Opleiding: Information Security Foundation (S-ISF)
Learn information security fundamentals from practicing information security experts.
Information security is crucial for all employees within an organization. It is essential that they understand why certain actions should be taken while others should not be performed during their daily activities.
The language of instruction for this course is English.
About this program:
The Information Security Foundation (ISF) course provides a comprehensive understanding of information security and risk management. Participants learn about the importance of information security and how to integrate risk management into their organization. The course covers strategies to mitigate human, organizational, and technological risks. By the end of the course, participants are equipped to protect sensitive information, ensure compliance, and promote a security-conscious culture within their organization.
This Foundation training is the first level of SECO's unique complete information security training and certification trajectory. It prepares you for the Practitioner level (training at the Information Security Officer level with practical policy development, risk assessment, awareness planning, standard implementation, and improvement planning exercises after the audit). The trajectory culminates in an Expert – CISO training focused on strategic leadership in information security.
The course includes an (re)exam voucher (code) for the official SECO-Institute exam.
Pass Guarantee: If, unexpectedly, you do not pass the Information Security Foundation (ISF) exam, you are entitled to retake the course (or its components) for free. You can continue to participate in the course days and lessons at no cost if there are available spots.
Target group:Is this Information Security Foundation course for you?
Information Security Foundation gives you a solid grounding in information security management principles and best practices. This course is an ideal choice if you aspire to start a career in information security management without a security background. Having completed Information Security Foundation, you will be well-equipped to move on to more advanced information security management trainings and certifications. For example, you will be competent to join our Information Security Practitioner training where you can practice an Information Security Officer’s tasks, from ISO 27001 implementation planning to performing information security risk assessments or developing security awareness programs. You will also be able to follow our ISACA Certified Information Security Manager (CISM) Preparation Course and prepare to earn your ISACA CISM certificate.
Information security awareness and fundamental information security skills are becoming indispensable in all sectors. Do you work with information in any capacity? Completing this Information Security Foundation course and certifying your skills can add extra value to your professional profile.
Finally, we also recommend this training to business owners or (line) managers who would like to oversee and understand their information security responsibilities, or aim to educate their employees on information security beyond ‘traditional’ awareness trainings.
Subjects:Module 1 – Introduction to Information Security:
- What is information security?
- The importance of information security for organizations and employees
- The evolution of information security
- The information security process in a continuously changing environment
- Roles and responsibilities to manage information security
Module 2 – Information & Risk:
- Elements and objectives of the risk management process
- Standards, laws and regulations, social obligations
- Relationship with other business plans
- Data protection & privacy
- How information risk management is governed
- Information and enterprise-wide risk management processes
- Qualitative and quantitative risk assessments
- Risk assessments & threat modeling
- Risk governance
Module 3: Risk Mitigation – Human Factor:
- What is information security awareness?
- The boundaries of awareness programs
Module 4 – Risk Mitigation – Organizational Focus:
- The information security framework
- The use of standards and best practices
Module 5: Risk Mitigation – Technological Focus:
- Asset management
- Identity and access management
- Data protection
- Vulnerability management
- Incident response
- Security intelligence
Practice Exam
At the end of the course, you will complete a practice exam that mimics the SECO Information Security Foundation Certification Exam. After completing the practice exam, you will have the opportunity to discuss your results with your trainer and the group.
Goals and result:At the end of the course, you will communicate with confidence about information security topics. You will have a good understanding of information security risks, you will be able to identify information security risks in a given context, and you will be competent to identify suitable best-practice physical, organisational and technical information security controls to mitigate specific information security risks.
Teaching methods:What is included in this Information Security Foundation course?
- Official SECO-Institute course materials developed by practicing information security officers and consultants;
- Online training by passionate instructors who are active in the information security industry;
- Practice exam and exam syllabus so you can fully prepare for your certification exam;
- Certification exam voucher;
- Access to the (S)ECO-system, the SECO-Institute’s professional community website where you will find additional resources and exclusive knowledge events.
- 3 days, 1pm – 5.30pm CEST
- 8 hours of self-study
- 1 CPE credit per study hour
- English spoken online classroom
For follow-up options, please visit our website.
