Security Courses:
Certificate in Information Security Management Principles (CISMP) Training Course


Classroom Courses ~ Closed Courses ~ Onsite Courses ~ Training Passport ~ MCSE Courses ~ CBT Courses
Home Page ~ Contact ~ Training Centre ~ Course Schedule ~ Late Availability ~ Consultancy
   
    PTR Associates Ltd - Classroom Based Courses, Wokingham, Berkshire, uk
21a Peach Street, Wokingham, Berkshire, UK
Tel: 0118 979 4000       Fax: 0118 979 4035
Email: training@ptr.co.uk      Web: www.ptr.co.uk

Certificate in Information Security Management Principles (CISMP) Course


Course Description
This certification is accredited by the Information Systems Examination Board, ISEB a division of the British Computer Society. The course will provide you with the knowledge and understanding of the main principals required to be an effective member of an information security team with security responsibilities as part of your day to day role. It will also prepare individuals who are thinking of moving into information security or related functions.

The achieved qualification will prove that the holder has a good knowledge and basic understanding of the wide range of subject areas that make up information security management.

Course pre-requisites:
A minimum of 12 months experience within any IT job. No technical skill or Security background is required.
scheduled dates / price

Topics covered on the 5 day Certificate in Information Security Management Principles (CISMP) course


A. Information Security Principles (10%)


A.1. Concepts and Definitions
  • Information security (confidentiality, integrity, availability)
  • Asset and asset types (information, physical, software); asset value
  • Threat, vulnerability, risk, impact
  • Information security policy concepts
  • The purpose of controls
A.2. The need for, and benefits of, Information Security
  • Importance of information security as part of the general issue of protection of business assets and of the creation of new business models.
  • Different business models and their impact on security (e.g. on-line business vs. traditional manufacturing vs. financial services vs. retail).
  • Effect of rapidly changing information and business environment.

B. Information Risk (15%)


B.1. Threats to, and Vulnerabilities of information systems
  • Threat categorisation (accidental vs. deliberate, internal vs. external, etc)
  • Types of accidental threats (e.g. human error, malfunctions, fire, flood, etc)
  • Types of deliberate threats (e.g. hacking, malicious software, sabotage, cyber terrorism, hi-tech crime, etc)
  • Sources of accidental threat (e.g. internal employee, trusted partner)
B.2. Risk Management
  • Risk management process (identification, analysis, mitigation, monitoring of risks)
  • Options for dealing with risks (e.g. eliminate, reduce, transfer, accept)
  • The purpose of risk assessment/analysis - strategic and tactical options
  • Approaches to risk analysis/assessment - qualitative, quantitative, software tools, questionnaires.
  • Identifying and accounting for the value of information assets

C. Information Security Framework (35%)


C.1. Information Security Management

C.1.1 Organisation & responsibilities
  • Information security roles in an enterprise
  • Placement in the organisation structure
  • Board/Director responsibility
  • Responsibilities across the organisation
  • Need to take account of statutory (e.g. data protection, health & safety)
C.1.2 Policy, standards & procedures

C.1.3 Information Security Governance

C.1.4 Security Incident Management including Investigations and Forensics

C.1.5 Information Security Implementation

C.2. Legal Framework

C.3. Security Standards and Procedures

D. Information Security Controls (40%)


D.1. Protection from Malicious Software
  • Types of malicious software – trojans, viruses, worms, active content (e.g. Java, Active-X), etc.
  • Different ways systems can get infected
  • Methods of control – common approaches, need for regular updates, etc.
D.2. People
  • Organisational culture of security
  • Employee, contractor and business partner awareness of the need for security
  • Role of contracts of employment
  • Need for and topics within service contracts and security undertakings
  • Rights, responsibilities and duties of individuals - codes of conduct
D.3. User Access Controls

D.4. Networks and Communications

D.5. External Services

D.6. IT Infrastructure

D.7. Testing, Audit & Review

D.8. Systems Development and Support

D.9. Role of Cryptography

D.10. Training

D.11. Physical & Environmental Security

D.12. Business Continuity Management
This is an instructor led training course taught in a classroom based environment.

Course Classification: 

Course Fee = £1625
   (excl.VAT)


Scheduled course dates
May 2008 June 2008 July 2008 August 2008 September 2008
-----



If you would prefer to run this course at your premises as you have several employees to place on the course perhaps, then we are also able to offer onsite Security Training and bespoke Security courses


If you want to attend the course but can't make the dates published then click here for details of our one-to-one training packages.







PTR Associates Limited

21A Peach Street, Wokingham, Berkshire, RG40 1XJ, United Kingdom
Tel: 0118 979 4000 Fax: 0118 979 4035
Email: training@ptr.co.uk
Security Course Index & Training Schedule
More Security Courses

Certificate in Information Security Management Principles (CISMP) Course

Check Point Certified Security Administration NGX-I Course

Check Point Certified Security Administration NGX-II Course

Unix Audit & Security Course

Windows 2000 Network Security Design Course

Audit & Security of Networks Course

Designing Security for Microsoft Networks Course

CISSP Fast Track Course

Firewall / VPN - Deployment and Implementation Course

Security Fundamentals Course

IT Security Practitioner Course

Oracle Database Audit & Security Course

CompTIA Security + Course

Deploying and Managing Microsoft Internet Security and Acceleration Server 2000 Course

Penetration Testing Course

VPN Installation and Configuration Course

Managing PKI Services Course

Ethical Hacking Course

Check Point VPN-1/FireWall-1 Management I Course

RSA SecureID Administration V5 Course

Writing Security Policy to ISO17799 / 27001 Course
C Programming Courses
Cisco Courses
Citrix Courses
CIW Courses
CompTia Courses
Database Courses
Exchange Server Courses
Fortran Courses
Internet Courses
Java Courses
JSP Courses
Linux Courses
MCSD Courses
MCSE Courses
Microsoft Courses
Microsoft .NET Courses
Microsoft Access Courses
Microsoft Excel Courses
Microsoft Outlook Courses
Microsoft Powerpoint & Visio Courses
Microsoft Project Courses
Microsoft Server Products Courses
Microsoft Word Courses
Networking Courses
Oracle Courses
Perl Courses
Programming Courses
Security Courses
SQL Courses
SQL Server 2000 Courses
SQL Server 2005 Courses
Unix Courses
VBA Courses
Visual Basic Courses
Windows 2000 Courses
Windows Server 2003 Courses
Windows Vista Courses
Windows XP Courses
XML Courses