Got a question? Call 0800 835 835   |   
Contact usCheckoutContact us
Cyber Security Category Banner Image

From Specialist to CISO: Navigating the Journey with EC-Council CCISO Training

By Jeremy Daly | 11 March 2024

As the cyber security landscape evolves, what is the next step for leadership for cyber security specialists? The EC-Council CCISO training and certification prepares senior specialists with the skills and knowledge to move to a Chief Information Security Officer (CISO) role.

LFY - Work - Blog Image 1920x1080 From Specialist to CISO Navigating the Journey with EC-Council CCISO Training

The goal is to provide professionals with an upper management viewpoint incorporating information security management principles, business acumen and general technical knowledge.

You can access CCISO training through Lumify Work in New Zealand.

Derek R, Vice President—Group CIO Regulatory, Risk & Control, Deutsche Bank shares why he found the program ideal:

“While my 23 years of a dynamic career reflects rich experiences and a successful journey, I realised it [was] time to move one step further and stay in power with the latest requirements for leaders in information security.

The CCISO was an ideal choice for me, as it provided the necessary knowledge [of] required information security management, executive leadership, and risk management strategies to protect an organisation.”

What is a CISO?

And what does a CISO do? As this role has evolved from security challenges organisations have faced in recent years, there are questions about the CISO's meaning, what the acronym stands for and what the job entails.

A Chief Information Security Officer (CISO) is a senior executive responsible for managing and overseeing an organisation’s information security program. The CISO’s role encompasses developing, implementing and enforcing security policies to safeguard critical data and technology assets.

Here are some key aspects of the CISO’s responsibilities:

  • Information Security Leadership - The CISO focuses on developing and leading the program. This involves protecting the organisation’s assets, applications, systems, and technology while enabling and advancing business outcomes.

  • Risk Management and Compliance - Educating and managing technology risk in collaboration with business leaders. This sees the CISO building and driving a cyber security strategy and framework to secure the organisation’s cyber and technology assets. The CISO must continuously evaluate and manage the cyber and technology risk posture.

  • Governance and Reporting - The CISO implements and manages the cyber governance, risk, and compliance (GRC) process. And reports to the most senior levels of the organisation (such as the CEO and board of directors). Whenever new clients and partners are onboarded, and whenever a governing body performs an audit, a CISO is often called in to discuss data privacy policies and protocols.

  • Investment Decisions - This involves developing, justifying, and evaluating cyber security investments for controls, programs, solutions and technology. They see to it that gaps in the existing tech stack are remediated and explore automation for risk discovery and assessment.

  • Security Awareness and Operations - Staying in the loop of emerging cyber threats, industry best practices, trends in information technology and technological advancements to address security vulnerabilities and mitigate risks proactively are some of the CISO's responsibilities. The CISO is also in charge of implementing ongoing security awareness training and education for users. The CISO leads cyber security operations and disaster recovery protocols with business resilience in mind.

In their daily work, the CISO collaborates with other C-suite executives, such as the Chief Information Officer (CIO), Chief Technology Officer (CTO), Chief Security Officer (CSO), Chief Risk Officer (CRO), and even the Chief Executive Officer (CEO), to continually improve the organisation’s security posture.

To bridge the gap between the security team and the C-suite, security leaders can explore CISO training that equips them with the right skills, knowledge and senior management perspectives.

Why take EC-Council CCISO Training?

EC-Council's Certified Chief Information Security Officer (Certified CISO) program is highly regarded among security professionals, offering numerous benefits that enable participants to tackle the latest challenges in the field effectively.

Ideal candidates for CCISO certification are information security professionals looking to equip themselves with resources and expertise on how to become a CISO. It is also for security professionals who want to advance in other executive-level security career paths, such as Certified Information Security Manager® (CISM®) professionals on the cusp of taking that next step. It is also suited for existing CISOs and IT/IS executives or managers.

In the CCISO program, cyber security leaders hone their knowledge and learn how to integrate information security initiatives with the needs of the business by aligning with an organisation's critical goals and objectives.

Existing CISOs are also encouraged to participate so they can strengthen their security program knowledge, understand current technology principles, and sharpen their business insights.

Many Certified CISOs have exceeded their roles' requirements, delivering exceptional job performances and significantly contributing to their communities.

It takes a village. The new EC-Council CCISO program is a product of the concerted efforts of previous graduates and CISOs from around the world who wanted to give back by sharing their experiences to new and up-and-coming CISOs -- from the good to the bad and the totally unexpected.

To gain insights into outstanding cyber security leaders' qualities, perspectives, and practices, the EC-Council conducted an in-depth survey in which 281 C-Suite leaders from the information security participated in its 2023 Certified CISO Hall of Fame Report.

Some of the key findings are:

  • 99% reported the EC-Council CISO course improved their cyber security leadership skills.

  • 99% reported that topics covered in the CISO training program align with C-level cyber security responsibilities.

  • 98% affirm that the training program empowered them to improve their organisation's cyber security stance.

  • 90% gained confidence in aligning security strategies with organisational goals.

  • 60% were able to bridge the gap between the security team and the C-suite.

  • 100% contributed to the cyber security community in a meaningful way after gaining certification.

5 domains covered in the CCISO course


The C|CISO curriculum has been developed by existing CISOs who know what it takes to serve as chief information security officers. C|CISO covers the five essential domains of CISO knowledge:

  • Governance and risk management

  • Information security controls, compliance, and audit management

  • Security program management and operations

  • Information security core competencies

  • Strategic planning, finance, procurement, and vendor management

LFY - Work - Blog Image 1920x1080 EC-Council CCISO Five Domains

In the new CCISO program, students can find the following added resources:

  • New sections covering the General Data Protection Regulation (GDPR)

  • Increased focus on risk management frameworks, including the NIST Risk Management

  • Framework, COBIT, TARA, OCTAVE, FAIR, and ITIL

  • More robust contract management

  • Heavier emphasis on vendor management

  • Step-by-step advice on how to build and mature a security program

  • A CISO-level view of transformative technologies, including artificial intelligence, augmented reality, autonomous security operations centres, dynamic deception, and more

  • In-depth coverage of strategic planning

EC-Council CCISO Training with Lumify Work

The International Council of E-Commerce Consultants (EC-Council) is a member-based organisation that certifies individuals in various e-business and information security skills.

It is the owner and creator of the world-famous Certified Ethical Hacker (CEH), Computer Hacking Forensic Investigator (CHFI) and Licensed Penetration Tester (LPT) certifications and cyber security courses.

Lumify Work is the partner of choice for the EC-Council in New Zealand. We aim to make it easy for you and your teams to access the best learning solutions. Wherever you are, Lumify Work is local to you.

You can access EC-Council's CISO training in Auckland, Wellington and Christchurch. Full HD video and audio create a virtual classroom experience and access to our pool of expert trainers.

With the Lumify Anywhere platform, students can complete their training from the comfort of their own homes, from one of our campuses – or wherever suits them best.

View our wide range of cyber security courses that prepare candidates for different cyber security roles like end-users, entry-level, technical advisory and senior leadership. Access our cyber security brochure to learn about pathways and trends.


Feature Articles


Blog
What to look for in a cloud security system and in training
By Leif Pedersen | 19 February 2024
Read
Blog
Unleashing the Power of Data Analytics: A Call for Governments and Public Sector Agencies
By Chloe Villanueva | 20 November 2023
Read
Case Study
Case Study: Spark NZ getting ahead with ITIL Certification
By Leigh Richardson | 30 June 2023
Read
eBook
Drive Innovation with IT Service Management Training
11 December 2023
Read