ISEB Certificate in Information Security Management Principles — A 5-Day Course

Course Synopsis

This intensive and highly practical 5 day course has been accredited by the Information Systems Examination Board (ISEB) of the British Computer Society (BCS).

As IT architectures and Information Systems generally become more pervasive, complex and available so the security risks increase. Information Security is both concerned with achieving external legislation and regulations as well as addressing the organisation's concerns about threats and vulnerabilities.

The course has been designed to provide the necessary information and guidance in order for delegates to be able to fulfil their roles as information security officers or information risk decision takers.

The course will enable delegates to confidently sit the 2 hour multiple choice BCS/ISEB Certificate in Information Security Management Principles (CISMP) exam which is taken on the final afternoon of the course.

Course Objectives

This course will also enable delegates to:

Specify the business case for information security
Understand the challenges posed in managing information risk
Address the business issues relating to legislation, regulation and corporate governance as it affects information security
Understand the issues and risks relating to information and have a clear insight into the controls needed to manage them
Understand how the different concepts of information security interrelate with each other
Confidently sit the CISMP exam

Intended Audience

The course will benefit: members of information security management team, IT managers, security/systems administrators and coordinaters, internal auditors, staff with a local security co-ordination role, staff responsible for legal and corporate governance, staff responsibile for information assets and systems.

Pre-Requisites

A detailed technical knowledge is not required although ISEB recommend that you should have a minimum of twelve months IT experience before attending.

Examinations

The course fee includes ISEB Examination fees for the Certificate in Information Security Management Principles. At the end of the course delegates will be able to sit a 2 hour examination set by BCS ISEB. The examination comprises of 100 multiple choice questions

Students will need to obtain a pass mark of at least 65% to pass the examination and distinctions are awarded to candidates achieving a score of 80% or higher.

Residential courses

This course is available with a residential option of 4 nights accommodation for an extra £495 + VAT on top of the course fee - £2310 + VAT in total.

Publicly scheduled dates, locations, and prices

Wyboston, Bedfordshire — £1815 (+VAT)

6–10 Sep 2010
25–29 Oct 2010
6–10 Dec 2010

Outline Course Contents

Information security concepts & definitions

What is information security?
Management System (ISMS) concept

The need for and benefits of information security

Corporate Governance

Information risk management

Risk management process Approaches to risk assessment

Information security organisation & responsibilities

Legal and regulatory obligations

Policies, standards & procedures

Delivering a balanced ISMS
Security procedures

Information security governance

Policy reviews
Security audits

Security incident management

Objectives and stages of incident management

Information security implementation

Getting management buy-in

Legal framework

Processing personal data
Employment issues
Computer misuse
Intellectual property rights
Data Protection Act

Security standards and Procedures

ISO/IEC 27002 and ISO/IEC 13335

Threats to, and vulnerabilities of, information systems

People security

Organisational culture
Acceptable use policies

Systems development & support

Linking security to whole business process
Change management process
Handling security patches

Role of cryptography

Common encryption models

Protection from malicious software

Methods of control

User access controls

Authentication and authorisation mechanisms

Networks & communications

Partitioning networks
Role of cryptography
Controlling 3rd party access
Intrusion monitoring
Penetration testing

External services

Protection of Web servers and e-commerce applications

IT infrastructure

Operating, network, database and file management systems

Testing, audit & review

Strategies for security testing of business systems

Training

Purpose and role of training
Approaches to training and promoting awareness

Physical and environmental security

Controlling access and protecting physical sites and assets

Disaster recovery and business continuity management (BCM)

Relationship between risk assessment and impact analysis

Investigations & forensics

Common processes, tools and techniques
Legal and regulatory guidelines

Printer-friendly version

ISEB Business Systems Development training UK enquiries

Training Enquiries & Feedback Form.

Email: training@gbdirect.co.uk

Phone: 0800 651 0338

Please call between 0900 and 1700 (UK time) on Monday to Friday

Your Wishlist

ISEB Business Systems Development training UK prices

For publicly scheduled training (individual places), see our UK training schedule.

For current special offers on courses, see our Special Offers section.

In-house training for company groups is charged at a daily rate per group — see our In-House UK Training Guidelines.

Publicly Scheduled Training Locations

We currently run public training courses across the UK including following locations:

London, UK
Leeds, West Yorkshire, UK
Aberdeen, Scotland, UK
Bradford, West Yorkshire, UK
Birmingham, West Midlands, UK
Bournemouth, Dorset, UK
Bristol, South West
Carshalton, Surrey, UK
Chester, North West, UK
Cheshire, North West, UK
Coventry, West Midlands, UK
Crawley, West Sussex, UK
Derby, East Midlands, UK
Dublin, Ireland
Edinburgh, Scotland, UK
Exeter, South West, UK
Glasgow, Scotland, UK
Harrogate, North Yorkshire, UK
Harwell, Oxfordshire, UK
Hinckley, Leicestershire, UK
Lancashire, North West, UK
Liverpool, North west, UK
Maidenhead, Berkshire, UK
Manchester, North West, UK
Milton Keynes, Buckinghamshire, UK
Nottinghamshire, East Midlands, UK
Reading, Berkshire, UK
Sheffield, South Yorkshire, UK
Slough, Berkshire, UK
Stevenage, Hertfordshire, UK
Swindon, South West, UK
Tyne and Wear, North East, UK
Wakefield, West Yorkshire, UK
Wokingham, Berkshire, UK
Wiltshire, South West, UK
Wirral, North West, UK

Most UK public training courses are available on a monthly basis.

Please see the individual course outlines or our public training schedule for details.

In-house (on-site) training locations

We deliver in-house courses at client premises and/or training facilities in any part of the world which is practically and commercially accessible.

Our In-house training guidelines outline our basic requirements and our UK pricing structure. To estimate costs for training in other countries, simply convert to your local currency and then make a rough calculation of our tutor's costs for travelling to and staying at your location.