ISSMP - Information Systems Security Management Professional

Course Description & Overview

SecureNinja’s CISSP-ISSMP (Information Systems Security Management Professional) certification training is tailored for cybersecurity professionals who manage enterprise-level security programs and want to demonstrate their advanced knowledge of leadership, governance, and risk-based security strategy. This course expands on the CISSP framework with a specialized focus on managing cybersecurity programs and aligning security initiatives with organizational objectives.

Mapped to the current ISC2 ISSMP exam objectives and approved under DoD 8140 for security leadership roles, this training equips candidates with tools to lead teams, implement governance frameworks, develop security policies, and oversee security operations. SecureNinja’s instruction connects complex management principles to real-world use cases—helping learners develop both strategic insight and practical skills needed to excel in security management roles.

Why Choose CISSP-ISSMP

• Leadership Recognition: Validates management-level cybersecurity knowledge across strategic, operational, and risk domains.
• DoD 8140 Approved: Meets certification requirements for management and executive-level cyber roles within federal organizations.
• Globally Respected Certification: Recognized by government agencies, defense contractors, and Fortune 500 companies worldwide.
• Ideal for Aspiring CISOs: Covers core concepts in governance, resource management, and incident planning required at the executive level.

Topics Covered

• Leadership and Business Management: Integrating security into enterprise strategy and operations.
• Systems Lifecycle Management: Managing security throughout acquisition, implementation, and decommissioning.
• Risk Management: Assessing and mitigating risk using established frameworks and best practices.
• Security Compliance Management: Overseeing audits, controls, and regulatory compliance efforts.
• Contingency Management: Creating effective response strategies for business continuity and disaster recovery.

Who is it for

• Security Managers and CISOs: Leading enterprise-wide cybersecurity initiatives.
• Program Managers: Coordinating security and IT operations within government and corporate environments.
• CISSPs Pursuing Advanced Roles: Seeking specialization in strategic leadership and governance.

Who Would Benefit

• Cybersecurity Executives: Tasked with aligning business goals and security outcomes.
• Risk and Compliance Officers: Overseeing regulatory programs, audits, and internal controls.
• Defense and Government Program Leaders: Supporting security mandates within the DoD 8140 framework.

Prerequisites

Candidates must hold an active CISSP certification and possess at least two years of cumulative paid work experience in one or more of the CISSP-ISSMP domains.

Course Outline

1. Leadership and Business Management

• Integrate security governance into business planning.
• Manage budgets, metrics, and security resource allocation.

2. Systems Lifecycle Management

• Incorporate security into system development life cycle (SDLC) stages.
• Develop secure acquisition and retirement processes.

3. Risk Management

• Identify, assess, and manage risk using ISO, NIST, and COBIT frameworks.
• Oversee the application of controls to mitigate risks to acceptable levels.

4. Security Compliance Management

• Ensure compliance with laws, standards, and regulatory policies.
• Coordinate and respond to internal and third-party audits.

5. Contingency Management

• Develop and maintain business continuity and disaster recovery plans.
• Lead incident management and crisis communication planning.

Course Length

• 4 Days
• 32 Hours

Exam Details

• Certification: CISSP-ISSMP (Information Systems Security Management Professional)
• Exam Format: Multiple choice
• Number of Questions: 125
• Duration: 3 hours
• Passing Score: 700 out of 1000

The CISSP-ISSMP certification is a premier credential for security leaders who are responsible for designing, managing, and measuring enterprise-wide cybersecurity programs. SecureNinja’s training helps participants confidently pursue ISSMP certification while building executive-level competence for managing evolving cyber risks in both commercial and government settings.

ISSMP - Information Systems Security Management Professional Course Info.
Start Date	End Date	Location	Days	In Person	Online
Feb. 17, 2026	Feb. 20, 2026	Alexandria, VA Eastern Time	Tue-Fri (4 Days)	Register	Register
Apr. 13, 2026	Apr. 16, 2026	Alexandria, VA Eastern Time	Mon-Thu (4 Days)	Register	Register
Jun. 15, 2026	Jun. 18, 2026	Alexandria, VA Eastern Time	Mon-Thu (4 Days)	Register	Register
Aug. 10, 2026	Aug. 13, 2026	Alexandria, VA Eastern Time	Mon-Thu (4 Days)	Register	Register
Oct. 26, 2026	Oct. 29, 2026	Alexandria, VA Eastern Time	Mon-Thu (4 Days)	Register	Register