top of page


BCS Foundation Certificate in Information Security Management Principles  - this is a comprehensive three day course that will give delegates the knowledge to manage information security, information risk and information assurance processes. 

Seiber are a BCS Accredited Training Partner for this course and only use BCS Accredited Trainers who remain actively operational in their discipline, using highly developed and quality content presentations,  live demonstrations and current real world case studies. 


Successful completion of the course will give delegates the necessary knowledge to go and sit the BCS Foundation Certificate in Information Security Management Principles exam at a time of their convenience.

The course will cover the following topics:

Information Security Management Principles

  • Identify definitions, meanings and use of concepts and terms across information security management.

  • Explain the need for, and the benefits of information security

Information Risk

  • Gain an appreciation of risk assessment and management as it applies to information security.

  • Outline the threats to and vulnerabilities of information systems.

  • Describe the processes for understanding and managing risk relating to information systems.

Information Security Framework

  • Explain how risk management should be implemented in an organisation.

  • Interpret general principles of law, legal jurisdiction and associated topics.

  • Describe the number of common, established standards and procedures that directly affect information security management.

Security Lifecycle

  • Demonstrate an understanding of the importance and relevance of the information lifecycle.

  • Identify the stages of the information lifecycle.

  • Outline the concepts of the design process lifecycle including essential and nonfunctional requirements.

  • Demonstrate an understanding of the importance of appropriate technical audit and review processes, of effective change control and of configuration management.

  • Explain the risks to security brought about by systems development and support.

Technical Security Controls

  • Outline the technical controls that can be used to help ensure protection from Malicious Software.

  • Identify information security principles associated with the underlying networks and communications systems.

  • Recognise the information security issues relating to value-added services that use the underlying networks and communications systems.

  • Recall the information security issues relating to organisations that utilise cloud computing facilities.

  • Define the aspects of security in information systems, including operating systems, database and file management systems, network systems and applications systems and how they apply to the IT infrastructure.

Procedural/People Security Controls

  • Explain the risks to information security involving people.

  • Describe user access controls that may be used to manage those risks.

  • Identify the importance of appropriate training for all those involved with information.

Physical and Environmental Security Controls

  • Outline the physical aspects of security available in multi-layered defences and explain the environmental risks to information, the need for appropriate power supplies, the requirement to protect from natural risks such as fires or floods and in the everyday operations of an organisation.

Disaster Recovery and Business Continuity Management

  • Describe the differences between and the need for business continuity and disaster recovery.

Other Technical Aspects

  • Demonstrate understanding of the principles and common practices, including any legal constraints and obligations, so they can contribute appropriately to investigations.

  • Describe the role of cryptography in protecting systems and assets, including awareness of the relevant standards and practices.

CISMP course

Further details

The course fee includes the official BCS CISMP book and a BCS CISMP exam voucher. Full instructions will be provided on how to book the exam at the end of the course or at a time of your convenience.

Our courses are delivered at convenient locations throughout the U.K. and abroad. We can also deliver this course onsite for those organisations who are seeking cost-effective training. Further details are available upon request.

What our clients say

“Tony (instructor) runs the course with enthusiasm backed up with plenty of hands-on experience and real-world case studies to drive home the point being made. On top of that, the course was run at a good pace with plenty of time for questions, debates, and plenty of group sessions.”

CISMP Attendee, UK Government Department

bottom of page