Introduction to the Certification
The Chartered Institute of Information Security (CIISEC) has developed a Knowledge Framework, which provides a grounding in information security to anyone, who:
- requires a basic understanding of information security in order to enhance their current role, or;
- wishes to enter an information security or related function, or;
- already has responsibilities for information security and wishes to further develop their knowledge and skills, or;
- wishes to ensure that their information is adequately protected.
Certification is awarded to those who have passed the CIISEC ICSF examination, which is based on the CIISEC Knowledge Framework, and assigns them the title of Accredited Affiliate Inst. ISP. This can in time lead to full membership.
The examination is assessed against levels 1 and 2 of the CIISEC Skills Framework and candidates must demonstrate their knowledge and understanding of a range of concepts, approaches and techniques that are detailed in the ICSF exam syllabus.
The CIISEC Knowledge Framework (195 pages) is provided to each examinee to self-study before the exam, therefore no formal training course is required but one is still available. An optional exam prep day can also be delivered to private groups at one of the QA training centres or on client premises.
Developing skills? We’ve got you covered. The Information and Cyber Security Foundation exam (ICSF) is the official starting point for new people entering the Cyber profession and can also be used to baseline groups of people with the minimum amount of knowledge required in 45 Cyber skill areas, for example - Apprentices, Graduates, Underwriters, Technical Staff.
It lowers the cost and technical barrier of entry to the Cyber profession by providing topical access to the “Cyber Security Body of Knowledge (CyBOK)” for Levels 1 and 2. This exam opens the gates to the profession– make it count through future focussed training, and achieve your potential with us. Your future. Our passion. Let’s go!
Benefits of CIISEC Membership
The Chartered Institute of Information Security (CIISEC) is the only pure play information security institution to have been granted Royal Charter status and is dedicated to raising the standard of professionalism in information security. CIISEC is here to help individuals and organisations develop capability and competency.
CIISEC has spent over a decade using uniquely developed frameworks to set standards for skills, experience and knowledge across the profession. Our frameworks have been developed in conjunction with industry, government and academia and are to align with, and recognise other accreditation bodies’ standards. This Information and Cyber Security Foundation (ICSF) exam measures competency against our Knowledge Framework. By taking the exam you will automatically receive one year’s membership of CIISEC enabling you to benefit from our resources, events and community to support your development and journey as a Security Professional. By successfully passing the exam you will become an Accredited Affiliate of CIISEC, can use the post nominals associated with this level and your qualification will be valid for two years.
For more information on CIISEC member benefits, please visit: https://www.ciisec.org/Benefits
There are no prerequisites for this exam although a general knowledge of IT would be beneficial.
Eligibility for the Examination
Candidates must either have studied the CIISEC Knowledge Framework, or have attended an accredited training course. A knowledge of Information and Communications Technology (ICT) would be an advantage.
Objectives of the Examination
Candidates should be able to demonstrate knowledge and understanding of the CIISEC Knowledge Framework. Key areas are:
- Threat, Vulnerability, Risk Assessment and Management; B
- Governance and Information Security Management; A
- Security Architecture and Controls; C
- Information Security Framework; A
- Security Lifecycle; C
- Operational Compliance. E
Format of the Examination
Type of examination: A ‘closed book’, ONLINE, proctored examination consisting of 100 multiple choice questions.
Duration of examination: 2 hours
Pass Mark: 65/100 (65%)
Distinction Mark: 80/100 (80%)
When booking the examination, candidates may request additional time. An additional 30 minutes will be permitted for those candidates:
- for whom English is not their first language. Paper dictionaries only may be used.
- who suffer some recognised disability such as dyslexia or visual impairment.
Successful candidates will earn the following:
- Information & Cyber Security Foundation (ICSF) certificate valid for 2 years
- Accredited Affiliate membership to the Chartered Institute of Information Security (CIISEC) 1 year – participate in the Cyber community
- Able to use the post-nominal: AA Inst. ISP
A detailed exam syllabus can be viewed or downloaded here: