BCS Certificate in Information Security Management Principles Total Learning
QA Total Learning™ is our newest and most effective way to learn.
Combining the best of digital and live learning, with access to world-class industry experts, we focus on ensuring you can apply your learning to help drive impactful results in your workplace. What's more, our digital platform gives you the tools to track your progress and manage your own learning.
This course is for security professionals who want to begin their certification journey within the information security field by attaining a BCS-accredited qualification in information security management principles.
Learners will be security professionals who are looking to begin their certification and badging journey in the cyber security field. Alternatively, learners might be looking to begin their career in cyber security by learning about information security principles and practices.
In this Total Learning course, learners will benefit from the best of both digital and live learning to learn the fundamental skills needed to secure information, whilst also preparing themselves for official certification. This includes the Digital stage, designed to including sample exam questions, quizzes, and a combination of video and written content.
The 3-day virtual Live event focuses on preparation for the exam through practical learning of key information security principles and practices. There will be a blend of traditional exam preparation alongside team-based, scenario-driven learning to support learning of concepts.
- recognise why information security is required.
- identify Information Security Management System (ISMS) concepts and definitions.
- define information risk management.
- recognise corporate governance and organisational responsibilities, policies, standards and procedures.
- specify relevant ISO and IEC standards
- recognise information security controls.
- appreciate incident management and legal frameworks.
- identify areas of cryptography.
- investigate data communications and networks, physical security and security auditing, training and awareness.
- recognise business continuity and disaster recovery.
- identify areas of testing, audit and review, and system development.
- examine security investigations and forensics.
There are no specific prerequisites for this course. It is ideal for members of information security management teams, IT managers, security and systems managers, information asset owners, and employees with legal compliance responsibilities.
This Total Learning course consists of three key stages, all explained during a 1-hour virtual kick off session, which includes a Q&A session:
- Digital stage – up to 15 hours, completed over a minimum of 3 weeks
- Live event – 3 days
- Exam – 2-hour BCS examination
- Module 1 - Information security management principles
- Module 2 - Benefits of information risk management
- Module 3 - Information risk management
- Module 4 - Policies, processes, and contracts
- Module 5 - Privacy laws, UK-GDPR, and DPA
- Module 6 - Malware
- Module 7 - Introduction to cloud computing
- Information risk management
- Risk management lifecycle and treatment
- Introduction to the information security framework
- Security strategy and legislation
- Information assurance and standards
- Information lifecycle and testing
- Testing, audit, and review
- Procedural and people security controls
- Protection from malware
- Network communications
- External services
- Virtualisation and cloud computing
- IT infrastructure security
- Physical and environmental controls
- Security incident management
- Business continuity management and disaster recovery
- Preparing for the exam
- The course will prepare leaners for the BCS Certificate in Information Security Management Principles (BCS CISMP) through practical learning and mock exam preparation.
- The exam consists of 100 multiple-choice questions to be completed in a 2-hour exam, with learners needing 65% to attain certification.
- The exam is to be booked and taken outside of the Live event to allow learners to adequately prepare before taking the exam.