This video covers every topic in the official exam syllabus of the ISACA CISM exam. 📚Study Guides 📚 CISM: The Last Mile ($10 on LeanPub!) Sybex - All-in-One - PacktPub - ISACA (Official) Review Manual - ISACA (Official) Questions and Answers - Exam Prep Flashcards Presentation Download 1A - !AmhtzcmYt5AVivk5pZtOTt4gRb5vSw?e=BiSzgM 1B - !AmhtzcmYt5AViv4Fcx-h8Jt0l_WZzg?e=GRtqvz 2A - !AmhtzcmYt5AViv4ENzHOmlWMl6RtdQ?e=vo9XQZ 2B - !AmhtzcmYt5AViv4l5lANfuJthObyVw?e=GJPI3S 3A - !AmhtzcmYt5AVi4BEPYvVGDQaL_dP8g?e=khMJwL 3B - !AmhtzcmYt5AVi4E9SexVaBUT5ZliRA?e=SYMsUu 4A - !AmhtzcmYt5AVi4Jse7qGp69qdkkUuA?e=yjRE1p 4B - !AmhtzcmYt5AVi4N-ed_Uy04hFLEAyQ?e=YRSc0k Chapters 00:00 Introduction 02:39 In this Video 03:05 About the Exam 16:56 Exam Prep Materials (books, flashcards, etc) 22:45 Exam Prep Strategy 26:55 1A - Enterprise Governance 28:05 1A1 - Organizational Culture 53:09 1A2 - Legal, Regulatory, and Contractual Requirements 01:03:44 1A3 - Organizational Structures, Roles, and Responsibilities 01:16:55 1B - IS Strategy 01:19:16 1B1 - Strategy Development 01:46:49 1B2 - Governance, Frameworks, and Standards 01:57:36 1B3 - Strategic Planning 02:22:15 2A - Risk Assessment 02:26:35 2A1 - Emerging Risk and Threat Landscape 02:57:09 2A2 - Vulnerability and Control Deficiency Analysis 03:30:01 - 2A3 Risk Assessment and Analysis 04:16:11 2B IS Risk Response 04:18:41 2B1 - Risk Treatment/Risk Response Options 04:45:39 2B2 - Risk and Control Ownership 04:51:10 2B3 - Risk Monitoring and Reporting 05:10:18 3A - IS Program Development 05:13:31 3A1 - IS Program Resources 05:13:15 3A2 - Information Asset ID and Classification 05:57:47 3A3 - Industry Standards and Frameworks 06:09:38 3A4 - InfoSec Policies, Procedures, and Guidelines 06:16:06 3A5 - IS Program Metrics 06:26:45 3B - IS Program Management 06:29:08 3B1 - Control Design and Selection 07:00:34 3B2 - Control Implementation & Integration 07:44:13 3B3 - Control Testing & Evaluation 08:01:40 3B4 - Infosec Awareness & Training 08:14:51 3B5 - Management of External Services 08:28:01 3B6 - Program Comms & Reporting 08:48:02 4A - Incident Management Readiness 08:50:56 4A1. Incident Response Plan 09:16:00 4A2. Business Impact Analysis (BIA) 09:26:02 4A3. Business Continuity Plan (BCP) 09:39:55 4A4. Disaster Recovery Plan (DRP) 09:55:39 4A5. Incident Classification/Categorization 10:03:44 4A6. Incident Management Training, Testing, and Evaluation 10:21:33 4B - Incident Management Operations 10:22:59 4B1. Incident Management Tools and Techniques 10:40:19 4B2. Incident Investigation and Evaluation 11:01:04 4B3. Incident Containment Methods 11:06:06 4B4. Incident Response Communications 11:14:40 4B5. Incident Eradication and Recovery 11:23:21 4B6. Post-incident Review Practices Music by @musicforvideolibrary ​