Information security is becoming increasingly important. Globalization of the economy leads to a growing exchange of information between organizations (their employees, customers and suppliers) and a growing use of networks, such as the internal company network, connection with the networks of other companies and the Internet. Furthermore, activities of many companies now rely on IT, and information has become a valuable asset. Protection of information is crucial for the continuity and proper functioning of the organization: information must be reliable.
In the Information Security Foundation module, based on ISO/IEC 27002 (ISFS), the basic concepts of information security and their coherence are tested.
The target group of ISFS is everyone in the organization. The basic knowledge that is tested in this module contributes to the understanding that information is vulnerable and that measures are necessary to protect this information. The module is also suitable for small independent businesses for whom some basic knowledge of information security is necessary. This module can be a good start for new information security professionals.
The Certificate Information Security Foundation based on ISO/IEC 27002 is part of the qualification program Information Security. The module is followed up by the Certificates Information Security Management Advanced based on ISO/IEC 27002 and Information Security Management Expert based on ISO/IEC 27002.
- Information and security: 10%
- Threats and risks: 30%
- Approach and organization: 10%
- Measures: 40%
- Legislation and regulations: 10%
Number of multiple-choice questions: 40
Pass mark: 65% (26 out of 40)
Open book: no
Electronic equipment allowed: no