Certified Information Security Officer (CISO)

Certification Overview

Certified Information Security Officer (CISO)

Exam Code: CISO-001

Information Security Officer will be responsible for overseeing information security, cybersecurity and IT risk management programs based on industry-accepted information security and risk management frameworks. 

A CISO is an executive who manages information security in an organization. This role is responsible for ensuring all IT technology and information assets are adequately protected and in line with company goals. The CISO role goes beyond expertise in information security. It relates technology and security needs to the overall vision and business goals of an organization. 

While the daily role varies, skills for this position fall into three distinct areas:

  • Risk and compliance management
  • Technical IT expertise
  • Communication and leadership skills

Exam Information

The exam comprises of 100 Multiple Choice Questions out of which the candidate needs to score 80% (80 out of 100 correct) to pass the exam.

The total duration of the exam is 1 hour 30 minutes (90 Minutes).

  • The exam is conducted in a non-proctored mode and can be taken anytime and anywhere within an eight-month validity period.
  • Upon purchasing the Premium Package or an Exam Voucher Code, a voucher code with two attempts will be assigned to your login profile under the "My Vouchers" tab. You can then take the exam through the "My Exam(s)" tab in your profile. To take the exam, simply apply the voucher code.
  • The Exam Voucher included in the Premium Package or purchased separately is valid for two (2) attempts. If you are unable to pass the exam within these two attempts, you can purchase a new voucher code, which will grant you an additional two attempts.
  • Kindly Note: The voucher will not be valid for a second attempt if you pass the exam on your first attempt.
  • The validity of the CISO™ Certifiate is for five (5) years, the candidate needs to either retake the exam or can complete the E-Course for CISO™ to accrue the number of continuing education units (CEUs) to renew the Certificate. Renewing the certificate will allow the candidate to retain the professional stature and credentials intact.
  • Certificates must be renewed on or before the expiration date (when they become inactive) to be current.

CISO is a Trademark of GAQM.

The Certified Information Security Officer (CISO)™ Certification has no pre-requisites (Completion of an E-Course is not mandatory from GAQMBok portal), but we highly recommend doing the E-Course as maximum number of questions are drawn from the E-Course in the actual exam.

Download Sample Exam

Course Outline

Module 1 - Governance (Policy, Legal, and Compliance)

  • Information Security Management Program
  • Defining an Information Security Governance Program
  • Regulatory and Legal Compliance
  • Risk Management

Module 2 - IS Management Controls and Auditing Management

  • Designing, deploying, and managing security controls
  • Understanding security controls types and objectives
  • Implementing control assurance frameworks
  • Understanding the audit management process



Module 3 - Security Program Management & Operations

  • The role of the CISO
  • Information Security Projects
  • Integration of security requirements into other operational processes (change management, version control, disaster recovery, etc.)
  • Domain 4: Information Security Core Concepts

Module 4 - Information Security Core Concepts

  • Access Controls
  • Physical Security
  • Disaster Recovery and Business Continuity Planning
  • Network Security
  • Threat and Vulnerability Management
  • Application Security
  • System Security
  • Encryption
  • Vulnerability Assessments and Penetration Testing
  • Computer Forensics and Incident Response

Module 5 - Strategic Planning, Finance, & Vendor Management

  • Security Strategic Planning
  • Alignment with business goals and risk tolerance
  • Security emerging trends
  • Key Performance Indicators (KPI)
  • Financial Planning
  • Development of business cases for security
  • Analyzing, forecasting, and developing a capital expense budget
  • Analyzing, forecasting, and developing an operating expense budget
  • Return on Investment (ROI) and cost-benefit analysis
  • Vendor management
  • Integrating security requirements into the contractual agreement and procurement process
Download Brochure

Target Audience

  • Network Engineers with security specialization
  • Experienced IT Professionals engaged in information security management
  • Those who perform CISO functions, but don’t have an official title
  • All the professionals who aspire to reach top-level position in information security profession.

Registration Process for E-Course or E-Book and Exam

Premium Package
(E-Book Version)

  • E-Book Included
  • This package provides a voucher code granting eligibility for two (2) exam attempts.
  • Includes E-certificate and Digital Badge if you qualify in the exam.
  • Course Duration: 40 Days
  • Price: 200 USD

Exam
Voucher

  • Validity: 240 Days
  • Price: 190 USD
  • Please Read Carefully:

    1) The Exam Voucher is valid for two (2) attempts.

    2) You will receive your voucher code within 24 business hours.

    3) Once you receive the voucher code, you can take the exam via the "My Exam(s)" tab in your login profile.

GAQM

Test-Takers

Policies & Disclosures

Follow Us

GAQM, All rights Reserved.
Copyright © 2025