What will you learn?
- A comprehensive first introduction to information security management;
- The concept of threat and risk and its relationship to the reliability of information;
- Fundamental security concepts and effective information security controls to protect that information;
- 2 days of training
- 8 hours of self study
- Exam voucher included
About this Course
Information security demands something from all of us, regardless of job title. We can’t (only) depend on our cyber defenders and security products to keep us out of harm’s way. The information security chain is as strong at its weakest link. The vast amount of our employees, line managers and directors don’t have security top of mind by default and nor can we expect that from them without proper awareness and education.
This course has been designed to introduce you into the world of information security. You will learn its basic concepts and building blocks and how they relate to one another. You’ll familiarize yourself with ISO 27001, the most widely used information security standard. You’ll understand what focus areas need to be addressed to ensure appropriate protection against threats, and gain insight into commonly accepted information security controls.
Who should attend?
The Information Security Foundation course is ideal if you want to learn the basics of information security. In addition, the course is suitable for every employee within an organization who is active in the field of information management. This course is also suitable for entrepreneurs from small to medium-sized independent organizations for whom some basic knowledge of information security is necessary. Finally, this course is also suitable for the starting information security professional.
- 2 days of training from a senior instructor that will practice what he/ she preaches
- Official SECO–Institute course materials
- Practice exam
- Information Security Foundation exam
- “S-ISF” digital Acclaim badge when you pass the exam
- 1- year free SECO Membership
Module 1: Code of Information Security ISO / IEC 27001/27002
- What is a standard and what is the difference between a standard and a framework?
- ISO / IEC 27001 and ISO / IEC 27002: 2013 in a nutshell
- Continuous improvement Plan – Do – Check – Act
- Implementation of the ISO / IEC 27001 and ISO / IEC 27002
- Management objectives and control measures
Module 2: Information and security
- Information and security: The concept, value, importance and dependence of information
- The cornerstones of information security: availability, integrity and confidentiality
- The influence of information security on operational processes, information architecture and information management
- Different types of information and information systems
Module 3: Threats and Risks
- The concept of threat and risk and its relationship to the reliability of information
- Different types of risk analysis and risk assessment
- Different types of threats and ways to deal with threats
- Various types of damage
- Different ways to deal with risks
- Information security measures
- Preventing risks and performing security procedures
Module 4: Approach and organization
- Information security policy, organization of information security and the management of security incidents
- What is a code of conduct?
- Tasks and responsibilities in an organization
Module 5: Measures
- The importance of physical, technical and organizational measures
- Different types and categories of security procedures
- The importance of access control
- Identification, authentication and authorization
- Business continuity management (BCM) aspects
Module 6: Laws and regulations
- The most important laws and regulations in relation to information security
- The importance of compliance
- Different types of compliance
The last day of training students will take a test exam, followed up with an evaluation and discussion.
About the exam
- Language: English
- Delivered: Online via a certified proctor
- Questions: 40 multiple choice questions
- Time: 60 minutes
Our courses are very hands on oriented and aimed at gaining actionable knowlegde and skills. We only work with freelance, senior instructors that spend the majority of their time as specialist in the topic. SECO- Institute instructors have gone through a scrutinous accreditation process, where they’re tested on domain expertise as well as communication- and presentation skills.
At SECO- Institute, we believe in life long learning. Once you’ve taken a training and exam you’re a member of the SECO- Community. We’ll continue to support you with invite- only webinars, templates, expert interviews and much more.