Careers & People

8/16/2017
04:00 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

ISACA Releases New CISM and CRISC Online Review Courses

Rolling Meadows, IL, USA (16th August 2017) — The Certified Information Security Manager (CISM) and Certified in Risk and Information Systems Control (CRISC) exams, the two top-paying certifications in the 2017 Global Knowledge IT Skills and Salary Survey can now be prepared for through on-demand, self-paced review courses developed by ISACA.

The CISM and CRISC online review courses are similar to the Certified Information Systems Auditor (CISA) Online Review Course, in that they will allow learners to prepare for exams at a time and location suitable to their needs. Each course will cover core subject areas relative to the CISM and CRISC job practices, beginning with a self-assessment. Each course also includes interactive features such as introductory videos, downloadable workbooks, job aids, case study activities and a post-test assessment. Learners will receive CPE credit and a certificate upon completion of the self-paced course. For more information, visit ISACA Education.

“The new CISM and CRISC online review course offerings are exciting tools to help any security professional looking to grow in their career,” said Laureen Kaczmarek, Director of Training and Education for ISACA. “Not only will the review courses provide educational formats for exam preparation but they can also act as a resource after exam completion.”

The globally recognized CISM certification is for professionals who design and manage enterprise information security programs. Since 2002, more than 34,000 professionals have earned the leading credential for information security managers.

The CRISC designation is the only certification that positions IT professionals for future career growth by linking IT risk management to enterprise risk management. More than 20,000 CRISCs have received certifcation since 2010 and 96% of professionals who have earned the certification keep it current, according to a recent Global Knowledge survey.

The CISM and CRISC certification exams are offered utilizing computer-based testing, with the next testing window occurring 1 August-30 September and an additional window from 1 November-31 December. For more information, visit www.isaca.org/certification/.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
WebAuthn, FIDO2 Infuse Browsers, Platforms with Strong Authentication
John Fontana, Standards & Identity Analyst, Yubico,  9/19/2018
Turn the NIST Cybersecurity Framework into Reality: 5 Steps
Mukul Kumar & Anupam Sahai, CISO & VP of Cyber Practice and VP Product Management, Cavirin Systems,  9/20/2018
NSS Labs Files Antitrust Suit Against Symantec, CrowdStrike, ESET, AMTSO
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/19/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Flash Poll
Surviving the IT Security Skills Shortage
Surviving the IT Security Skills Shortage
Cybersecurity professionals are in high demand -- and short supply. Find out what Dark Reading discovered during their 2017 Security Staffing Survey and get some strategies for getting through the drought. Download the report today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-1664
PUBLISHED: 2018-09-25
IBM DataPower Gateway 7.1.0.0 - 7.1.0.23, 7.2.0.0 - 7.2.0.21, 7.5.0.0 - 7.5.0.16, 7.5.1.0 - 7.5.1.15, 7.5.2.0 - 7.5.2.15, and 7.6.0.0 - 7.6.0.8 as well as IBM DataPower Gateway CD 7.7.0.0 - 7.7.1.2 echoing of AMP management interface authorization headers exposes login credentials in browser cache. ...
CVE-2018-1669
PUBLISHED: 2018-09-25
IBM DataPower Gateway 7.1.0.0 - 7.1.0.23, 7.2.0.0 - 7.2.0.21, 7.5.0.0 - 7.5.0.16, 7.5.1.0 - 7.5.1.15, 7.5.2.0 - 7.5.2.15, and 7.6.0.0 - 7.6.0.8 as well as IBM DataPower Gateway CD 7.7.0.0 - 7.7.1.2 are vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote atta...
CVE-2018-1539
PUBLISHED: 2018-09-25
IBM Rational Engineering Lifecycle Manager 5.0 through 5.02 and 6.0 through 6.0.6 could allow remote attackers to bypass authentication via a direct request or forced browsing to a page other than URL intended. IBM X-Force ID: 142561.
CVE-2018-1560
PUBLISHED: 2018-09-25
IBM Rational Engineering Lifecycle Manager 5.0 through 5.02 and 6.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a tr...
CVE-2018-1588
PUBLISHED: 2018-09-25
IBM Jazz Foundation (IBM Rational Engineering Lifecycle Manager 5.0 through 5.02 and 6.0 through 6.0.6) is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resourc...