The Information Security Management (ISM) course is administered in two phases. Phase I is the prerequisite eLearning courses/exams and Phase II is the instructor-led course. You are required to register and successfully complete Phase I before receiving approval to attend Phase II. See Registration Requirements below.

Description: This mid-level course helps provide the student with a comprehensive understanding of policies and procedures of the Department of Defense (DoD) Information Security Program (ISP). Lessons emphasize security classification, downgrading and declassification, and safeguarding to include: access control, dissemination control, accountability, security storage, disposal, destruction, and transmission; violations and compromises, security education, and program oversight. Students can discuss ideas, issues, problems, and possible solutions with key representatives of those executive branch organizations responsible for the ISP. The intent of this course is to provide knowledge and skills for students to effectively implement and/or oversee DoD ISP policies and guidance.

Learning Outcomes: This course is designed to enable students to:

  • Relate and illustrate fundamental policies of the ISP as stated in Executive Order (EO) 13526; 32 C.F.R. Information Security Oversight Office (ISOO) Final Rule; and DoDM 5200.01, Information Security Program
  • Apply fundamental principles of security management to development, implementation, and evaluation of ISPs within their activities
  • State the role of the security manager in developing and implementing an ISP
  • Relate and illustrate the contribution of included and related programs
  • Identify organizations involved in developing and implementing the DoD ISP and related programs
  • Identify and locate directives, guidance, and supporting publications containing guidance and information concerning the ISP

Delivery Method: Instructor-led

Length: 5 days

Target Audience: This course is for DoD civilian, military, and contractor personnel with primary duty as an information security specialist or manager within a DoD Component ISP. The course is also appropriate for part-time information security specialists or managers, persons requiring the course as part of their training in an Information Security Management career field, and Federal employees with responsibilities related to information security. Students are also expected to have a functional working knowledge of the DoD ISP.

Number of Students per Course: 30


  • Clearance Requirement: Secret
  • Attendance Requirement: Full-time attendance
  • Exam Requirements: Students must earn an 80 percent cumulative grade average on practical exercises and the comprehensive final examination.

Prerequisites: Successfully complete the Phase I activities identified in the Information Security Management Curriculum Navigation IF020.NAV document.

Registration Requirements: Students must be enrolled in Phase I as a prerequisite for Phase II registration. To enroll in Phase I, students first complete the Information Security Management Curriculum Navigation IF020.NAV document which assigns the required Phase I eLearning activities. This document also provides instructions to navigate the eLearning courses. These courses are bundled into two apportioned 'Modules' and are assigned in order of recommended completion.

Once enrolled in Phase I, students may register and reserve a tentative spot in the Phase II Instructor-led course on their desired date. Students are placed in a "Pending Approval" status while completing Phase I and are approved on a first come, first serve basis. Students are approved in the order they successfully complete Phase I. Students are placed on a waiting list once maximum capacity is reached for Phase II. If additional space becomes available or cancellations are received for Phase II, students from the waiting list will be contacted. Course reservations for Phase II are prohibited.

Credits Recommended/Earned:

  • ACE Credit Recommendation: (What's this?): 3 semester hours, upper division baccalaureate degree category
  • Continuing Education Units (CEU) Per IACET: 7
  • Professional Development Units (PDU) per SPēD: 45

Additional System Requirements: Check if your system is configured appropriately to use STEPP.


CDSE courses are intended for use by Department of Defense and other U.S. Government personnel and contractors within the National Industrial Security Program.

American Council on Education College Credit Recommendation Service

Course Schedule

Jul 15 - 19, 2019 (Linthicum, MD)

Quick Links

Register for Phase I

Register for Phase II


Content related questions.