ISEB Certificate in Information Security Management Principles

Level
Total time

ISEB Certificate in Information Security Management Principles

Perpetual Solutions
Logo Perpetual Solutions
Provider rating: starstarstarstarstar 10 Perpetual Solutions has an average rating of 10 (out of 1 reviews)

Need more information? Get more details on the site of the provider.

Starting dates and places

There are no known starting dates for this product.

Description

Prerequisites:

The recommended prerequisite for attending this course and sitting the exam is a minimum of one years experience in an IT function

Course Description:

This intensive and highly practical 5-day course has been accredited by the Information Systems Examination Board (ISEB) of the British Computer Society (BCS). The course has been designed to provide the necessary information and guidance in order for delegates to be able to fulfil their roles as information security officers or information risk decision takers. It defines the business case for information security, the role of security as an enabler for business, and how to identify and manage information risks.

Delegates will be p…

Read the complete description

Frequently asked questions

There are no frequently asked questions yet. If you have any more questions or need help, contact our customer service.

Prerequisites:

The recommended prerequisite for attending this course and sitting the exam is a minimum of one years experience in an IT function

Course Description:

This intensive and highly practical 5-day course has been accredited by the Information Systems Examination Board (ISEB) of the British Computer Society (BCS). The course has been designed to provide the necessary information and guidance in order for delegates to be able to fulfil their roles as information security officers or information risk decision takers. It defines the business case for information security, the role of security as an enabler for business, and how to identify and manage information risks.

Delegates will be provided with a comprehensive understanding of the main concepts which underpin information security and how they relate to each other. The course covers such concepts as confidentiality, integrity and availability, threats, risks and vulnerabilities, as well as a range of technical and management controls capable of mitigating the risks.

The course examines current legislation and regulations which impact on information security as well as standards (BS 7799) and frameworks which facilitate best practice.

The course will enable delegates to confidently sit the 2-hour multiple choice BCS/ISEB Certificate in Information Security Management Principles (CiISMP) exam which is taken on the final afternoon of the course.

The course will benefit: any member of an information security management team; IT managers; security/systems administrators; internal auditors; staff with a local security co-ordination role; staff responsible for compliance with legislation and regulation relating to information technology, and corporate governance; staff working in business operational functions with responsibility for information assets and systems.

Delegates will learn how to:

  • Specify the business case for information security;
  • Understand the challenges posed in managing information risk;
  • Address the business issues relating to legislation, regulation and corporate governance as it affects information security;
  • Understand the issues and risks relating to information and have a clear insight into the controls needed to manage them;
  • Uunderstand how the different concepts of information security relate to each other;
  • Confidently sit the CiISMP exam.

This course includes the following modules:

Information security

  • Information security concepts & definitions
  • Information Security Management System (ISMS) concept.
  • The need for, and benefits of, information security: Corporate Governance.
  • Information risk management.
  • Information security organisation & responsibilities: Legal and regulatory obligations.
  • Policies, standards & procedures: Delivering a balanced ISMS. Security procedures.
  • Information security governance: Policy reviews. Security audits.
  • Security incident management: Objectives and stages of incident management.
  • Information security implementation: Getting management buy-in.
  • Legal framework: Processing personal data. Employment issues. Computer misuse. Intellectual property rights. Data Protection Act.
  • Security standards & procedures: ISO/IEC 17799 and ISO/IEC TR 13335.
  • Threats to, and vulnerabilities of, information systems.
  • People security: Organisational culture. Acceptable use policies.
  • Systems development & support: Linking security to whole business process. Change management process. Handling security patches.
  • Role of cryptography: Common encryption models.
  • Protection from malicious software: Methods of control.
  • User access controls: Authentication and authorisation mechanisms.
  • Networks & communications: Partitioning networks. Role of cryptography. Controlling 3rd-party access. Intrusion monitoring. Penetration testing.
  • External services: Protection of Web servers and e-commerce applications.
  • IT infrastructure: Operating, network, database and file management systems.
  • Testing, audit & review: Strategies for security testing of business systems.
  • Training: The purpose and role of training. Promoting awareness.
  • Physical & environmental security: Controlling access and protecting physical sites and assets.
  • Disaster recovery & business continuity management: Relationship between risk assessment and impact analysis.
  • Investigations & forensics: Common processes, tools and techniques. Legal and regulatory guidelines.

For online live training advice please visit our Learning Advice Centre on our website. Be sure to follow us on Twitter to receive special course offers, news and updates!

There are no reviews yet.

Share your review

Do you have experience with this course? Submit your review and help other people make the right choice. As a thank you for your effort we will donate £1.- to Stichting Edukans.

There are no frequently asked questions yet. If you have any more questions or need help, contact our customer service.