BCS Course

course overview

Click to View dates & book now


This course is accredited by ISEB/BCS to provide training for their CISMP examination. The course will provide you with the knowledge and understanding of the main principals required to be an effective member of an information security team with security responsibilities as part of your day to day role. It will also prepare individuals who are thinking of moving into information security or related functions.


You will be thoroughly prepared to undertake the BCS examination, the examination is part of the course package. The achieved qualification will prove that the holder has a good knowledge and basic understanding of the wide range of subject areas that make up information security management.


Each participant will leave with a recognised certificate

Skills Gained

  • Knowledge of the concepts relating to information security management (confidentiality, availability, vulnerability, threats, risks and countermeasures etc.)
  • Understanding of current legislation and regulations which impact upon information security management in the UK; Awareness of current national and international standards, frameworks and organisations which facilitate the management of information security;
  • Understanding of the current business and technical environments in which information security management has to operate;
  • Knowledge of the categorisation, operation and effectiveness of controls of different types and characteristics.


  • A minimum of 12 months experience within any IT job is beneficial. No technical skill or Security background is required.


  • 1.  Information Security Management Principles – 10%
  • 1.1 Concepts and definitions
  • 1.2 The need for & benefits of Information Security
  • 2.  Information Risk – 10%
  • 2.1 Threats to & vulnerabilities of information systems
  • 2.2 Risk Management
  • 3.  Information Security Framework – 20%
  • 3.1 Organisation and responsibilities
  • 3.2 Legal framework
  • 3.3 Security standards and procedures
  • 4.  Procedural/people security controls – 15%
  • 4.1 People
  • 4.2 User access controls
  • 4.3 Training
  • 5.  Technical security controls – 25%
  • 5.1 Protection from malicious software
  • 5.2 Networks and communications
  • 5.3 External services
  • 5.4 Cloud computing
  • 5.5 IT infrastructure
  • 6.  Software development – 5%
  • 6.1 Testing, audit & review
  • 6.2 Systems development & support
  • 7.  Physical and environmental controls – 5%
  • 8.  Disaster recovery and business continuity management  – 5%
  • 9.  Other technical aspects – 5%
  • 9.1 Investigations & forensics
  • 9.2 Role of cryptography

Talk to an expert

Thinking about Onsite?

If you need training for 3 or more people, you should ask us about onsite training. Putting aside the obvious location benefit, content can be customised to better meet your business objectives and more can be covered than in a public classroom. Its a cost effective option. One on one training can be delivered too, at reasonable rates.

Submit an enquiry from any page on this site, and let us know you are interested in the requirements box, or simply mention it when we contact you.

All $ prices are in USD unless it’s a NZ or AU date

SPVC = Self Paced Virtual Class

LVC = Live Virtual Class

Please Note: All courses are availaible as Live Virtual Classes

Trusted by over 1/2 million students in 15 countries

Our clients have included prestigious national organisations such as Oxford University Press, multi-national private corporations such as JP Morgan and HSBC, as well as public sector institutions such as the Department of Defence and the Department of Health.