ISO/IEC 38500 IT Corporate Governance Manager
Develop the competence to govern the effective, efficient and acceptable use of IT with ISO/IEC 38500, applying its guiding principles and the evaluate-direct-monitor model within an organisation.
Who is this course for?
- IT and business managers responsible for the use of IT
- Governance, risk and compliance professionals
- Consultants advising on IT governance
- Professionals building an IT governance profile
What you'll gain
- The PECB Certified ISO/IEC 38500 IT Corporate Governance Manager credential
- The ability to apply the ISO/IEC 38500 principles and model
- Command of the evaluate, direct and monitor governance cycle
- A recognised IT governance profile
Course programme
Day 1 · Introduction to IT governance and ISO/IEC 38500
- IT governance concepts and drivers
- The six principles of ISO/IEC 38500
- Roles, responsibilities and governance framework
Day 2 · Principles for the effective, efficient and acceptable use of IT
- Applying the guiding principles
- Aligning IT decisions with business objectives
- Governance of IT investments and risk
Day 3 · Outcomes, performance measurement and exam
- Governance outcomes and performance measurement
- Monitoring and continual improvement
- Review and certification exam
Exam, credits & certification
Once you pass the exam, you can apply for the "PECB Certified ISO/IEC 38500 IT Corporate Governance Manager" credential. The exam includes 2 attempts: the first plus a free retake, usable within the following 12 months. Passing first time is no longer a source of pressure. CPD credits correspond to the course level according to PECB. The exam duration is indicative; ask me for the exact details when you enrol.
Your trainer

Ricardo Coronel Lemus
More than 20 years in cybersecurity and compliance, today a vCISO and GRC consultant with real clients in France, Spain and Mexico. This is a standard I teach as a PECB Certified Trainer, and I don't approach it theoretically: I apply it day to day with real clients: that's what I bring to my coaching and exam preparation.
“Ricardo is skilled, thorough and self-reliant. He knows how to summarise or go deep into security issues depending on the audience: both governance questions and highly technical topics.”
Still in the evaluation phase?
Practical ISO 27005 guide (free). The risk management process step by step, with a 5x5 matrix and a filled risk register example.
Download the guide →Frequently asked questions
Do I need any prerequisites?
What language is the exam in?
What is the difference between Self-Study and Self-Study + Coaching?
What if I don't pass the exam?
How does ISO/IEC 38500 relate to COBIT and IT management?
Ready to lead the governance of IT?
Choose your option above and enrol online. A question or need some advice? Write to me or book a call.