Certified Cyber Security Foundation Training Course

Provided by

Enquire about this course

SKU: 5445

  • The industry-leading course for anyone looking to start a career in cyber security.
  • Train with cyber security experts for a complete introduction to cyber security threats, cyber security controls, security frameworks and incident management.
  • Fully aligned with CyBOK v1.1 (Cyber Security Body of Knowledge), which is approved by the NCSC (National Cyber Security Centre).
  • Study from anywhere with our Live Online and Self-Paced online options and keep travel and costs down. Learn more .
  • Successful completion of this one-day course and included exam awards the Certified Cyber Security Foundation (C CS F) qualification and 7 CPD/CPE points.

  • Training course outline

    This fully accredited, one-day training course provides a comprehensive introduction to current cyber security threats and the measures required to mitigate the risks associated with cyber attacks. It also prepares you to pass the included IBITGQ Certified Cyber Security Foundation (C CS F) exam on the first attempt.

    The course content is aligned with CyBOK v1.1 . Approved by the NCSC, CyBOK defines and codifies the foundational knowledge required for a cyber security professional.

    This Foundation-level training focuses on building the introductory knowledge associated with the CyBOK categories:

  • Human, Organisational and Regulatory Aspects
  • Attacks and Defences
  • Systems Security
  • Software and Platform Security
  • Infrastructure Security

  • It also prepares candidates to pass the CIISEC ICSF (Information & Cyber Security Foundation) qualification. Please see CIISEC ICSF for further information on registering for the exam.

    The course covers the following topics:

  • Understanding cyber security fundamentals.
  • Information security and governance.
  • Threat, vulnerability, risk assessment and management.
  • Understanding security controls.
  • Information security frameworks.
  • The security lifecycle.
  • The need for operational compliance.

  • COVID-19: remote delivery options

    We want to reassure our clients that all training courses will go ahead as scheduled during the current COVID-19 situation. We have adjusted our delivery methods to allow you to learn from anywhere. Our Classroom / Live Online delivery option lets you attend either in person or online. Please also refer to our COVID-19 policy.

    Certified Cyber Security Foundation course benefits

    Designed by experts

    We’re acknowledged leaders in cyber and information security with years of hands-on experience.

    Delivered by professionals

    Taught by a cyber security consultant with extensive management and technical experience of helping organisations of all sizes deliver effective cyber security programmes.


    Learn about cyber security through group work, exercises and case studies.

    Learn from anywhere

    Attend Live Online or in person at one of our UK training venues.

    See what our previous learners think about this course

    “Andy delivered the course exceptionally and was consistently making sure everyone was up to pace. Absolutely brilliant stuff. Thank you Andy you were brilliant, you explained everything clearly and it was a great experience. I know I can go away with a lot more confidence than I came with.”

    - Anonymous

    “I'm really glad our company enrolled us for this course. A real eye-opener. Everyone needs to do this course. Andrew Snow did a great job. Trainer Andrew Snow knew his stuff. He delivered very well. Glad I did this. I learned a lot. I'm even more OCD than I thought I was!”

    - Nicky Keeley, Head of Cyber Security Oversight, Civil Aviation Authority

    "Andrew was very good at communicating the material and adding other relevant topics around those points. The pace was good and time wise was very efficient.”

    - Mark Stalling, Justice Trax

    “I thought the trainer Daniel had a great pace and interesting tone so it wasn’t boring to listen to. He was very patient as we experienced loads of video sound issues but he didn’t get flustered. Thank you ”

    - Katie Grigg, Service Manager

    “Really enjoyed the course lots of information to take in will be very useful in my data role.”

    - Anonymous

    Who should attend this course?

    This cyber security course is particularly suitable for individuals starting, or wanting to start, a career in cyber security. It will also benefit operational staff, business directors and managers who wish to improve their understanding of cyber security and its impact on their organisation.

    Your Learning Path

    Find out how the Certified Cyber Security Foundation Training Course will help you develop your career.

    Completion of this course is mandatory for taking the next step on your training journey by booking on the Certified Cyber Security Practitioner Training Course .

    Please note that you can attend both courses and save 15% by booking the Certified Cyber Security Foundation and Practitioner Combination Training Course .

    This course is an essential component of the following learning paths:

  • Cyber Security roles
  • Information Security roles
  • ISO 27001 roles
  • GDPR / Data Privacy roles

  • ×

    Discover the benefits of training with IT Governance

  • Pass first time or train again for free: we have trained more than 28,000 people and we’re confident you’ll pass with us first time. If you don’t, we’ll train you again for free.*
  • Access your training anywhere: All course materials are available digitally and will be made available 20 days before your course.
  • Training solutions tailored to your organisation: We provide training solutions for multinationals and small businesses.

  • * Terms and conditions apply

    Course details

    What does this course cover?

    Module 1 – Understanding cyber security fundamentals

  • The impacts of cyber incidents and events on an organisation.
  • Identify the current threat landscape.
  • The CIA triad.
  • The roles of people, processes and controls in cyber security.

  • Module 2 – Information security and governance

  • Explain information governance.
  • The role of organisational governance and its link to security.
  • Introducing the ISO 27014 standard.
  • Define a security steering committee.
  • Who is responsible for cyber security?

  • Module 3 – Threat, vulnerability, risk assessment and management

  • Definitions of risk, vulnerability, threat and assets.
  • The purpose of a risk-based approach.
  • Describe risk in terms of impact and likelihood.
  • Consider risk and mitigation options.
  • The current risk appetite of an organisation.
  • Review the use of heat maps.

  • Module 4 – Understanding security controls

  • The four control categories: preventive, deterrent, detective and corrective.
  • The four control types: physical, procedural, personal and technical.
  • Understand the concept of Cloud computing.
  • Summarise Cloud computing responsibilities.
  • Recall symmetric, asymmetric and hybrid cryptography.

  • Module 5 – Information security frameworks

  • The purpose of policies, standards, procedures and guidelines.
  • The need for security awareness.
  • The relationship between legislation and cyber security, i.e. the GDPR, CMA.
  • Contractual requirements including the PCI DSS (Payment Card Industry Data Security Standard).
  • Standards bodies including ISO/IEC and NIST.

  • Module 6 – The security lifecycle

  • Recognise secure coding practices.
  • Examples of testing strategies, such as fuzzing and regression testing.
  • The importance of patch management.
  • Explain change management.
  • The use of independent assurance including ISO 27001.

  • Module 7 – The need for operational compliance

  • The purpose of auditing.
  • Discuss methods of monitoring such as IDS, IPS and SIEM.
  • Explain the five phases of incident management.

  • What’s included in this course?

  • Complete course materials (digital copy provided as a PDF file).
  • The Certified Cyber Security Foundation exam.
  • A certificate of attendance.

  • What equipment do I need?

    You will need a laptop and a webcam for your course and exam.

    Course duration and times

    Day 1: 9:30am–5:00pm

    Course locations

  • Learn from anywhere with our instructor-led Live Online courses or Classroom / Live Online delivery options. Learn more.
  • Alternatively, you can study in a classroom at one of our venues in London or Ely (Cambridgeshire).

  • Are there any prerequisites for this course?

    This course has no entry requirements, but it is beneficial for attendees to have basic IT knowledge.

    Is there any recommended reading?

    We recommend that you purchase and read the following textbook before the course:

  • Information Security Management Principles – Third Edition

  • Exams and qualifications

    Certified Cyber Security Foundation exam

    Candidates take the Certified Cyber Security Foundation (C CS F) exam set by IBITGQ ( International Board for IT Governance Qualifications ) at the end of the course.

  • Delivery method: Online
  • Duration: 60 minutes
  • Questions: 40
  • Format: Multiple choice
  • Pass mark: 65%

  • This course is equivalent to:


    CPD points

    What qualifications will I receive?

    Certified Cyber Security Foundation (C CS F).


    This course is accredited by IBITGQ ( International Board for IT Governance Qualifications )

    IBITGQ (International Board for IT Governance Qualifications) is a personnel certification body that certifies individuals IT governance.

    IBITGQ is accredited to the ISO/IEC 17024:2012 standard ( Conformity assessment – General requirements for bodies operating certification of persons ) by IAS (International Accreditation Service). ISO 17024 is a global, industry-recognised benchmark, and qualifications accredited to this standard are recognised and highly valued by employers worldwide.

    You can demonstrate your professional and practical knowledge and expertise by registering your qualification on the IBITGQ/ GASQ successful candidate register .

    How will I receive my exam results and certificates?

  • Provisional exam results will be available immediately upon completion of the exam. Confirmed exam results will be issued within ten working days from exam date.
  • Certificates for those who pass will be issued within ten working days from the exam date.
  • Results notifications and certificates are sent directly to candidates by the relevant exam board in electronic format. Please note that hard copy exam certificates are not issued.

  • Do I need to bring proof of identity?

    Participants must provide a form of phot


    Start date Location / delivery
    26 Sep 2022 United Kingdom Book now

    Related article

    Misinformation is dangerous. It not only leads to wrong decision-making, it can cost you money. (ISC)² certifications are highly regarded