Original PDF Flash format CISM-Review-Course  


CISM Review Course

CISM Review Course

May 16-17, 2009 • 1601 Market Street • Philadelphia, PA


Non-
Course
CPEs
Member
Member
Dates
CISM Review Course
18
$175
$275
May 16-17, 2009

Amenities: Registration fee includes an electronic copy of the review course training materials,
continental breakfast, and lunch. Parking is not included. Continental breakfast and
sign in begin at 7:30 AM; sessions begin at 8:00 AM and end at 6:00 PM.

Deadline:
Due to the high demand for the course and limited space, participants are encouraged
to register as early as possible to reserve a seat. Registration and complete course
payment must be received by April 24, 2009. The next CISM exam date is June 13,
2009 and the final exam registration deadline is April 8, 2009.

Contact:
For additional course information contact the CISA Program Director, Cheryl Morris at
clanguir@udel.edu

Location: KPMG,
LLP

1601 Market Street, 36th Floor

Philadelphia, PA 19103

Instructors: CISM Certified Philadelphia ISACA Chapter members

Travel:
Parking: Several parking areas are available close to the training facility near 16th and
Market Streets.
Hotel: The Westin Philadelphia Westin; 215-563-1600
Philadelphia International Airport: www.phl.org
Interstate Railroad: www.amtrak.com
Regional Transportation: www.septa.org; www.njtransit.com

Breakfast and Lunch provided by: DiBruno Bros.

Directions: KPMG

“Professionals within the information security management field find great
value in the CISM credential. The CISM credential measures expertise on
the subjects of information security governance, risk management,
information security program management, information security
management and response management. It distinguishes you among other
candidates in the information security field, and it appropriately identifies
you as having the knowledge and expertise required to get the job done
effectively.”
David Simpson, CISM, CISA
Managing Director, CQR Consulting, Australia

Page 1 of 4
CISM Review Course
Course Description
May 16-17, 2009 • 1601 Market Street • Philadelphia, PA

Course Focus and Features:
This two-day seminar focuses exclusively on the essential areas covered in the CISM® exam. The
review course covers the core sections and a series of sample exam questions that provides
participants with a "feel" of the format and the types of questions encountered on the CISM exam.
The correct answers of each question are also reviewed for a better understanding of expectations of
the ISACA Certification Board. This intensive course is an ideal way to prepare for the exam.
Participants gain valuable experience reviewing these core sections and answering sample exam
questions with experienced instructors while strengthening their skills and building confidence. As a
way of keeping the training costs low and to facilitate our green environmental initiative, all training
materials will be electronically transmitted to students prior to the class. Students are asked to bring
the material to the class in either an electronic or paper format. No handouts will be available on-site.

Who Should Attend:
Chief Information Officers, Chief IT Security Officers, and Security Professionals who are taking or
considering taking the CISM examination; anyone seeking an overall understanding of essential IT
security risks and controls. The Certified Information Security Manager is ISACA’s strong credential
earned by security professionals. It is for the individual who must maintain a view of the "big picture"
by managing, designing, overseeing, and assessing an enterprise's information security. For more
information on the CISM certification, refer to http://www.isaca.org/cism.

What You Will Learn:
Chapter 1: Information Security Governance (23%)
Establish and maintain a framework to provide assurance that information security
strategies are aligned with business objectives and consistent with applicable laws
and regulations.
Chapter 2: Information Risk Management (22%)
Identify and manage information security risks to achieve business objectives.
Chapter 3: Information Security Program Development (17%)
Create and maintain a program to implement the information security strategy.
Chapter 4: Information Security Program Management (24%)
Oversee and direct information security activities to execute the information security
program.
Chapter 5: Incident Management and response Management (14%)
Plan, develop and manage a capability to detect, respond to and recover from
information security events.
Prerequisites:
• Basic understanding of IT security or IT security management
• Obtain and review the ISACA published study materials:
o
CISM Review Manual 2009
o
CISM Review Questions, Answers & Explanations Manual 2009
o
CISM Review Questions, Answers & Explanations Manual 2009 Supplement
For more information about the study materials and ordering through the ISACA
International bookstore, refer to http://www.isaca.org/bookstore.

Page 2 of 4



CISM Review Course
Instructor Bios
May 16-17, 2009 • 1601 Market Street • Philadelphia, PA

Instructor Biographies

Bryan Cline, Ph.D., CISM

Bryan S. Cline, Ph.D., M.S.I.E., is the Director of IS Risk Management for The Children’s Hospital of
Philadelphia, Pennsylvania (USA), and former Technical Director of Information Assurance Services for QinetiQ
North America Defense Solutions in Stafford, Virginia (USA). Dr. Cline has more than 25 years of experience in
information systems—10 years of which were in information systems security management and engineering in
the US Department of Defense and North Atlantic Treaty Organization. He holds a Doctorate in Information
Systems with a concentration in Information Assurance Policy from the University of Fairfax, Vienna, Virginia
(USA), a Master of Science degree in Industrial Engineering with a concentration in Operations Research from
the University of Oklahoma, Norman (USA), and a Baccalaureate in Mathematics from the University of Texas at
Arlington (USA). He has participated in security and risk panels at SecureWorld, TechnoSecurity and
TechnoForensics, presented on security engineering topics at the DoD CyberCrime Conference and INCOSE
International Symposia, and published articles in peer-reviewed journals and proceedings such as the
Information Systems Control Journal. Dr. Cline also holds multiple professional certifications in information and
physical security, program management, and engineering, including the CISSP-ISSEP, CISM, CISA, CPP, CAP
(PM-II), and ASEP.

Ellis Fagbami, CISA, CISM, CISSP, PMP

Ellis Fagbami, is Managing Consultant at Compu-Digital Technologies Inc., an IT Security and Audit services firm
providing security consulting and training services to clients in diverse industries. Ellis has strong background
in application security and systems management and has experience in information security management,
business continuity planning and disaster recovery planning. Ellis is a member of ISACA and serves on the
Scholarship Committee of its Philadelphia Chapter. He is also an active member of the International
Information Systems Security Certification Consortium (ISC2), and the Project Management Institute, PMI. Ellis
holds a Bachelor of Science degree in Computer Science and an MBA with a specialization in management.
Before his current position he was a Lead Senior Consultant at Public Service Electric & Gas (PSEG) and prior to
that he was a Principal Consultant at Keane Inc.

Muazzam Malik, CISM, CISA, CISSP, QSA, GSNA

Mr. Malik is a manager in CIO Solutions practice of Protiviti Inc. He currently manages Protiviti’s Technology
Lab in Philadelphia, providing information security services such as penetration testing, risk, vulnerability and
web application assessments and PCI scanning services. Muazzam has been with Protiviti for six plus years,
and has experience with the range of information security standards and industry regulations, such as PCI Data
Security Standards, State Privacy Laws, ISO 17799, Health Insurance Portability & Accountability Act (HIPAA),
Gramm-Leach Bliley Act (GLBA). He has delivered high quality security and IT audit services to a variety of
clients in retail, financial services, education, pharmaceutical, healthcare, and manufacturing industries. He is
also an active member of the ISACA, ISSA, and FBI Infraguard. Mr. Malik has facilitated a week long new
consultant school and has presented in number of internal and external information security training events.

Fernando Reiser, CISA, CISM, CISSP, CIPP

Currently, Mr. Reiser leads the information security program activities for a major New Jersey based property
and casualty insurance group. Mr. Reiser has obtained extensive information security and data privacy
experience within the financial services industry. His major responsibilities have included oversight over
information security, customer privacy and regulatory compliance issues. Specific work assignments have
involved the development of information security programs, IT control frameworks, delivery of information
security awareness and education and assessment of IT risks. Mr. Reiser has developed and implemented
policies, procedures and IT risk assessments for a number of organizations to ensure compliance with Sarbanes
– Oxley, GLBA, HIPAA, FERPA, FDICIA and FFIEC regulatory requirements. In addition, he has been directly
responsible for implementing technical security projects involving network perimeter security and user
authentication.

Page 3 of 4



CISM Review Course
Registration
May 16-17, 2009 • 1601 Market Street • Philadelphia, PA

Registration:
Due to the high demand for the review course and limited space, participants are encouraged to
register as early as possible to reserve a seat. Registration and complete course payment must be
received by April 24, 2009.

Payment Processing:
Acteva.com has been contracted to provide our participants with the flexibility of online registration
and payment processing. Acteva’s secure online system adheres to the chapter’s policy and
protects your personal information and privacy.
We are committed to protecting your privacy and to focus on the chapter’s primary purpose of
promoting the education of individuals for the improvement and development of their capabilities
relating to auditing and/or security management. We welcome you to immediately begin using the
registration process with confidence. For your convenience the payment processing steps have
been detailed below:
Steps:
1. Click the following link or copy and paste the link into your browser.
http://www.acteva.com/booking.cfm?bevaID=175156
http://www.acteva.com/booking.cfm?bevaID=175156
2. Specify the number of attendees for the session(s).
Note: All the sessions are priced for ISACA Members and Non-members.
Non-members are encouraged to join ISACA and start enjoying membership benefits.
3. Click
the
button
4. Enter contact information and ISACA member information
5. Click the
button to confirm your order
6. Review the order and select a payment method.
• Visa
• MasterCard
• Discover
• American
Express
• Any ATM or debit card displaying the Visa or MasterCard hologram and logo
• Personal or Corporate Check (Make check payable to “Acteva” and mail to:
Acteva, 60 Spear St., 9th Floor, San Francisco, CA 94105).
Mailed checks may take ten or more business days to be sent, so please plan accordingly.
Specify the correct amount on the check and place the Transaction Number in the memo
section on the check. Your registration will not be complete until the payment is received.
7. Click
the
button; a receipt is sent via email once the transaction has
completed.
Please Note:
Registration is contingent upon full payment of the registration fee. To guarantee your registration,
course fees must be received no later than the Friday, April 24, 2009.
Refunds due to cancellations prior to deadline are paid net of all processing fees. No cancellations can
be accepted after Friday, April 24, 2009.
Substitutions are accepted and encouraged. Substitution of a non-member for a member will result in
additional non-member fees being charged.
The CPEs provided by the chapter are not NASBA certified but are recognized by the ISACA International
organization to meet continuing education requirements for the CISA and CISM certifications.
If ISACA Philadelphia must cancel a course or event for any reason, liability is limited to the registration
fees paid only. ISACA Philadelphia is not responsible for other expenses incurred including travel or
accommodation fees.



Page 4 of 4