Module 5: Strategic Planning, Finance, Procurement, and Third-Party Management
Strategic Planning Aligning security initiatives with business objectives Developing a
Module 4: Information Security Core Competencies
Access Control Management Implementing identity and access management systems Monitoring
Module 3: Security Program Management and Operations
Developing an Information Security Program Defining program objectives and requirements
Module 2: Information Security Controls, Compliance, and Audit Management
Designing Security Controls Control lifecycle management Monitoring and maintaining security
Module 1: Governance and Risk Management
Information Security Governance Establishing an information security management structure Defining
