Information Security Practitioner


Information Security Practitioner certification

About the certificate

Core information security management skills you will validate with your S-ISP certificate

By passing the ISP certification exam and earning a SECO-Information Security Practitioner (S-ISP) certificate, you demonstrate high-level, industry-relevant information security management skills.

In particular, an S-ISP certificate attests to your ability to:

  • Understand the security threat landscape (attackers, attack tools, attack methods and trends);
  • Understand legal and regulatory requirements relevant to information security (with special regard to the GDPR);
  • Align information security goals and objectives with corporate goals and needs;
  • Plan an organisation-wide information security management system (ISMS) in accordance with ISO 27001 and other relevant security standards;
  • Identify information security policies, standards, procedures, guidelines and codes of conduct;
  • Identify the information security roles and responsibilities necessary to design and manage an effective information security process;
  • Perform information security risk assessments;
  • Understand the information security audit process;
  • Interpret information security audit findings and translate them for the business;
  • Develop an information security awareness program taking into account organisational needs and individual learning styles;
  • Measure the effectiveness of awareness programs and draw up awareness reports;
  • Identify effective physical, technical and organisational measures to counter information security threats;
  • Understand the security implications of the digital economy and disruptive business models;
  • Understand the security risks associated with cloud computing, big data, IoT and robotics;
  • Understand the fundamental principles of resilience management.

What are the benefits of an S-ISP certificate?

An S-ISP certificate allows you to demonstrate core competencies employers look for in aspiring information security managers. With security jobs on the rise and a worldwide security skills shortage, earning an S-ISP title is a unique opportunity to launch and enjoy a rewarding career in a constantly expanding field.

Information security jobs can be found in every sector, from healthcare to financial services and public administration. As technology develops and security threats evolve, organisations are increasingly looking for professionals who can ensure their security and continuity.

The growing demand for security expertise is leading to better salaries for information security professionals. According to data, information security positions featuring ISO 27001, risk management, ISMS and GDPR skills as core requirements, attract a median annual salary of £60,000.

Who should certify?

The course and the certificate are ideal for you, if

  • You are a system or network administrator, programmer or security analyst with ambitions to start a career in information security or cybersecurity management;
  • You seek to pursue a career as an information security auditor, consultant, risk manager or compliance officer;
  • You are a manager and you would like to understand the role of security to support it at the organisational level.

How to prepare for the certification exam?

You can prepare for your certification exam by taking a course or by self-study.

We  offer classroom training through our accredited education partners. To find a course in your country, visit the Get Trained page.

If you prefer to prepare by self-study, make sure that you fully understand the requirements before you book your exam. Download the sample exam to familiarise yourself with the structure and topic areas of the certification exam.

How to book a certification exam?

You can take your certification exam at an accredited exam centre or online.

For more information on the exam, please refer to the SECO Examination Guide.

S-ISP certificate and digital badge

Upon successful completion of a SECO Information Security Practitioner certification exam, you will receive the S-ISP certification title and a digital badge. Your credentials will grant you a one-year SECO membership. After your certification expires, you will have the option to re-certify by paying a small fee.

As a prerequisite to renewing your certification, you have to meet Continuing Professional Education (CPE) requirements. CPE requirements can be met by attending workshops, conferences and webinars, publishing articles, providing training, and performing other similar activities that help you maintain your professional competencies.

For more information on the certification process and Continued Professional Education (CPE) requirements, please refer to the SECO Certifications Guide.