Information is significant for the continuity and legitimate working of both individual organizations and the economies they fuel; this data must be ensured against access by unauthorized people, secured against accidental or pernicious alteration or demolition, and must be accessible when it is required. The module Information Security Management Professional dependent on ISO/IEC 27001 tests comprehension of the organizational, physical and technical aspects of information security.
Who is this certification for?
This module is expected for each and every individual who is associated with the implementation, evaluation, and reporting of a data security program, for example, an Information Security Manager (ISM), Information Security Officer (ISO) or a Line Manager, Process Manager or Project Manager with security responsibilities. Essential knowledge on Information Security is suggested, for example through the EXIN Information Security Foundation dependent on ISO/IEC 27001 accreditation.
Information security points of view: the viewpoints of the business, the client, and the service provider Risk Management: Analysis of the risks, picking controls, managing remaining risks Information security controls: Organizational, technical and physical controls
EXIN Information Security Management Professional based on ISO/IEC 27001 Body of Knowledge EXIN (2020)