Welcome to the RecertHero soft launch!
Submit bugs, feature requests, and feedbackISACA · Under 2 hours
Short opportunities — under two hours each — that count toward CISM renewal. Useful when you need to bank a few credits between deeper sessions. RecertHero estimates the CPE value of every opportunity, so you can plan toward the 120 CPEs CISM requires every 3 years — without re-keying each entry into ISACA's portal.
11 results mapped to CISM, soonest first.
How to design an insider risk program that respects employee trust, with concrete signal sources, escalation playbooks, and HR/Legal partnership patterns.
ImportantRecertHero is an independent aggregator. Credit estimates are guidance only — always verify with your certifying body.
A leader's view of AI governance: model risk classification, vendor due diligence, the EU AI Act in practice, and a sample policy template you can adapt.
An auditor's perspective on building a cloud risk register, evidence collection in serverless environments, and translating cloud control gaps into board-ready language.
Build hands-on expertise with Microsoft Security Copilot. Start with enabling the solution and writing effective prompts to configuring enterprise workspaces and managing plugins and agents at scale.
A facilitator's kit + recording of a 90-minute exercise simulating a ransomware incident touching on-prem AD, two cloud tenants, and a third-party MSP. Includes injects, scoring sheet, and after-action template.
Vendor walkthrough of the SecureX orchestration story — integrations, response workflows, threat hunting via cross-product pivots.
Lessons from a 12,000-employee company's migration from ISO 27001:2013 to the 2022 controls. Includes a mapped control delta and an evidence-gathering checklist.
A focused refresher on CISSP Domain 1 for re-certifiers. Covers the major framework families (NIST, ISO, COBIT), risk treatment options, and exam-style scenario discussion.
Master the art of safeguarding sensitive data and enforcing governance for AI workloads on Azure. This learning path is crafted for IT and security professionals tasked with maintaining data protection and compliance in AI environments. Discover how to prevent data exfiltration and apply governance policies that ensure consistent, secure AI deployments. Learn to combine technical controls with strategic oversight to create resilient, policy-driven AI architectures that align with organizational and regulatory standards.
Retention helps organizations meet compliance requirements and manage the lifecycle of data in Microsoft 365. This learning path shows how to configure retention labels and policies, apply them with adaptive scopes, and recover deleted content in Microsoft 365 workloads. It aligns with exam SC-401: Microsoft Information Security Administrator.
Logging actions and locating content are essential for investigating events, supporting compliance efforts, and maintaining transparency. Microsoft Purview provides audit and content search capabilities to help organizations understand what actions were taken and find specific items across Microsoft 365 services. This learning path aligns with exam SC-401: Microsoft Information Security Administrator.