Certificate in Cyber Governance for Information Asset Owners (IAO)

Provided by

Enquire about this course


This two day NCSC Certified training, scenario based course, aims to teach learners about the role of the Information Asset Owner (IAO) and their core responsibilities. Considering best practice industry and government guidelines, with case studies and practical exercises to help prepare the IAO for the myriad of challenges and issues to succeed within the role in support of a senior information risk officer (SIRO). The NCSC Certified Training exam voucher, for the APMG proctor portal, will be provided to delegates post course.

This course is for Information Asset Owners (IAO), Risk Managers and future SIRO's.
IISP Skills Alignment

This course is aligned to the following Institute of Information Security Professionals (IISP) Skills. More details on the IISP skills framework can be found here.

IISP Skills: A1,A2,A4,A5,A6,A7,B1,B2,D1,G1,H2
Continuous Professional Development (CPD)

CPD points can be claimed for NCSC accredited courses at the rate of 1 point per hour of training for NCSC accredited courses (up to a maximum of 15 points).


There are no prerequisites for this course.

Learning Outcomes

Delegates will learn how to:
  • Understand evolving cyber threat landscape and this impacts the role of the IAO
  • Understand the information assurance, governance aspects of the IAO role
  • Understand the IAO legal, regulatory & privacy responsibilities
  • Understand information asset management and asset oversight (critical & business critical)
  • Understand how the role of the IAO supports a positive cyber culture
  • Understand risk management responsibilities and risk appetite
  • Understand cyber resilience, continuity and incident management
  • Understand information asset classification and assets registers
  • Understand supply chain security & data sharing for the IAO
  • Understand the industry best practice for leadership and SIRO engagement
Course Outline

Day 1:

Introduction - IAO Context

Module 1 - Cyber Threat ;What;s the Risk;

Module 2 - Information Assurance & Governance

Module 3 - Information Risk Management & Risk Appetite

Day 2:

Module 4 - Information Asset Management

Module 5 - Cyber Resilience & Continuity

Module 6 - Cyber Leadership and a Positive Cyber Culture

Module 7 - Scenario based workshop
Certification Exam:

Duration - 90 minutes. Questions - 70 Multiple choice (4 multiple choice answers only 1 of which is correct). Pass Mark - 50%. The exam is a Proctor-U APMG exam for the Certificate in Cyber Governance for Information Asset Owners (IAO), which will be taken by delegates in their own time after the course. Delegates will receive individual emails to access their AMPG candidate portal, typically available two weeks post exam. If you experience any issues, please contact the APMG technical help desk on 01494 4520450.


Start date Location / delivery
08 Feb 2080 QA London International House Centre E1W, 1st Floor, International House, E1W 1UN Book now
01132207150 01132207150

Related article

QA's practice director of Cyber Security, Richard Beck, rounds up the latest cyber security news.