SC500: Information Security Officer (ITSIBE/CISO) with Certification

Training: Governance, Risk & Compliance - Security - Certification

Participants receive a comprehensive introduction to the responsibilities of an Information Security Officer (ISB) and Chief Information Security Officer (CISO). The course covers approaches based on ISO/IEC 27001, ISO/IEC 22301, as well as the fundamentals of the BSI™ IT-Grundschutz. It addresses practical issues in the ISMS process, complemented by exercises, discussions, and a final exam with certification.

Hybrid training Hybrid training

Start: 2025-10-06 | 10:00 am

End: 2025-10-10 | 01:30 pm

Location: Nürnberg

Price: 2.950,00 € plus VAT.

Hybrid training Hybrid training

Start: 2025-11-24 | 10:00 am

End: 2025-11-28 | 01:30 pm

Location: Nürnberg

Price: 2.950,00 € plus VAT.

Online training Online training

Start: 2026-03-16 | 10:00 am

End: 2026-03-20 | 01:30 pm

Location: Online

Price: 2.950,00 € plus VAT.

Hybrid training Hybrid training

Start: 2026-07-06 | 10:00 am

End: 2026-07-10 | 01:30 pm

Location: Nürnberg

Price: 2.950,00 € plus VAT.

Online training Online training

Start: 2026-10-05 | 10:00 am

End: 2026-10-09 | 01:30 pm

Location: Online

Price: 2.950,00 € plus VAT.

Hybrid training Hybrid training

Start: 2026-12-14 | 10:00 am

End: 2026-12-18 | 01:30 pm

Location: Nürnberg

Price: 2.950,00 € plus VAT.

Request prefered appointment period:

* All fields marked with an asterisk are mandatory fields.

Agenda:

  • Introduction and getting acquainted

  • Motivation, fundamentals and role requirements
    • Current examples
    • Information security fundamentals
    • Corporate management fundamentals
    • Requirements and objectives for the CISO/ISB role

  • Overview of standards/norms, certificates, regulations and best practices
    • Standards and norms
    • Personal certificates
    • Practical work with standards

  • Strategic Work of the CISO and ISB
    • Management system
      (setup, implementation, review)
    • Corporate objectives and strategy alignment
      (Situational awareness, roadmap, maturity level enhancement, budget and benchmarking)
    • Communication and reporting
      (Stakeholders, KPIs, Collaboration)
    • Key CISO instruments
      (Programs, projects, risks, decisions, security assessments, awareness)

  • Tactical work and operational operations for the CISO and ISB
    • Attack vectors with basic introduction to forensics
    • Key security protocols
    • Operational IT security operations: Processes and organization
      (Incident response process, patching, SIEM, SOC)
    • Operational IT security operations: Operational objects and technology

  • Emergency management and BCM
    • Motives for implementing a BCM system
    • BCM as management task
    • Establishing, maintaining and managing a BCMS
      (Processes, BIA, risk analysis, BCM strategies, tests, reporting)

  • Regulations and data protection work of the CISO and ISB
    • Due diligence in key laws
      (KRITIS, security law, IT compliance, cloud, BYOD)
    • Building efficient collaboration with data protection
      (Fundamentals, GDPR, pragmatism)

  • Discussion and summary
    • Case study
    • Certification exam preparation



Objectives:

The focus of the seminar is on the practical-oriented imparting of the necessary knowledge for the establishment, operation, and improvement of an Information Security Management System (ISMS) as well as the design of the interface between corporate governance and technology.

Target audience:

  • Prospective Information Security Officers
  • CISO
  • Information Security Responsible
  • IT Security Managers

Prerequisites:

No specific prior knowledge is required.

Description:

The seminar SC500 Information Security Officer (ITSIBE/CISO) with Certification imparts comprehensive knowledge about the tasks associated with the roles of an Information Security Officer (ISO) and Chief Information Security Officer (CISO). The training focuses on the approach according to ISO/IEC 27001, ISO/IEC 22301, expanded with a basic understanding of the BSI™ IT-Grundschutz and other industry-specific standards and regulations.

The content is developed interactively in a manageable group through presentations, practical exercises, and group discussions. There will be lively discussions on typical practical issues, such as potential problems in the ISMS process. The seminar concludes on the last training day with an examination and a certificate.

Other Info:

What are the main tasks of an ITSIBE / CISO?
An experienced CISO practitioner presents numerous practical examples and reports from corporate daily life with extensive experience sharing. The primary task of the Information Security Officer is to support the management in fulfilling their duties to implement measures to ensure a targeted level of information security in the early detection of threats from IT operations. In addition to purely organizational and strategic issues, the (prospective) ISB/CISO is taught the fundamental technical operational items and processes. This equips them well in their interface function between management and technology. Coordination of security objectives, the preparation of reporting, and the regular monitoring of opportunities and risks are just some of the tasks of the Information Security Officer. Furthermore, they should keep an eye on legal changes and also monitor data protection as well as ensuring the protection goals of confidentiality, availability, and integrity.

Useful information about the exam / certification
For the exam, which takes place in the afternoon, participants have 60 minutes. It consists of 45 multiple-choice questions. To pass the exam successfully, 70% of them must be answered correctly.
check-icon

Guaranteed implementation:

from 2 Attendees

Booking information

Price:

2.950,00 € plus VAT.

(including lunch & drinks)

Exam (Optional):

100,00 € plus VAT.

Authorized training partner

NetApp Partner Authorized Learning
Commvault Training Partner
CQI | IRCA Approved Training Partner
Veeam Authorized Education Center
Acronis Authorized Training Center
AWS Partner Select Tier Training
ISACA Accredited Partner
iSAQB
CompTIA Authorized Partner
EC-Council Accredited Training Center

Memberships

Allianz für Cyber-Sicherheit
TeleTrust Pioneers in IT security
Bundesverband der IT-Sachverständigen und Gutachter e.V.
Bundesverband mittelständische Wirtschaft (BVMW)
Allianz für Sicherheit in der Wirtschaft
NIK - Netzwerk der Digitalwirtschaft
BVSW
Bayern Innovativ
KH-iT
CAST
IHK Nürnberg für Mittelfranken
eato e.V.
Sicherheitsnetzwerk München e.V.