TN-825: Certified Information Security Manager (CISM) Seminar

Course Overview:

The Certified Information Security Manager (CISM) certification program is developed specifically for experienced information security managers & those who have information security management responsibilities. The CISM certification is for the individual who manages, designs, oversees and/or assesses an enterprise’s information security (IS). The CISM certification promotes international practices & provides executive management with assurance that those earning the designation have the required experience & knowledge to provide effective security management & consulting services. Individuals earning the CISM certification become part of an elite peer network, attaining a one-of-a-kind credential. The CISM job practice also defines a global job description for the information security manager & a method to measure existing staff or compare prospective new hires.

This course is designed to assist in your exam preparation for the CISM exam.

Attendees to TN-825: Certified Information Security Manager (CISM) Seminar will receive TechNow approved course materials and expert instruction.

Dates/Locations:

Date/Time	Event
01/27/2025 - 01/31/2025 08:00 -16:00	TN-825: Certified Information Security Manager (CISM) Seminar TechNow, Inc, San Antonio TX
04/07/2025 - 04/11/2025 08:00 -16:00	TN-825: Certified Information Security Manager (CISM) Seminar TechNow, Inc, San Antonio TX
11/17/2025 - 11/21/2025 08:00 -16:00	TN-825: Certified Information Security Manager (CISM) Seminar TechNow, Inc, San Antonio TX

Duration: 5 Days

Course Objectives:

Information Security Governance (24%)
Establish and/or maintain an information security governance framework and supporting processes to ensure that the information security strategy is aligned with organizational goals and objectives
Information Risk Management (30%)
Manage information risk to an acceptable level based on risk appetite to meet organizational goals and objectives
Information Security Program Development and Management (27%)
Develop and maintain an information security program that identifies, manages and protects the organization’s assets while aligning to information security strategy and business goals, thereby supporting an effective security posture
Information Security Incident Management (19%)
Plan, establish and manage the capability to detect, investigate, respond to and recover from information security incidents to minimize business impact

Prerequisites:

A minimum of five years of information security work experience, with a minimum of three years of information security management work experience in three or more of the job practice analysis areas.

Comments

Latest comments from students

User: tracycampbell

Instructor comments: Dave had great command of the class and the flow of information. The lessons seem relevant to the exam and the course material should assist greatly with passing. As a bonus, his breakdown of PKI helped with my current job requirements.

Facilities comments: The Home2Suites by Hilton was FANTASTIC!

Liked the class? Then let everyone know!

CT-425: CompTIA Advanced Security Practitioner (CASP+)

Course Overview:

This course will cover topics to ensure that students have the technical knowledge and skills required to conceptualize, design, and engineer secure solutions across complex enterprise environments. Students will be able to apply critical thinking and judgement across a broad spectrum of security disciplines to propose and implement solutions that map to enterprise drivers. This course will prepare students for the objectives covered in the CompTIA CASP+ certification exam (CAS-004).

Attendees to CT-425: CompTIA Advanced Security Practitioner (CASP+) will receive TechNow approved course materials and expert instruction.

Date/Locations:

Date/Time	Event
03/10/2025 - 03/14/2025 09:00 -17:00	CT-425: CompTIA Advanced Security Practitioner (CASP+) TechNow, Inc, San Antonio TX
06/09/2025 - 06/13/2025 09:00 -17:00	CT-425: CompTIA Advanced Security Practitioner (CASP+) TechNow, Inc, San Antonio TX
09/15/2025 - 09/19/2025 09:00 -17:00	CT-425: CompTIA Advanced Security Practitioner (CASP+) TechNow, Inc, San Antonio TX
12/08/2025 - 12/12/2025 09:00 -17:00	CT-425: CompTIA Advanced Security Practitioner (CASP+) TechNow, Inc, San Antonio TX

Duration: 5 days

Course Objectives:

Support IT governance in the enterprise with an emphasis on managing risk
Leverage collaboration tools and technology to support enterprise security
Use research and analysis to secure the enterprise
Integrate advanced authentication and authorization techniques
Implement cryptographic techniques
Implement security controls for hosts
Implement security controls for mobile devices
Implement network security
Implement security in the systems and software development lifecycle
Integrate hosts, storage, networks, applications, virtual environments, and cloud technologies in a secure enterprise architecture
Conduct security assessments
Respond to and recover from security incidents

Prerequisites:

Completion of the following or equivalent knowledge:

CompTIA Certification: A+ Essentials

CompTIA Certification: Security+

Comments

Latest comments from students

User: clbrack

Instructor comments: I expect to pass, another great class from technow!

User: christopher0470

Instructor comments: Alan takes the time to cover the material so that you understand the concepts and applications of the information presented.

Facilities comments: I like the location. It was quiet and very conducive to learning.

Liked the class? Then let everyone know!

TN-939: Hacker Techniques, Exploits, and Incident Handling Course

Course Overview:

A skills focus enables the student to better absorb the subject matter and perform successfully on the exam. This is not death by power point. The course is aligned with information assurance operators and executing hands-on labs. Lecture and labs walk the student through the knowledge required to truly understand the mechanics of the attacks and the effectiveness. Students then gain network experience and use sniffing to help exemplify the benefit of learning wired and wireless security configurations. The course concludes with exercising real attack strategies to demonstrate the techniques acquired throughout the course.

Attendees to TN-939: Hacker Techniques, Exploits, and Incident Handling will receive TechNow approved course materials and expert instruction.

Date/Locations:

No Events

Duration: 9 days

Course Objectives:

Backdoors & Trojan Horses
Buffer Overflows
Covering Tracks: Networks
Covering Tracks: Systems
Denial of Service Attacks
Exploiting Systems Using Netcat
Format String Attacks
Incident Handling Overview and Preparation
Incident Handling Phase 2: Identification
Incident Handling Phase 3: Containment
Incident Handling: Recovering and Improving Capabilities
IP Address Spoofing
Network Sniffing
Password Attacks
Reconnaissance
Rootkits
Scanning: Host Discovery
Scanning: Network and Application Vulnerability scanning and tools
Scanning: Network Devices (Firewall rules determination, fragmentation, and IDS/IPS evasion)
Scanning: Service Discovery
Session Hijacking, Tools and Defenses
Types of Incidents
Virtual Machine Attacks
Web Application Attacks
Worms, Bots & Bot-Nets

Prerequisites:

GSEC or equivalent experience
UNIX, Windows, Networking, and Security Experience
This is a hands-on skill course requiring comfort with command line interaction and network communications

Comments

Latest comments from students

User: m_jurrens

Instructor comments: Both instructors Mr. Askey and Mr. Hackney, were very good. the open learning environment was extremely productive and I felt we all learned far more that we ever would out of a structured rote memorization course.

User: natebonds

Instructor comments: Both Mr. Askey and Hackney were extremely knowledgeable. They were also extremely interested in helping each student learn. I was particularly impressed with the way they tailored the course to optimize our time since we weren't testing. I feel like I know much much more than I did when the class started.

Facilities comments: The facilities were fine. I would have preferred it be closer to Lackland.

Liked the class? Then let everyone know!

TN-813: Certified in Governance, Risk and Compliance (CGRC)

Course Overview:

TN-813: Certified in Governance, Risk, and Compliance (CGRC) course is for the (ISC)²® Certified in Governance, Risk, and Compliance (CGRC) credential previously known as Certified Authorization Professional (CAP). This course walks the student through the Risk Management Framework following practices the NIST pubs. CGRC is an objective measure of the knowledge, skills and abilities required for personnel involved in the process of certifying and accrediting security of information systems. Specifically, this credential applies to those responsible for formalizing processes used to assess risk and establish security requirements. Their decisions will ensure that information systems possess security commensurate with the level of exposure to potential risk, as well as damage to assets or individuals.The CGRC credential is appropriate for civilian, state and local governments in the U.S., as well as commercial markets. CGRC certification applies to job functions such as authorization officials, system owners, information owners, information system security officers, and certifiers. CGRC is crucial to the Management staff.

This course is the “why” of the entire security field. It provides a logical way of allocating resources where there is greatest risk and why we make the decisions we make in the field of security. It is TechNow’s view that of all the security courses we have seen, this course genuinely puts the “big picture” of security in front of the students. Students actually come to an understanding of truly what is critical to security of an enterprise versus a bunch of nuts and bolts of security.

TechNow’s CGRC course covers all of the (ISC)²® CGRC 7 Knowledge domains:

Security and Privacy Governance, Risk Management, and Compliance Program
Scope of the System
Selection and Approval of Framework, Security, and Privacy Controls
Implementation of Security and Privacy Controls
Assessment/ Audit of Security and Privacy Controls
System Compliance
Compliance Maintenance

RMF Related Steps

Prepare – Process Initiation
Categorize Information Systems
Establish the Security Control Baseline
Apply Security Controls
Assess Security Controls
Authorize Information System
Monitor Security Controls

TechNow’s CGRC Instructors have extensive knowledge and experience in the field, and have been working with organizations to build assessor teams for over 20 years.

Attendees to TN-813: Certified in Governance, Risk, and Compliance (CGRC) will receive TechNow authorized training materials, including access to the documentation of the CGRC Exam domains, and expert instruction.

Dates/Locations:

Date/Time	Event
01/21/2025 - 01/24/2025 08:00 -16:00	TN-813: Certified in Governance, Risk and Compliance (CGRC) TechNow, Inc, San Antonio TX
03/31/2025 - 04/04/2025 08:00 -16:00	TN-813: Certified in Governance, Risk and Compliance (CGRC) TechNow, Inc, San Antonio TX
05/28/2025 - 05/30/2025 08:00 -16:00	TN-813: Certified in Governance, Risk and Compliance (CGRC) TechNow, Inc, San Antonio TX
09/08/2025 - 09/11/2025 08:00 -16:00	TN-813: Certified in Governance, Risk and Compliance (CGRC) TechNow, Inc, San Antonio TX

Duration: 3 Days

Course Objectives:

Initiate the Preparation Phase
Perform Execution Phase
Perform Maintenance Phase
Understand the Purpose of Security Authorization

Prerequisites:

IT Security
Information Assurance
Information Risk Management certification and systems administration
1-2 years of general experience technical experience
2 years of general systems experience
1-2 years of Database/Systems Development/Network Experience
Information Security Policy Experience

Comments

Latest comments from students

Liked the class? Then let everyone know!

Trademark Recognition

(ISC)², CBK, and CISSP are registered marks of the International Information Systems Security Certification Consortium in the United States and other countries.

Access, Excel, Hyper-V, Outlook, Microsoft, SharePoint, Silverlight, SQL Server, Visual Basic, Win32, Windows, Windows PowerShell and Windows Server are registered trademarks of Microsoft Corporation.

Adobe, Acrobat, Flash and Photoshop are registered trademarks of Adobe Systems Incorporated in the United States and/or other countries

Amazon Web Services is a trademark of Amazon.com, Inc.

Android is a trademark of Google Inc.

APMG-International Change Management, The APMG-International Change Management and Swirl Device logo, APMG-International AgilePM and The APMG-International AgilePM and Swirl Device logo are trademarks of The APM Group Limited.

Certified Ethical Hacker (CEH) is a registered trademark of EC-Council.

Cisco is a registered trademark of Cisco Systems Inc.

CMMI® is registered in the U.S. Patent and Trademark Office by Carnegie Mellon University.

IIBA®, the IIBA® logo, BABOK® and Business Analysis Body of Knowledge® are registered trademarks owned by International Institute of Business Analysis. These trademarks are used with express permission of International Institute of Business Analysis.

CAPM, Certified Associate in Project Management (CAPM), PMP, Project Management Professional (PMP), PMI-ACP, PMI Agile Certified Practitioner (PMI-ACP), PMBOK, and the R.E.P. Logo are marks of Project Management Institute, Inc.

CBAP® and CCBA® are registered certification marks owned by International Institute of Business Analysis. These trademarks are used with express permission of International Institute of Business Analysis.

Certified Business Analysis Professional, Certification of Competency in Business Analysis, Endorsed Education Provider, EEP and the EEP logo are trademarks owned by International Institute of Business Analysis. These trademarks are used with express permission of International Institute of Business Analysis.

COBIT is a trademark of ISACA, registered in the U.S. and other countries.

CompTIA A+ and CompTIA Network+ are registered trademarks of the Computing Technology Industry Association, Inc.

CompTIA CASP and CompTIA Cloud Essentials are trademarks of the Computing Technology Industry Association, Inc.

GIAC and associated certifications: GSEC, GPEN, GXPN, GCFW, GCUX, GCWN, GCIA, GREM are registered trademarks of the SANS Institute

Hadoop is a registered trademark of the Apache Software Foundation.

Hibernate is a registered trademark and servicemark of Red Hat, Inc.

iPad, iPhone, Mac and Mac OS are trademarks of Apple Inc., registered in the U.S. and other countries.

ITIL®, PRINCE2® and MSP® are registered trademarks of AXELOS Limited.

JavaScript, JavaServer, JavaServer Pages, Enterprise JavaBeans, MySQL and PL/SQL are trademarks of Oracle Corporation.

Linux is a registered trademark of Linus Torvalds.

Java and Oracle are registered trademarks of Oracle Corporation.

Palo Alto Networks, PAN-OS, App-ID, Content-ID, Url-ID, GlobalProtect, Wildfire, and Panorama are trademarks of Palo Alto Networks, Inc.

"Python" is a registered trademark of the Python Software Foundation, used by Learning Tree International with permission from the Foundation.

Red Hat and Red Hat Enterprise Linux are registered trademarks of Red Hat, Inc. in the United States and other countries.

SANS and associated certifications: GSEC, GPEN, GXPN, GCFW, GCUX, GCWN, GCIA, GREM are registered trademarks of the SANS Institute

SAP Crystal Reports is the registered trademark of SAP AG in Germany and in several other countries.

Scrum Alliance REP^SM is a service mark of Scrum Alliance, Inc. Any unauthorized use is strictly prohibited.

TechNow® is a registered trademark of TechNow Incorporated.

The Swirl logo™ is a trademark of AXELOS Limited.

Transact-SQL is a trademark of Sybase, Inc.

UNIX is a registered trademark of The Open Group.

VMware is a registered trademark of VMware, Inc. in the United States and/or other jurisdictions.

XML is a trademark of MIT, INRIA or Keio on behalf of the World Wide Web Consortium.