Let’s make it work for you
EC-Council Certified Chief Information Security Officer
- Categories:
- Cyber Security
- Level:
- Expert
- Code:
- ECCCISO
- Exam:
- Yes - Included
Overview
EC-Council’s CCISO Program has certified leading information security professionals around the world. A core group of high-level information security executives, the CCISO Advisory Board, contributed by forming the foundation of the program and outlining the content that would be covered by the exam, body of knowledge, and training. Some members of the Board contributed as authors, others as exam writers, others as quality assurance checks, and still others as trainers. Each segment of the program was developed with the aspiring CISO in mind and looks to transfer the knowledge of seasoned professionals to the next generation in the areas that are most critical in the development and maintenance of a successful information security program.
Target Audience
This course is designed for the aspiring or sitting upper-level manager striving to advance his or her career by learning to apply their existing deep technical knowledge to business problems.
The C|CISO course is also suitable for those who in security management roles, including those with CISSP, CISM, CISA qualifications. C|CISO provides an opportunity to differentiate yourself in the marketplace with this outstanding security leadership certification.
Certified C|CISO’s are offered the opportunity to attend the EC Council annual C|CISO events.
C|CISO FAQ page can be found here
'I took EC-Council’s Certified CISO course to round out the executive mindset that I now need as a manager of security teams. C|CISO was one of the best courses I have taken and strengthened my views on what good leaders should be doing.'
Don Pecha, Information Security at PayPal
Prerequisites
Candidates interested in earning the C|CISO Certification must qualify via ECCouncil’s Exam Eligibility application before booking the C|CISO course. Only students with at least five years of experience in three of the five domains are permitted to sit for the C|CISO Exam. Any student who does not qualify to sit for the exam or who does not fill out the application will be permitted to take the EC-Council Information Security Manager (EISM) exam and earn that certification. EISMs may then apply for the CCISO Exam once they have achieved the required years of experience.
Please note - The exam eligibility form can be accessed via the link above and sent to EC Council - before attending training. The completed form can be sent to - ccisoapp@eccouncil.org .
What's included
Select your preferred way to learn:
What is Virtual?
Live, instructor-led training delivered online
Interactive online sessions led by subject matter experts. Learners join live classes, take part in discussions, and complete practical exercises from any location, making it easy to fit collaborative learning into busy schedules.
If you prefer to connect to a course that is taking place in a physical classroom, you can choose our Remote Access option. .
Best for: Teams and individuals who want expert guidance, real-time collaboration, and flexible access.
What's included?
5 Days instructor led course
Exam included
Online exam voucher
6 month free access to QA learning platform
Free 6-Month Access: Learning Platform Discovery plan
Included FREE with every instructor‑led course
Get free guided access to the QA Learning Platform. Assess your skills, explore in-demand topics, and understand which areas to focus on.
Learn AI, Cloud, Data, and Leadership skills at your own pace.
Put skills into practice with hands-on Labs and Simulabs.
Validate knowledge and highlight gaps with skills assessments.
What is bespoke training?
Custom instructor-led training designed by QA to fit your needs
Tailored programmes built around your organisation’s goals, challenges, and skill levels. Delivered in the format that suits you to maximise relevance and impact.
Best for: Organisations and teams looking to target specific business priorities and capabilities with QA subject matter expertise.
Find out more about the course:
Course outline
In this course, you will learn in-depth content in each of the 5 CCISO Domains:
Domain 1
Governance (Policy,Legal and Compliance) The first Domain of the CCISO program is concerned with the following:
- Information Security Management Program
- Defining an Information Security Governance Program
- Regulatory and Legal Compliance
- Risk Management
- IS Management Controls and Auditing Management
Domain 2
of the CCISO program, one of the cornerstones of any information security program, is concerned with the following:
- Designing, deploying, and managing security controls
- Understanding security controls types and objectives
- Implementing control assurance frameworks
- Understanding the audit management process
Domain 3
of the CCISO program covers the day-to-day responsibilities of a CISO, including:
- The role of the CISO
- Information Security Projects
- Integration of security requirements into other operational processes (change management, version control, disaster recovery, etc.)
Domain 4
of the CCISO program covers, from an executive perspective, the technical aspects of the CISO job including:
- Access Controls
- Physical Security
- Disaster Recovery and Business Continuity Planning
- Network Security
- Threat and Vulnerability Management
- Application Security
- System Security
- Encryption
- Vulnerability Assessments and Penetration Testing
- Computer Forensics and Incident Response
Domain 5
of the CCISO program is concerned with the area with which many more technically inclined professionals may have the least experience, including:
- Security Strategic Planning
- Alignment with business goals and risk tolerance
- Security emerging trends
- Key Performance Indicators (KPI)
- Financial Planning
- Development of business cases for security
- Analyzing, forecasting, and developing a capital expense budget
- Analyzing, forecasting, and developing an operating expense budget
- Return on Investment (ROI) and cost-benefit analysis
- Vendor management
- Integrating security requirements into the contractual agreement and procurement process
- Taken together, these five Domains of the C|CISO program translate to a thoroughly
- knowledgeable, competent executive information security practitioner.
EXAM
Candidates who participate in the official EC Council C|CISO training course, via QA an official EC Council training provider, must show 5 years of experience in three of the C|CISO domains to take the exam.
To earn the C|CISO, every applicant must pass the exam covering all 5 C|CISO domains, regardless of experience in each domain. The exam consists of 150 multiple-choice questions administered over a two-and-a-half-hour period. The questions on the exam require extensive thought and evaluation, covering knowledge, application and analysis.
Good to know
Exams and Assessments
Please complete the EC Council C|CISO Exam Eligibility form and submit using the email address provided in order to ensure you meet their exam eligibility requirements.
You will receive your Pearson Vue exam voucher in your course fee, and will need to arrange this at Pearson Vue testing facility.
The EC Council exam is taken post-course, and EC Council recommend additional post-course study in order to fully prepare for it.
This course includes the EC-Council Certified Chief Information Security Officer (C|CISO) exam.
- Format: 150 multiple-choice questions
- Duration: two and a half hours
- Coverage: all five C|CISO domains, including knowledge, application and analysis
To be eligible to sit the exam, candidates must demonstrate at least five years of information security experience across three of the five C|CISO domains.
Candidates must complete EC-Council's exam eligibility application before attending training. Those who do not yet meet the experience requirement may instead sit the EC-Council Information Security Manager (EISM) exam and apply for the C|CISO exam once they have gained the requisite experience.
Why choose QA
- Award-winning training, top NPS scores
- Nearly 300,000 learners in 2020
- Our training experts are industry leaders
- Read more about QA
NCSC Assured Training

Continuous Professional Development (CPD)
CPD points can be claimed for NCSC assured training courses at the rate of 1 point per hour of training for NCSC assured training courses (up to a maximum of 15 points).
Cyber Security learning paths
Want to boost your career in cyber security? Click on the roles below to see QA's learning pathways, specially designed to give you the skills to succeed.
Governance, Risk & Compliance learning paths
Want to boost your career in Governance, Risk & Compliance? View QA's learning pathway below, specially designed to give you the skills to succeed.
Get in touch for team bookings and exclusive discounts
Ready to book? Complete the form and a member of our team will be in touch shortly to discuss your options.
Let’s make it work for you. Speak to one of our learning experts today.
What our customers are saying
“I would say the secure software engineering programme QA built, is beyond training. It is more around making transformation in the mindset of people, and this was exactly what we are looking for.”
Emil Minev
Senior Consultant & Programme Manager, Paysafe Group
“I really enjoyed the practical experience given by the labs, and also being able to make use of the expertise of the trainers and learn tips and tricks from them. Overall, it was an excellent overview of the cyber security profession as a whole. The learning experience was fun and exciting!”
QA learner
“I loved learning about Open Source Intelligence - the things you can do just with Google are amazing! Also, being able to meet, work with, and chat to other people interested in cyber was fantastic.”
QA learner
Portfolio Director
Richard Beck
Portfolio Director – Cyber
Frequently asked questions
How can I create an account on myQA.com?
There are a number of ways to create an account. If you are a self-funder, simply select the "Create account" option on the login page.
If you have been booked onto a course by your company, you will receive a confirmation email. From this email, select "Sign into myQA" and you will be taken to the "Create account" page. Complete all of the details and select "Create account".
If you have the booking number you can also go here and select the "I have a booking number" option. Enter the booking reference and your surname. If the details match, you will be taken to the "Create account" page from where you can enter your details and confirm your account.
Find more answers to frequently asked questions in our FAQs: Bookings & Cancellations page.
How do QA’s virtual classroom courses work?
Our virtual classroom courses allow you to access award-winning classroom training, without leaving your home or office. Our learning professionals are specially trained on how to interact with remote attendees and our remote labs ensure all participants can take part in hands-on exercises wherever they are.
We use the WebEx video conferencing platform by Cisco. Before you book, check that you meet the WebEx system requirements and run a test meeting to ensure the software is compatible with your firewall settings. If it doesn’t work, try adjusting your settings or contact your IT department about permitting the website.
How do QA’s online courses work?
QA online courses, also commonly known as distance learning courses or elearning courses, take the form of interactive software designed for individual learning, but you will also have access to full support from our subject-matter experts for the duration of your course. When you book a QA online learning course you will receive immediate access to it through our e-learning platform and you can start to learn straight away, from any compatible device. Access to the online learning platform is valid for one year from the booking date.
All courses are built around case studies and presented in an engaging format, which includes storytelling elements, video, audio and humour. Every case study is supported by sample documents and a collection of Knowledge Nuggets that provide more in-depth detail on the wider processes.
When will I receive my joining instructions?
Joining instructions for QA courses are sent two weeks prior to the course start date, or immediately if the booking is confirmed within this timeframe. For course bookings made via QA but delivered by a third-party supplier, joining instructions are sent to attendees prior to the training course, but timescales vary depending on each supplier’s terms. Read more FAQs.
When will I receive my certificate?
Certificates of Achievement are issued at the end the course, either as a hard copy or via email. Read more here.
