PECB Certified Chief Information Security Officer (CCISO)

COURSE OVERVIEW

The Chief Information Security Officer (CISO) is one of the most critical and most challenging executive roles in any organisation. The CISO must understand technology without being confined by it, manage risk without paralyzing operations, translate cybersecurity into business language for the board, satisfy regulators, respond to incidents, and drive a security culture across an entire enterprise — often with limited resources and limited appreciation from leadership who do not yet understand the scale of what they are managing.

The PECB Certified Chief Information Security Officer (CCISO) programme is designed for current and aspiring security leaders — providing the strategic, governance, financial, and leadership frameworks needed to perform at this level. We are an authorised PECB training partner delivering this programme in Nigeria, led by our own CCISO-certified lead examiner, Dr. R. Tombari Sibe.

WHY THE CCISO MATTERS

• Nigeria faces a severe shortage of qualified cybersecurity leaders. Most Nigerian organisations — including banks, government agencies, and major corporates — lack a qualified CISO, leaving security decisions in the hands of IT generalists or non-technical executives.
• Regulatory requirements — including the CBN Risk-Based Cybersecurity Framework — explicitly require financial institutions to designate a qualified senior information security officer. The CCISO credential directly satisfies this requirement.
• Organisations without a qualified security leader consistently demonstrate longer breach dwell times, higher remediation costs, and weaker regulatory standing — making the CISO investment one of the highest-return decisions in enterprise security.
• The global CCISO community comprises thousands of security leaders in over 100 countries — providing access to a network of peers, resources, and thought leadership that sustains professional growth beyond the certification itself.
• Our lead examiner, Dr. Sibe, holds the CCISO designation — meaning that this programme is delivered by a practitioner who has applied its frameworks in real environments, not just studied them academically.

WHAT THE PROGRAMME COVERS

The CCISO programme is structured across five domains of CISO expertise:

Domain 1 — Governance and Risk Management: Establishing and managing information security governance frameworks; risk management methodologies; compliance with legal, regulatory, and contractual requirements; privacy frameworks; and information security programme development.

Domain 2 — Information Security Controls, Compliance, and Audit Management: Designing, implementing, and managing technical and administrative security controls; conducting audits and assessments; and managing the compliance lifecycle.

Domain 3 — Security Programme Management and Operations: Managing security programmes from strategy through operations; resource management; security metrics and measurement; security architecture and engineering; and incident management.

Domain 4 — Information Security Core Competencies: Technical depth across network security, endpoint security, application security, cloud security, and the full range of security domains that a CISO must be able to oversee.

Domain 5 — Strategic Planning, Finance, Procurement, and Third-Party Management: Developing security strategy; building and defending security budgets; managing procurement and vendor relationships; and aligning security investment with business strategy.

WHO SHOULD ATTEND

Experienced cybersecurity managers and directors aspiring to CISO roles; current CISOs and security leaders seeking formal validation and structured framework development; IT directors with significant security responsibilities; and senior security practitioners in banking, government, oil and gas, and telecommunications — where security leadership credentials carry regulatory significance.