5-Day Instructor-Led Programme
The XCISO Certification Programme is the practitioner standard for senior cyber security leaders who govern enterprise security programmes, manage risk at board level, and align cyber strategy with organisational objectives. Assessed on Day 6 through a supervised executive scenario and governance presentation — no multiple choice, no exam anxiety, no textbook theory.
Duration
5 Days
Price
$7,495
The modern CISO sits at the intersection of technology, risk, regulation, and business strategy. Technical capability alone is insufficient , the security executive who cannot present risk in board language, build a business case for investment, or manage regulatory obligations is not equipped for the role. XCISO is built for practitioners who are ready to lead , not just operate.
Across six instructor-led days, participants build capability across the complete CISO remit: security strategy and governance, risk management and cyber insurance, regulatory compliance (NIS2, DORA, UK Cyber Strategy, NCSC frameworks), security programme management, board communication, security architecture governance, crisis leadership, and procurement. Every session is grounded in real CISO scenarios , budget negotiations, board presentations, regulatory audits, major incidents, and vendor management.
On Day 6, participants deliver a simulated board-level cyber risk presentation and navigate a crisis governance scenario. A senior CISO practitioner assesses leadership, communication, risk judgement, and strategic thinking. The XCISO certificate and Practitioner Assessment Report are issued together. Aligned with NIST CSF 2.0 Govern function, NCSC CAF, ISO 27001:2022, NIS2, DORA, UK GDPR, NCSC 10 Steps, and the UK Cyber Security Strategy 2022.
Hands-on risk register development, board-level presentation simulation, cyber insurance quantification exercises, regulatory gap assessment, and security programme budget modelling.
Mentor-led sessions from experienced CISOs covering real board dynamics, regulatory enforcement trends, security investment justification, and crisis communication under pressure.
Lead enterprise cyber security governance, communicate risk at board level, manage regulatory obligations, and align security investment with organisational strategic objectives.
Develop and communicate enterprise cyber security strategy aligned to organisational objectives and board-level risk appetite
Govern security programmes using NIST CSF 2.0 Govern function, ISO 27001:2022, and NCSC CAF in multi-framework environments
Manage regulatory obligations including NIS2 senior management accountability, DORA governance requirements, and UK GDPR accountability
Quantify cyber risk using FAIR methodology and present investment cases to boards using business impact language
Lead crisis communication and incident governance at executive level, managing regulatory notification timelines and board expectations
Build and manage security teams, develop security culture programmes, and align security capability investment to measurable risk reduction
Minimum 5 years in a senior security role: Security Manager, Head of Information Security, or equivalent
Working knowledge of at least two major security frameworks: ISO 27001, NIST CSF, NCSC CAF, or equivalent
Experience managing security budgets, security teams, or security programme delivery at organisational level
Organized by professional domains with comprehensive coverage
Master these in-demand skills through hands-on practice
A clear view of the roles this programme supports, what typically comes next, and where learners progress over time
Typical next step: XCRISC (Risk & IS Control Practitioner) for deeper risk governance methodology, or XCSP (Cyber Security Professional) for technical security architecture depth.
Choose the learning format that works best for you and your team
Instructor-Led Training
Join live instructor-led sessions from anywhere. Interactive, engaging, and flexible.
Price per person
Group enrolments and early planning options available.
Custom quotes for teams and organisations
We come to you. Training delivered at your workplace for teams of 6 or more.
Custom pricing based on:
No obligation. Response within 1 business day.
Classroom training at a professional venue. Ideal for focused, immersive learning.
Custom pricing based on:
No obligation. Response within 1 business day.
Combine online and in-person learning for maximum flexibility and impact.
Timeline tailored to learner availability
Custom pricing based on:
No obligation. Response within 1 business day.
All prices are exclusive of VAT where applicable. Group enrolments and custom packages available on request.
Not everyone learns best in a group. If you want focused guidance, faster clarity, and confidence you can use on the job, our 1-to-1 Fast-Track Training gives you private, mentor-led support tailored to your experience and goals.
"Many learners choose 1-to-1 when they want understanding, not memorisation."
Credential
On successful completion of XCISO — Xcademia Cyber Security Executive , learners receive an Xcademia Certificate of Completion. This standalone certificate is issued directly by Xcademia and recognised by employers across the UK defence and security sector.
Everything you need to know about the certification exams
You will receive an Xcademia certificate of completion based on participation and successful completion of labs and scenario simulations.
Everything you need to know about this course
CCISO v4 is a 3-day course followed by a 150 multiple choice exam. XCISO is 6 instructor-led days with experienced CISOs as mentors, culminating in a simulated board-level governance scenario on Day 6. You are assessed on your leadership judgement, risk communication, and strategic thinking — not on whether you can identify the correct MCQ answer. XCISO also covers NIS2, DORA, and UK Cyber Strategy content that CCISO does not address at depth.
Take the next step in your professional development