Ben ik verplicht om CISM of CISSP gecertificeerd te zijn wanneer ik de AAISM training wil volgen? Am I required to be CISM or CISSP certified when I want to take the AAISM training?

Voor het volgen van de training geldt deze verplichting niet, voor het uiteindelijk behalen van de certificering wel. Omdat veel cursisten AI Security Management kennis willen opdoen zonder dat ze over een CISM of CISSP certificering beschikken, kan de AAISM training ook zonder examen worden gevolgd waarbij je uiteraard wel een bewijs van deelname ontvangt. Wanneer je alsnog de bijbehorende AAISM titel wilt behalen, dan bieden we hiervoor ook speciale bundels aan van de CISM en AAISM trainingen. Neem gerust contact met ons op wanneer je hier meer over wilt weten. This obligation does not apply to attending the training, but it does apply to ultimately obtaining the certification. Since many participants want to gain knowledge in AI Security Management without holding a CISM or CISSP certification, the AAISM training can also be taken without an exam, and you will, of course, receive a certificate of participation. If you still wish to obtain the corresponding AAISM title, we also offer special bundles for the CISM and AAISM trainings. Feel free to contact us if you would like to know more about this.

Wat is de OWASP AI Exchange? What is the OWASP AI Exchange?

De OWASP AI Exchange is een kennisplatform over AI-security, waar professionals samenwerken aan het identificeren, begrijpen en mitigeren van beveiligingsrisico’s in AI-systemen. Belangrijke doelen zijn Kennisdeling over AI security en AI risk management, discussie over bedreigingen en kwetsbaarheden in AI-systemen, het ontwikkelen van best practices voor secure AI development en samenwerken aan open frameworks en security guidelines. The OWASP AI Exchange is a knowledge platform about AI security, where professionals collaborate to identify, understand, and mitigate security risks in AI systems. Key goals include knowledge sharing on AI security and AI risk management, discussion of threats and vulnerabilities in AI systems, developing best practices for secure AI development, and collaborating on open frameworks and security guidelines.

Wat kan ik van de toegevoegde derde dag verwachten? What can I expect from the added third day?

Met de kennis die je op dag 3 van de AAISM training opdoet, krijg je meer handvatten om AI Security praktisch toe te (laten) passen in je organisatie. Je leest je van te voren in over een fictief bedrijf, waar een casus rondom is gebouwd. Aan de hand van de vijf stappen uit het G.U.A.R.D. model (Govern, Understand, Adapt, Reduce, Demonstrate) dat in de OWASP AI Exchange staat uitgewerkt, ga je praktisch aan de slag met de problemen die er in diverse organisatielagen spelen met betrekking tot het managen van AI Security. Met de opgedane kennis ben je niet alleen in staat de OWASP AI Exchange te gebruiken in je organisatie of collega's te instrueren hoe dit te doen, maar ontvang je ook een complete en direct toepasbare aanpak van het probleemgebied op bedrijfsniveau. With the knowledge you gain on day 3 of the AAISM training, you will have more tools to practically apply (or have applied) AI Security in your organization. You will familiarize yourself in advance with a fictional company, around which a case study has been built. Based on the five steps of the G.U.A.R.D. model (Govern, Understand, Adapt, Reduce, Demonstrate) outlined in the OWASP AI Exchange, you will practically tackle the issues that arise at various organizational levels regarding the management of AI Security. With the knowledge acquired, you will not only be able to use the OWASP AI Exchange in your organization or instruct colleagues on how to do so, but you will also receive a complete and immediately applicable approach to the problem area at the corporate level.

Word ik ook voorbereid op het AAISM examen? Will I also be prepared for the AAISM exam?

De eerste twee dagen van de training bevatten de meest actuele, officiële ISACA lesstof die direct aansluit op het huidige AAISM examen. We helpen je de stof te leren op de manier zoals ISACA die van je verwacht bij het examen. Verder ontvang je ISACA's AAISM Questions, Answers & Explanations database waarmee je uitgebreid kunt oefenen met officiële oefenvragen. Je ziet niet alleen dat je een vraag goed of fout beantwoord hebt, maar ook waarom een antwoord juist of onjuist is. The first two days of the training contain the most current, official ISACA course material that directly aligns with the current AAISM exam. We help you learn the material in the way that ISACA expects from you in the exam. Additionally, you will receive ISACA's AAISM Questions, Answers & Explanations database, which allows you to practice extensively with official practice questions. You will not only see whether you answered a question correctly or incorrectly, but also why an answer is correct or incorrect.

AAISM training - Advanced in AI Security Management

3 days Classroom Nederlands

Sharpest price in just 2 steps

Requesting more information and/or the current price of this training is easy. We take into account any ongoing promotions, subsidies, or relationship discounts.

Why AAISM training - Advanced in AI Security Management at TSTC?

You are training with an accredited ISACA Elite Training Partner, with ISACA-authorized trainers.
This way, you always receive an AAISM training based on the latest materials and insights, where we also make a translation to the local Dutch reality.
With an exclusive, additional third day focusing on the more concrete best practices, policies, and controls of the practical OWASP AI Exchange / SANS Critical AI Security Guidelines.
Including the official AAISM Review Manual, Q&A database, and optionally an exam voucher.
Success guarantee: in case of failing unexpectedly within one year, participate in the training again free of charge.
Hybrid training where you decide whether to attend the training physically, Live Online, or in a combination of both.
Ask about our bundle discount if you are not yet CISM certified and would like to take this training first.

Training Summary

Vendor:

ISACA
Training Language:

Nederlands
Duration:

3 days
Category:

Information Security (Tactical & Strategic)

Security Management (broad)

AI training

Description

The rapid adoption of AI / artificial intelligence solutions brings new threats and vulnerabilities at the same pace. ISACA’s Advanced in AI Security Management (AAISM) is the first and only recognized certification focused on AI security management. The AAISM training helps experienced professionals strengthen the organization's security posture and protect against AI-specific threats. You will learn to manage existing and emerging security risks related to AI, implement policies, and ensure responsible and effective AI use throughout the organization.

The AAISM certification is specifically designed to equip existing CISM or CISSP certified professionals with the additional skills needed to identify, assess, monitor, and mitigate risks associated with enterprise AI solutions. During the training, topics such as AI Governance, AI Risk Management, AI Security Architecture, and AI controls will be covered.

Since the concrete AI controls/measures are only minimally addressed during the regular 2-day course, you will take the AAISM training exclusively at TSTC with an additional added day. On this third, practically oriented day, we will delve deeper into the implementation of an AI security baseline, where you will become familiar with and learn to utilize the best practices, policies, and controls from the progressive OWASP AI Exchange and SANS Critical AI Security Guidelines. By adding this extra (non-exam) material, you will gain a more comprehensive view of an organization-wide AI security policy and be able to instruct others on the implementation of concrete measures from a management point of view.

The AAISM training and exam consist of three ‘job practice areas’ (see the 'modules' section). ISACA continuously assesses their content against current events to ensure that the training remains aligned with the contemporary profile of AI Security Management.

Certification

This training prepares you for the AAISM exam from ISACA, which is optionally included with the training. This exam can be taken at various exam locations in the Netherlands, including at TSTC. If desired, the exam can also be taken under strict online supervision from home. The AASIM exam consists of 90 multiple-choice questions and lasts 150 minutes. A prerequisite for exam participation is an active CISM or CISSP certification.

Training Requirements

CISM/CISSP gecertificeerden
Security managers en CISO’s die AI-security willen integreren in de informatiebeveiligingsstrategie
Cybersecurity professionals die verantwoordelijk zijn voor het beschermen van AI-modellen, data en infrastructuur
AI security engineers en architecten die AI-systemen ontwerpen en beveiligen
IT risk professionals met een security focus die AI-bedreigingen en kwetsbaarheden willen beheersen
Cloud- en platform engineers die AI-oplossingen implementeren in cloudomgevingen en verantwoordelijk zijn voor security controls
GRC- en compliance professionals met security focus die moeten toezien op AI security controls en standaarden
Consultants in cybersecurity en AI die organisaties adviseren over veilige AI-implementaties
Iedereen die verantwoordelijk is of wil worden voor het opzetten van beleid, governance, risicomanagement en controls rondom AI in hun organisatie
Voorkennis: om na de training ook AAISM examen te mogen doen, dien je over een actieve CISM of CISSP certificering te beschikken. Dit is GEEN voorwaarde voor deelname aan de training zelf die ook kan worden afgerond met een bewijs van deelname.

Materials

Officiële ISACA AAISM Review Manual (hardcopy of digitaal)
Officiële ISACA AAISM Questions, Answers & Explanations Database (6 maanden)
Optioneel een AAISM examenvoucher
Map met daarin de afgedrukte slides, handig om aantekeningen bij te maken
Extra uitleg/instructies voor het gebruik van de OWASP AI Exchange.

Training Content

AI Governance en Programma Management (31%)

Dit domein geeft je de kennis om stakeholders te adviseren over de implementatie van AI-beveiligingsoplossingen via passend en effectief beleid, datagovernance, programmamanagement en incidentrespons.

• Stakeholder Considerations, Industry Frameworks, and Regulatory Requirements
• AI-related Strategies, Policies, and Procedures
• AI Asset and Data Life Cycle Management
• AI Security Program Development and Management>
• Business Continuity and Incident Response

AI Risk Management (31%)

Dit domein gaat in op de beoordeling en het beheer van risico’s, dreigingen, kwetsbaarheden en supply chain-problemen die verband houden met de organisatiebrede adoptie van AI.

• AI Risk Assessment, Thresholds, and Treatment
• AI Threat and Vulnerability Management
• AI Vendor and Supply Chain Management

AI Technologie en Controls (38%)

Dit domein richt zich op het optimaliseren van AI-beveiliging en benadrukt je kennis van beveiligingstechnologieën, -technieken en -controles die specifiek zijn afgestemd op AI-systemen.

• AI Security Architecture and Design
• AI Life Cycle (e.g., model selection, training, and validation)
• Data Management Controls
• Privacy, Ethical, Trust and Safety Controls
• Security Controls and Monitoring

Description

Certification

Training Requirements

CISM/CISSP gecertificeerden
Security managers en CISO’s die AI-security willen integreren in de informatiebeveiligingsstrategie
Cybersecurity professionals die verantwoordelijk zijn voor het beschermen van AI-modellen, data en infrastructuur
AI security engineers en architecten die AI-systemen ontwerpen en beveiligen
IT risk professionals met een security focus die AI-bedreigingen en kwetsbaarheden willen beheersen
Cloud- en platform engineers die AI-oplossingen implementeren in cloudomgevingen en verantwoordelijk zijn voor security controls
GRC- en compliance professionals met security focus die moeten toezien op AI security controls en standaarden
Consultants in cybersecurity en AI die organisaties adviseren over veilige AI-implementaties
Iedereen die verantwoordelijk is of wil worden voor het opzetten van beleid, governance, risicomanagement en controls rondom AI in hun organisatie
Voorkennis: om na de training ook AAISM examen te mogen doen, dien je over een actieve CISM of CISSP certificering te beschikken. Dit is GEEN voorwaarde voor deelname aan de training zelf die ook kan worden afgerond met een bewijs van deelname.

Materials

Officiële ISACA AAISM Review Manual (hardcopy of digitaal)
Officiële ISACA AAISM Questions, Answers & Explanations Database (6 maanden)
Optioneel een AAISM examenvoucher
Map met daarin de afgedrukte slides, handig om aantekeningen bij te maken
Extra uitleg/instructies voor het gebruik van de OWASP AI Exchange.

Training Content

AI Governance en Programma Management (31%)

AI Risk Management (31%)

AI Technologie en Controls (38%)

I am taking this next step in my lifelong learning journey.

What Can I Learn After The AAISM training - Advanced in AI Security Management?

Collaborating on defining the roles and responsibilities for the governance and management of AI, aligned with the business objectives.
Executing or managing the AI risk management cycle, including the impact on enterprise risk.
Designing and implementing test and vulnerability management for AI solutions.
Designing and implementing security architecture specifically for AI.
Establishing and maintaining processes to identify, inventory, and classify AI-related data and assets.
Setting up and maintaining incident response processes for AI, including containment, notification, escalation, elimination, and recovery.
Assessing and implementing AI security tools as part of the information security program.
Advising on security risks and measures in the development cycle of AI solutions within the organization.

Establishing and maintaining AI-specific security policies and procedures that guide the development and implementation of AI standards and guidelines.
Identifying and assessing the AI threat landscape.
Conducting AI impact analyses and ensuring compliance with legal requirements.
Advising on the integration of AI architecture within the enterprise architecture.
Addressing security risks related to data in the AI lifecycle.
Incorporating AI security risks into business continuity and disaster recovery planning.
Risk-based monitoring of AI inputs and outputs, including trust & safety, quality, explainability, and robustness.

Ensure responsible use of AI by applying best practices, ethical principles, legal requirements, and industry frameworks.
Monitor internal and external AI-related factors to determine when reassessment of risks is necessary.
Integrate, monitor, and verify AI security requirements when using vendor AI solutions.
Designing, implementing, and regularly evaluating AI security controls to reduce risks to an acceptable level.
Establishing and maintaining AI-specific processes for the research, documentation, and reporting of AI security incidents, in accordance with legal and contractual requirements.
Defining and monitoring security metrics for AI solutions across the entire organization.
Developing and maintaining AI-specific security awareness training and guidelines for responsible use.

Schedules

This training is scheduled as follows in the coming period. Missing a date? Feel free to contact us.

Date: 26 - 28 augustus 2026

Location: TSTC - Klassikaal & Live Online

Request current price

Date: 28 - 30 oktober 2026

Location: TSTC - Klassikaal & Live Online

Request current price

Date: In overleg

Location: —

Request current price

Learning paths

This training can also be taken as part of the below learning path(s). If you want to follow multiple titles from a learning path, please contact our advisors for a suitable bundle offer.

Expert

Intermediate

Fundamentals

Security Manager/ (C)ISO

Expert

CCISO training - Certified Chief Information Security Officer

Lead Cybersecurity Manager Training (PECB)

Masterclass Governance, Risk & Compliance (GRC)

AAISM training - Advanced in AI Security Management

Intermediate

CISSP training - Certified Information Systems Security Professional

CISM training - Certified Information Security Manager

ISO 27001 Lead Implementer Training (PECB)

ISMP training - Information Security Management Professional (EXIN)

Fundamentals

ISO 27001 Foundation Training (PECB)

ISFS training - Information Security Foundation (EXIN)

Certified BIO2 Professional Foundation (CBP-F) - Baseline Informatiebeveiliging Overheid 2

Expert

Intermediate

Fundamentals

AI Governance

Expert

AAISM training - Advanced in AI Security Management

AAIR training - Advanced in AI Risk

Intermediate

ISO 42001 Lead Implementer training (PECB) + EU AI Act dag

Fundamentals

AIGP training - Certified AI Governance Professional

ISO 42001 Foundation + EU AI Act dag

Frequently Asked Questions

This obligation does not apply to attending the training, but it does apply to ultimately obtaining the certification. Since many participants want to gain knowledge in AI Security Management without holding a CISM or CISSP certification, the AAISM training can also be taken without an exam, and you will, of course, receive a certificate of participation. If you still wish to obtain the corresponding AAISM title, we also offer special bundles for the CISM and AAISM trainings. Feel free to contact us if you would like to know more about this.

The OWASP AI Exchange is a knowledge platform about AI security, where professionals collaborate to identify, understand, and mitigate security risks in AI systems. Key goals include knowledge sharing on AI security and AI risk management, discussion of threats and vulnerabilities in AI systems, developing best practices for secure AI development, and collaborating on open frameworks and security guidelines.

With the knowledge you gain on day 3 of the AAISM training, you will have more tools to practically apply (or have applied) AI Security in your organization. You will familiarize yourself in advance with a fictional company, around which a case study has been built. Based on the five steps of the G.U.A.R.D. model (Govern, Understand, Adapt, Reduce, Demonstrate) outlined in the OWASP AI Exchange, you will practically tackle the issues that arise at various organizational levels regarding the management of AI Security. With the knowledge acquired, you will not only be able to use the OWASP AI Exchange in your organization or instruct colleagues on how to do so, but you will also receive a complete and immediately applicable approach to the problem area at the corporate level.

The first two days of the training contain the most current, official ISACA course material that directly aligns with the current AAISM exam. We help you learn the material in the way that ISACA expects from you in the exam. Additionally, you will receive ISACA's AAISM Questions, Answers & Explanations database, which allows you to practice extensively with official practice questions. You will not only see whether you answered a question correctly or incorrectly, but also why an answer is correct or incorrect.

I am taking this next step in my lifelong learning journey.

Why experienced professionals choose TSTC for their studies

Train smarter, not harder. TSTC's unique approach guarantees the effective acquisition of skills and the greatest chance of success.

Learn more about TSTC

Cybersecurity (Technical)

Information Security (Tactical & Strategic)

Microsoft Trainings

IT other