CISM: Enterprise Risk Leadership
Ends soon! Keep adding new skills with 10,000+ programs for $239 (usually $399). Save now.
CISM: Enterprise Risk Leadership
This course is part of Exam Prep CISM: Certified Information Security Manager Specialization
Instructor: Whizlabs Instructor
Included with
Learn more
Recommended experience
Recommended experience
What you'll learn
Establish Continuous Risk Monitoring and Governance.
Implement Continuous Governance and Communication.
Master Stakeholder Communication and Reporting.
Skills you'll gain
- Continuous Monitoring
- Security Controls
- Cyber Risk
- Risk Appetite
- Risk Control
- Business Continuity
- Vulnerability Assessments
- Governance
- Enterprise Risk Management (ERM)
- Risk Analysis
- Business Continuity Planning
- Operational Risk
- Risk Management Framework
- Cyber Governance
- Security Management
- Risk Mitigation
- Governance Risk Management and Compliance
- Cyber Security Strategy
- Risk Management
- AI Security
Details to know
March 2026
6 assignments
See how employees at top companies are mastering in-demand skills
Build your subject-matter expertise
- Learn new concepts from industry experts
- Gain a foundational understanding of a subject or tool
- Develop job-relevant skills with hands-on projects
- Earn a shareable career certificate
There are 3 modules in this course
CISM: Enterprise Risk Leadership is the second course of Exam Prep CISM: Certified Information Security Manager Specialization. This course equips learners to explore the fundamental stages of identifying, assessing, and communicating information security risks while aligning risk appetite with organizational objectives. The curriculum dives deep into the technical and strategic aspects of risk assessment, the implementation of robust controls and countermeasures, and the critical role of defining Recovery Time Objectives (RTO) to ensure business continuity.
The course is structured into comprehensive modules, further segmented by Lessons and Video Lectures that blend management-level theory with practical application. This course facilitates learners with approximately 2:00β2:30 hours of video content. To ensure mastery of the material, Graded and Ungraded Quizzes are provided with every module, testing the ability of learners to evaluate impact and monitor risk in real-world business scenarios. - Module 1: Risk Management Fundamentals - Module 2: Risk Assessment and Analysis - Module 3: Risk Treatment and Communication This course is specifically designed for security leads and management-track professionals who aim to bridge the gap between technical risk assessments and enterprise-wide strategic planning, ensuring that Information Security Risk Management aligns with the organization's risk appetite and long-term business objectives. By the end of this course, a learner will be able to: - Establish Continuous Risk Monitoring and Governance. - Implement Continuous Governance and Communication. - Master Stakeholder Communication and Reporting.
Welcome to the week 1. In this week, we will dive into the essential frameworks and practical applications of Information Risk Management and Compliance to protect organizational assets. We will transition into the selection and implementation of Controls and Countermeasures designed to mitigate identified risks effectively. A key focus will be placed on technical recovery metrics, specifically understanding the Recovery Time Objective (RTO) and its role in resilience planning. Finally, we will cover Risk Monitoring and Communication to ensure that risk status is continuously tracked and reported to stakeholders, providing a comprehensive Risk Management Overview that bridges the gap between technical security and executive oversight.
What's included
5 videos2 readings2 assignments
5 videosβ’Total 41 minutes
- Information Risk Management - Introductionβ’5 minutes
- Information Risk Management and Complianceβ’13 minutes
- Good Information Security Risk Managementβ’7 minutes
- Controls Countermeasuresβ’4 minutes
- Risk Management Overviewβ’12 minutes
2 readingsβ’Total 25 minutes
- Welcome to the Courseβ’15 minutes
- Overview of Risk Management Fundamentalsβ’10 minutes
2 assignmentsβ’Total 50 minutes
- Information Risk Management and Compliance - Knowledge Checkβ’25 minutes
- Risk Management Fundamentals - Assessmentβ’25 minutes
Welcome to Week 2. This week, we will begin by establishing a shared language through Information Security Risk Management Concepts, providing the framework necessary for Implementing Risk Management within any organizational structure. You will engage in a Risk Assessment: Deep Dive to uncover hidden vulnerabilities, followed by an exploration of how to select and validate Controls and Countermeasures. To ensure operational resilience, we will examine the critical role of Recovery Time Objectives (RTO) and the necessity of Testing Response and Recovery Plans under realistic conditions. Finally, we will cover the essential processes for Information Security Risks Assessment and the continuous nature of Risk Monitoring and Communication to keep stakeholders informed of the evolving threat landscape.
What's included
7 videos1 reading2 assignments
7 videosβ’Total 47 minutes
- Information Security Risk Management Conceptsβ’6 minutes
- Implementing Risk Managementβ’5 minutes
- Testing Response and Recovery Plansβ’4 minutes
- Risk Assessmentβ’11 minutes
- Recovery Time Objectivesβ’2 minutes
- Risk Monitoring and Communicationβ’3 minutes
- Information Security Risks Assessmentβ’15 minutes
1 readingβ’Total 10 minutes
- Overview of Risk Assessment and Analysisβ’10 minutes
2 assignmentsβ’Total 50 minutes
- Information Security Risk Management Concepts - Knowledge Checkβ’25 minutes
- Risk Assessment and Analysis - Assessmentβ’25 minutes
In this week, we begin with an Information Risk Management - Introduction to align our efforts with business goals, followed by a structured look at the Stages of Information Security and Risk Management to provide a clear roadmap for execution. You will explore Good Practices for Managing Information Risk and learn the nuances of Managing Information Security Risk in dynamic environments. A core focus will be on Developing Cyber Risk Management Strategy to ensure long-term protection, alongside the selection of appropriate Impact Controls to minimize the effects of potential incidents. Finally, we will emphasize the critical human element: Information Risk Management - Communication, ensuring that technical findings are translated into actionable intelligence for executive decision-makers.
What's included
5 videos2 readings2 assignments
5 videosβ’Total 28 minutes
- Impact Controlsβ’17 minutes
- Developing Cyber Risk Management Strategyβ’3 minutes
- Good Practices for Managing Information Riskβ’4 minutes
- Managing Information Security Riskβ’1 minute
- Stages of Information Security and Risk Managementβ’3 minutes
2 readingsβ’Total 25 minutes
- Overview of Risk Treatment and Communicationβ’10 minutes
- What's Next?β’15 minutes
2 assignmentsβ’Total 50 minutes
- Developing Cyber Risk Management Strategy - Knowledge Checkβ’25 minutes
- Risk Treatment and Communication - Assessmentβ’25 minutes
Earn a career certificate
Add this credential to your LinkedIn profile, resume, or CV. Share it on social media and in your performance review.
Instructor
Offered by
Explore more from Software Development
- Status: Free TrialL
LearnKartS
Specialization
- Status: Free Trial
Course
- Status: Free Trial
Specialization
Why people choose Coursera for their career
Frequently asked questions
To access the course materials, assignments and to earn a Certificate, you will need to purchase the Certificate experience when you enroll in a course. You can try a Free Trial instead, or apply for Financial Aid. The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.
When you enroll in the course, you get access to all of the courses in the Specialization, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile.
Yes. In select learning programs, you can apply for financial aid or a scholarship if you canβt afford the enrollment fee. If fin aid or scholarship is available for your learning program selection, youβll find a link to apply on the description page.
More questions
Financial aid available,
