EC-Council Certified Chief Information Security Officer (CCISO)
The CCISO course is designed for senior security professionals who want to move into executive leadership roles. It focuses on the business, management and strategic skills required to lead an organisation’s information security program.
Description
The CCISO course is designed for senior security professionals who want to move into executive leadership roles. It focuses on the business, management and strategic skills required to lead an organisation’s information security program. You learn how to build and manage security governance, risk management, compliance, security operations and executive communication.
The training brings together real-world scenarios, leadership frameworks and high-level decision-making to prepare you for the responsibilities of a security executive or CISO.
No sessions available
Check back later or contact a provider directly.
What You Will Learn
This training covers the full scope of executive-level information security leadership. You learn management, governance, risk, operations, and strategic planning.
Part 1: Governance, risk and compliance — building security policies, regulatory frameworks, risk assessment and mitigation
Part 2: Security program management and operations — managing security teams, security operations centers (SOCs), incident response and operational best practices
Part 3: Information security strategic planning and leadership — aligning security strategy with business goals, budgeting, resource allocation and stakeholder management
Part 4: Audit, legal, ethics and compliance management — ensuring audit readiness, legal compliance, data privacy laws and ethical handling of security issues
Part 5: Governance of enterprise information security architecture — designing secure enterprise-wide architecture, identity and access management, data protection, cloud and on-prem infrastructure security
Part 6: Business continuity, disaster recovery and crisis management — planning and executing continuity plans, disaster recovery, business resilience and crisis response
Part 7: Vendor, third-party and supply chain risk management — assessing, selecting, monitoring third-party vendors, supply chain security and outsourcing risk policies
Part 8: Security metrics, performance measurement and reporting — defining KPIs, measuring security performance, reporting to executives and stakeholders
Part 9: Leadership, communication and culture — building security culture in organisation, leading teams, communication with executive board and promoting security awareness
Certification & Exam
After you complete the CCISO training, you can register for the CCISO certification exam. The exam evaluates your ability to lead an organisation’s information security program at an executive level. It focuses on governance, risk management, security strategy, finance, compliance, audit and high-level decision-making.
The exam consists of 150 multiple-choice questions and typically lasts 2.5 hours. You must achieve the required passing score, which varies depending on the exam form. The exam can be taken online via remote proctoring or at an authorised testing centre.
To earn the CCISO certification, EC-Council also requires verified professional experience in the five CCISO domains. Candidates who do not meet the full experience requirements may apply through the eligibility program or complete the associated training path.
When you pass the exam and meet the experience criteria, you receive the CCISO certificate, confirming your readiness to operate as a senior information security leader or CISO.
What You Will Achieve
By the end of the course, you will be able to:
Build and govern an organisation’s information security program at an executive level
Perform strategic risk management and align security initiatives with business objectives
Lead security teams, manage budgets and oversee security operations effectively
Ensure compliance with legal, regulatory and audit requirements across the organisation
Design and guide enterprise-wide security architecture, including cloud and on-prem environments
Manage crisis situations, business continuity and disaster recovery planning
Communicate security priorities clearly to executives, board members and key stakeholders
Training Providers
1 providerFAQs
General FAQs
CCISO is an executive-level cybersecurity certification. It focuses on how to lead and manage an information security program, not on hands-on technical tasks.
Voraussetzungen & Anforderungen
Get Custom In-house Training
Post once, get competitive offers from multiple providers. Choose the one that fits your team.
Similar Trainings
EC Council Certified Ethical Hacker Certification (CEH)
The Certified Ethical Hacker (CEH) course teaches participants how to identify and fix security vulnerabilities. Through hands-on labs and theory, learners use attacker tools to test and strengthen network security. The training covers networks , web applications , cloud , mobile , and IoT systems. Participants develop technical skills for security audits and vulnerability assessments. Upon completion, professionals can perform penetration testing and report security gaps to protect systems from exploitation.
EC-Council Certified Penetration Testing Professional (CPENT)
The Certified Penetration Testing Professional (CPENT ) program is the world’s most comprehensive guided penetration testing program. It offers a complete hands-on pentesting methodology and AI techniques mapped to all pentesting phases. CPENT enables you to master pentesting within an enterprise network environment, evaluating intrusion risks and compiling actionable, structured reports. Distinguish yourself with the CPENT , learning beyond technical knowledge, scoping engagements, understanding design, estimating effort, and presenting findings and thrive as a leader in offensive security with versatile skills. CPENT combines guided learning with hands-on practice while immersing you in diverse live scenarios involving IoT systems, segmented networks, and advanced defenses, with practical challenges mapped to each domain. Gain expertise in advanced skills necessary to create your tools, conduct advanced binary exploitation, double pivot, customize scripts, and write your exploits to penetrate the deepest pockets of the network. Hands-on course featuring CTFs, 110+ labs, live cyber ranges, and 50+ tools Practical exam tests skills on unique multi-disciplinary network ranges The only program to teach a complete pen testing methodology
EC-Council Computer Hacking Forensic Investigator (CHFI)
EC-Council’s CHFI program enabled cybersecurity professionals with the knowledge and skills to perform effective digital forensics investigations and accomplish forensic readiness. Master the methodological approach of forensics process, evidence handling procedures, chain-of-custody, acquisition, preservation, analysis, and reporting of digital evidence, legal procedures to ensure it is admissible in court. Build skills beyond traditional hardware and memory forensics and with cloud forensics, mobile and IoT, investigating web application attacks, and malware forensics. CHFI equips you with skills to validate/triage incidents and guide the incident response teams. Build job ready skills on immersive 68 forensic labs Earn globally recognized and demanded by employers Flexible learning options without quitting your current jobs
EC-Council Certified Network Defender (CND) Program
The CND course gives you a full introduction to network security from a defender’s perspective. You learn how to protect, monitor, detect and respond to threats in modern network environments. The training includes theory and hands-on labs , teaching you how to secure networks, configure firewalls and IDS/IPS, monitor traffic, and implement defensive strategies across devices, endpoints, cloud and IoT. The goal is to equip you to build and maintain secure networks for organisations.
EC-Council Certified Cloud Security Engineer (CCSE)
The CCSE course teaches you how to secure, manage and defend cloud environments. You learn both general cloud-security principles and specific skills for major providers such as AWS, Azure and GCP. The training includes hands-on labs, real-world scenarios, and guidance on cloud governance, compliance, monitoring and incident response. This course prepares you to build secure cloud infrastructures , protect data and services in multi-cloud settings , and respond to cloud-specific threats professionally.
EC-Council Certified DevSecOps Engineer (ECDE)
The ECDE course shows you how to combine development, operations and security in a modern workflow. You learn both cloud-native and on-prem security practices, secure coding, infrastructure hardening, automated security tools and continuous deployment pipelines. The training uses many hands-on labs to build real-world DevSecOps skills.