as many sample questions as you can is a key factor for succeeding in the test.

To get the most out of this course, we recommend you acquire the CISM Review Manual from the ISACA bookstore, and read it at least once before attending this course.

The CISΜ certification is addressed to mid-career IT professionals who are responsible for information security programs. Typical participants in this course are:

  • IT Managers
  • IT Security Managers
  • CISOs
  • IT Consultants
  • IT Auditors
  • System Security Architects
  • Chief Compliance Executives
  • ISO Auditors & Professionals
  • IT Security Analysts
  • IT Risk Managers

CISM Certification pre-requisites

To certify with CISM, you must pass the CISM exam and also meet the following prerequisites:

A minimum of 5 years of experience in information security, with at least three years in the role of information security manager. Experience must be gained within the past 10 years of the application submission date.  This experience must be in at least three of the 4 CISM Job Practice Areas. Substitutions and waivers may apply for up to 2 years of experience, as follows:

  • Being certified with CISA, or CISSP, or having a post-graduate degree in information security or related filed( e.g. information systems) can substitute for 2 years of experience
  • 1 year of information systems management experience, or general security management experience, or being certified with certain skill-based or general security certifications (pls consult ISACA’s website for those certifications), may substitute for 1 year of experience
  • Completing an academic program on information security management at an institution aligned with ISACA’s Model Curriculum may substitute for 1 year of experience

These substitutions will not satisfy any portion of the 3-year information security management work experience requirement.

For more information on how to become a CISM professional visit

Introducing the CISM exam and CISM Certification

Domain 1—Information Security Governance - (24%) – How to establish and/or maintain an information security governance framework and supporting processes to ensure that the information security strategy is aligned with organizational goals and objectives. 

Domain 2—Information Risk Management - (30%) – How to manage information risk to an acceptable level based on risk appetite in order to meet organizational goals and objectives. 

Domain 3—Information Security Program Development and Management - (27%) -  How to develop and maintain an information security program that identifies, manages and protects the organization’s assets while aligning to information security strategy and business goals, thereby supporting an effective security posture. 

Domain 4— Information Security Incident Management - (19%) – How to plan, establish and manage the capability to detect, investigate, respond to and recover from information security incidents to minimize business impact.

The Anatomy of a CISM Question

  • Question writer rules

  • The best approach to the CISM exam

Exam Tips

Exam logistics

How difficult is the CISM exam? How long would it take to study?

CISM is a professional certification, therefore experience is critical. Experience can be a good judge since you must have already been exposed to a lot of theory and processes, but can also be a tricky advisor and mislead you away from the “by the book” approach of ISACA.  Therefore you need to study hard on the theory and the CISM Review Manual and then practice with as many sample questions as you can.

We recommend that you dedicate at least 2 to 3 months after completing this prep dourse and study every day from 1 to 3 hours.

Are CISM prep books included in the training?

No, our CISM Prep Course does not include CISM Training manuals.  The course only includes the training material provided by ISACA to the Accredited Trainers and Accredited Training Courses. We recommend you acquire the following books and prep material directly from the ISACA Bookstore. Members get discounted prices.  We also recommend you acquire e-books.

  • CISΜ Review Manual eBook, 15th Edition, Members price from $105, Non-members price from $135
  • CISM Review Questions, Answers & Explanations Database – 6th edition, Members price from $299, Non members from $399

Above prices may change at any time. Please visit / bookstore

How is this couse different from others?

This is an ISACA Accredited Course.  It includes ISACA Training Material. The Syllabus is designed according to ISACA standards and the trainers have following ISACA Training process.

The course also offers 27 CPEs.  CPEs are not required for getting the CISM Certification. CPEs of this course cannot be used after you certify with CISM for maintaining the certification. However they can count for any other ISACA Certification you may already have.

You are in good hands: This course is offered by the ISACA Athens Chapter and the Hellenic American Union. ISACA Athens Chapter is designated by ISACA to offer high quality training and networking opportunities to its members, whereas the Hellenic American Union is a training leader offering a great variety of professional certification programs and professional development solutions for over 25 years.

How do I register?

Register online! 

We recommend you become an ISACA member and get the discounted registration fee of 550 Euros. 

To become an ISACA member and register to our CISM prep course for the discounted fees, please proceed as follows:

1. Login in the official ISACA web site,

2. Fill in the membership form, pay the annual registration fee and acquire your Membership ID Nr.

3. Call us at 210-3680064, or 210-3680907 and one of our representatives will give you a voucher that will grant you the discounted fee of 550 Euros.

4. Login to our web site

5. Fill in the Registration form and in the check-out page fill in the Voucher Nr.

Get certified with CISM

CISM initiated in 2003, is one of ISACA’s premium certifications with more than 50K certified professionals worldwide. 

CISM proves your managerial expertise in aligning organization’s information security program with broader business goals and objectives.

Nikolaos Vasileiadis
CISM, CISA, CISSP, CDPSE, CRISC Managing Director, Tekpaths

Nikolaos is a member of ISACA Athens Chapter and responsible for preparing and delivering the ISACA Athens Chapter CISM Prep Course.  Nikolaos works in the field of IT Compliance and Process Opti ...

Learn more

Why certify with CISM

  • CISM demonstrates your experience in managing information security programs and can move up your career from technical to managerial roles
  • CISM is the only certification in the field of information technology that showcases managerial competencies in information security that go beyond technical skills or specific platforms, product or other related tools expertise. CISM shows leadership over the organization’s information security program.
  • According to ISACA, with the CISM you can gain up to 70% improved expertise in information security practices, and accomplish up to 90% more effective teams to handle enterprise and business systems security
  • CISM is among the highest-paying IT certifications, with an average salary of 115+K U.S.D
  • CISM is ranked among the top 15 paying certifications for the sixth straight year in the 2020

IT Skills and Salary Survey conducted by Global Knowledge.

  • With CISM you validate your information security expertise among your peers, managers, internal and external stakeholders, and compliance and regulatory professionals

How is CISM different from the other security certifications?  Certified Information Systems Security Practitioner (CISSP)?

What differentiates CISM from other security certifications is the experience required in information security management.

Other subject matter related certifications require technical skills or knowledge on specific platforms and/or products.  Usually, those certifications target technical experts or specialists in the earlier years of their career.  CISM targets professionals in mid level to senior level positions and in managerial roles. This is why CISM requires at least 3 years (with no waivers) in information security managerial roles.

As for CISSP: there are many differences between the body of knowledge required for CISSP and the 4 Job practice areas of CISM. CISSP is far more technical oriented than CISM. Also CISSP has no information security managerial requirements. CISSP and CISM complement each other.

How to apply for CISM

One must first pass the CISM exam and then proceed with the CISM certification application which includes information on:

  • At least 5 years of experience in information security, with at least three years in the role of information security manager. Experience must be gained within the past 10 years of the application submission date.  This experience must be in at least three of the 4 CISM Job Practice Areas (substitutions and waivers apply)
  • Adherence to the Code of Professional Ethics
  • Compliance with the CISM Continuing Professional Education Policy

Those who pass the test but do not have the experience required, have up to 5 years to meet the experience requirements.

How do I report my experience and who verifies it?

Your experience is independently verified in the Experience Verification Form by a supervisor, manager or client with whom you have worked. Verifiers fill out this form independently and return it to the candidate to include this in their certification application.  

The CISM Exam Format

Domain 1 – Information Security Governance (24%)

Domain 2 – Information Risk Management (30%)

Domain 3 – Information Security Program Development and Management (27%)

Domain 4 – Information Security Incident Management (19%)

  • 150 questions
  • 4 hours to complete the exam
  • Questions format: multiple-choice
  • Passing marks: 450 out of 800.  (The exam is graded on a scale of 200 to 800 points
  • CISM certification exams can now be taken via online remote proctored or at an in-person testing center.

When can I take the test?

There are no specific exam dates.  You can take the test online from anywhere, even at the comfort of your home, or you can take it in a designated computer lab.  There is one designated lab in Athens and one in Thessaloniki. Contact us for more information.

How much does it cost?

Cost varies whether you are an ISACA member or not. Members get better prices.

Here is an indicative list of CISM fees, including training:

CISM Exam fee: Members $575, Non-Members $760

ISACA membership fee: $145 (+$30 ISACA Athens Chapter dues – optional)

CISM manual 15 ed e-book: from $105

CISM database questions: from $299

CISM Certification application:$50 (non-refundable)

ISACA Athens Chapter prep course: Members Euros 550,  Non-members: Euros 850

To maintain your certification you must also pay a CISM certification maintenance fee of $85 every year.

Above fees are subject to change - please consult

I took the test and I passed – what next?

To renew your CISM certification you must attain 120 CPE hours every 3 year with a minimum of 20 CPE hours per year.  You must also pay a re-certification fee. See more at

During this course we explain all exam logistics and what you need to know to apply for the CISM certification and maintaining it. 

You can register, or have your employer register you up to one day before the start date of the program if there are still available places. Add the program to the shopping basket. The first time you place an order you need to register. For company registrations please check the box “I am booking on behalf of my company”. Then, you fill out your personal details and you select an invoice or receipt to be issued. Then you must pay the tuition fee. Payment is available by: a) debit, prepaid, or credit card (interest-free installments will be visible if available), b) Bank payment ID, that you can use to pay at the bank or via ebanking, or c) IRIS and direct debiting your bank account.

Please note that once you successfully place your order you will receive an automated confirmation message. This does not mean that your registration is complete. Your place is reserved once you pay the relevant tuition fee. When payment is visible, we will contact you to confirm your registration.

ISACA members fees: 550 Euros. Please contact us at 210-3680064, to learn more.




Zoom is a web-based video conferencing tool, compatible with Mac, Windows, Linux, iOS, and Android, that allows users to meet and attend classes online. You can use Zoom from your PC or laptop, but also from your iPad or smartphone. You will have to download Zoom to one of your devices to be able to attend this program. We will send you a step-by-step guide once you register. If you use your PC or laptop you will also need a webcam, microphone, and speaker. Most computers have a microphone and speaker, but you can also use a headset with a microphone for better sound quality.

The seminar can be organized exclusively for your company, if there is a group of people who wishes to attend. The content, dates, and schedule will be tailored to your employees' needs. 

You might be interested ...

Back to top