Text size
  • Small
  • Medium
  • Large
Contrast
  • Standard
  • Blue text on blue
  • High contrast (Yellow text on black)
  • Blue text on beige
Your location:

Certificate in Information Security Management Principles  Foundation

With an ever changing climate of technology and threats (both technical and human), the need for trained security personnel to protect our information becomes increasingly critical. This certification proves that the holder has a good knowledge and understanding of the wide range of subject areas that make up information security management including risk management, technical and management controls, legal framework, people and physical security, security standards (e.g. ISO 27001) and business continuity.
  • Overview

    What are the learning outcomes?

    The certification is, as far as possible, technology neutral; it tests the knowledge of principles, not knowledge of specific technologies or products. The syllabus now also includes Cloud Computing. Note that training course materials may use specific technical examples to illustrate particular principles, but it is the principles that should be understood from any such use of examples.

    Candidates can expect to gain knowledge and understanding in the following upon successful completion of this certification:

    • Knowledge of the concepts relating to information security management (confidentiality, integrity, availability, vulnerability, threats, risks, countermeasures, etc);
    • Understanding of current national legislation and regulations which impact upon information security management;
    • Awareness of current national and international standards, frameworks and organisations which facilitate the management of information security;
    • Understanding of the current business and common technical environments in which information security management has to operate;
    • Knowledge of the categorisation, operation and effectiveness of controls of different types and characteristics.

    For further information please read the syllabus

     
    Who is it aimed at?

    The certification is intended for those with an interest in information security either as a potential career or as an additional part of their general business knowledge. It is very much a firm foundation on which other more technical qualifications can be built or which provides a thorough general understanding to enable business users of IT to ensure their information is protected appropriately.

     
    Entry Requirements:

    There are no formal requirements for entry to the course but the advice is as follows:

    • A knowledge of IT would be advantageous but not essential
    • An understanding of the general principles of information technology security would be useful
    • Awareness of the issues involved with security control activity would be advantageous
    • It is recommended that candidates read the BCS ‘Information Security Management Principles’ which is the approved reference book for this certification before taking the exam. If taking a course with an accredited training provider other pre course study might be set.

    It is strongly recommended that all candidates attend an approved training course run by an accredited Training Provider. The overall public exam pass rates are notably higher for candidates who have attended an accredited training course.

    If candidates chose to take the direct route (public examination) then it is recommended that they should have some experience in the area of security with an understanding of the general principles of information technology security and an awareness of the issues involved with security control activity.

  • Book Exam

    This section contains information and documents that will help you take this examination.

     

    Structure of the Exam

    • The examination consists of a two hour exam with 100 multiple choice questions
    • It will be a 'closed book' examination i.e. no notes or books will be allowed into the examination room
    • The pass mark is 65% (65 out of 100)
    • The distinction mark is 80% (80 out of 100)
    • Accredited Training
      If your business language and mother tongue is not English then you are entitled to an additional 30 minutes. Please contact your Examination Provider to request the additional time. You are allowed the use of a paper dictionary.
    • Attending Public Examination only
      If your business language and mother tongue is not English then you are entitled to an additional 30 minutes. Please contact your Training Provider to request the additional time. You are allowed the use of a paper dictionary. Candidates taking the examination only must complete the Extra Time Request form available to download from the website and send it to BCS a minimum of three weeks before the exam date.
     

    Exam Options, Dates & Locations

    There are two exam options for this certification:

    • Accredited Training Provider (course & exam)
    • Public Examinations (exam only)

    Accredited Training Provider
    It is strongly recommended that candidates take an accredited training course prior to taking the exam. If you attend an accredited training course, details of the exam can be obtained from your Training Provider.

    Public Examinations

    Time: 10:00am
    Venue: BCS, The Davidson Building, 5 Southampton Street, London, WC2E 7HA

    • Friday 16 May 2014
    • Friday 6 June 2014

    Public examinations must be booked and paid for a minimum of three weeks prior to the examination date (subject to availability). If you are applying directly, you should register and pay online using our Online Registration Facility.

    Online Examination
    Taking the exam online via a computer based examination centre provides you with your exam result immediately. You can book to take the exam at many of the Pearson Vue test centres around the world.

    • Pearson Vue has in excess of 4000 test centres in over 140 countries.
    • You can book an online exam with Pearson Vue
     

    Exam Fees

    Public Examinations cost £145 (exc VAT).

    If you are booking via an Accredited Training Provider or via an online examination centre then you can obtain information on fees and charges by contacting them directly.

     

    Register for the Exam

    Training Provider
    If you are taking training through an accredited training provider, you will obtain and submit your registration form through them.

    Public Examinations
    You will need to register and pay online using our online registration facility a minimum of three weeks prior to exam date. The preferred exam date will be subject to availability.

    Please note that an additional fee is chargeable for late cancellations

    Extra time can be requested for candidates with a disability. Please refer to the reasonable adjustments policy for detailed information on how and when to apply.

    Extra time can be awarded for candidates who sit the exam in a language which is not their mother tongue and where the language of the exam is not their primary business language. Please refer to the reasonable adjustments policy for detailed information.

    Online Examination

    You can book an online exam with Pearson Vue

  • Training Providers

    Further information about the Certificate in Information Security Management Principles can be obtained from our Accredited Training Providers.