You are not yet enrolled in this course.
You must login / register an account before enrolling in a free course or purshasing a premium course.
Course Description
Executives working in UK commercial and third sector companies of any size need to be aware of the requirements for information security. They also need to be aware of the context of their role and the roles of others in defining and implementing company policies and processes, and in some cases implementing management systems for meeting the requirements of standards which the company may be certified against. Information security is increasingly becoming critically important and good practices will ultimately benefit the company and its customers.
This course delivers a more detailed level of awareness of key topics for executives or senior managers that have been delegated specific responsibility for information security and who must then report directly into the board. Those taking the course the will gain awareness of the key requirements and best practice activities to then consider in the context of their business. The key topics covered include those referenced in best practices guidance as set out in the National Cyber Security Centre (NCSC) and standards such as Cyber Essentials and ISO 27001 as well as references to related laws.
Who is the course for?
The course should be taken by business owners and executives and senior managers who are tasked with day to day operational accountability for cyber security, or indeed wish to attain a greater level of awareness of the practical considerations and best practices for businesses. It includes a higher level of detail and awareness in broader areas when compared to the rapid overview course for executives (IS04)
This course is not intended for public sector or government organisations where special rules apply. Similarly, please note that this is not a technical training course, and is not a course on implementing information security management.
What training pre requisites are there for taking the course?
There are no training pre requisites. The training is best used when the organisation has established policies with regard to information security.
What level of knowledge is required?
No specific specialist information security knowledge is required. It is assumed that all executives have a good knowledge of the business in order to be able to consider the context of the training content with their own organisation.
What knowledge will be gained after taking the course
This particular course is not intended to provide training to be able to implement information security management systems, but will provide the executive with the following:
- Awareness and understanding of Information Security terms, concepts and frameworks
- Awareness of the challenges and benefits of cyber security
- Awareness and general understanding of the principles and objectives of information security
- Awareness of the Law
- Awareness of governance best practices
- Awareness of Practical considerations for baseline best practices
- Awareness of Practical considerations for an approach to implementing cyber security
- Awareness of Roles and responsibilities and building a positive cyber security culture
- Awareness of Benefits and things to do for each of the security best pratice areas
- Awareness of frameworks including NCSC Best practices, Cyber Essentials and ISO27001
- Awareness of Information security management systems
- Awareness of common threats
- Awareness of resouces and support
