Chartered Institute of Information Security

Last updated
The Chartered Institute of Information Security
Formation2006
TypeNot-for-Profit
Legal statusLimited Company registered in England and Wales
PurposeProfessional Body
Headquarters Evesham, Worcestershire United Kingdom
Region served
United Kingdom, Worldwide
Membership
10,000
Chairman
Luke Beason
Website CIISec website

The Chartered Institute of Information Security (CIISec), formerly the Institute of Information Security Professionals (IISP), is an independent, not-for-profit body governed by its members, with the principal objective of advancing the professionalism of information security practitioners and thereby the professionalism of the industry as a whole.

Contents

The primary aim of the institute is to provide a universally accepted focal point for the information security profession. [1]

Overview

The Chartered Institute of Information Security has a membership representing over 10,000 individuals globally throughout Industry, Academia and Government.

CIISec has offices in Evesham, Worcestershire and Southwark, London. The institute's HQs are based in Evesham, close to the cyber-hubs of Cheltenham and Malvern.

The institute is run by its members and has an elected board of directors with Luke Beason as the chairman.

Activities

One of its main activities is to act as an accreditation authority for the industry. The consortium of CIISec, CREST, and RHUL has been appointed by NCSC as one of the certification bodies for the UK's Certified Cyber Professional (CCP) assured service. [2] The consortium assesses individuals based on the Skills Framework, as part of a certification scheme driven by NCSC, the IA arm of GCHQ.

Full membership of the institute is information security's professional standard and endorses the knowledge, experience and professionalism of an individual in this field. The award of membership levels is competency-based which sets it apart from purely knowledge-based qualifications and is awarded to those professionals who demonstrate breadth and depth of knowledge, and substantial practical experience. [3]

Community hubs

The CIISec has a number of regional branches which are developed for its members: [4]

Community Hub Locations:
  • Bristol/Bath
  • Channel Islands
  • Cheltenham
  • East Anglia
  • London
  • North East
  • North West
  • Northern Ireland
  • Nottingham/Derby/Leicester
  • Scotland
  • South West
  • Thames Valley
  • Wales
  • West Midlands

History

Based in London, United Kingdom, the institute was established in 2006 by information security professionals. In 2007, the institute developed the CIISec Skills Framework. This framework describes the range of competencies expected of information security and information assurance (IA) professionals in the effective performance of their roles. It was developed through collaboration between both private and public sector organisations and academics and security leaders.

In 2012, as part of the government's investment in cyber security, the CIISec consortium was appointed by NCSC (formally CESG) to provide certification for UK government information assurance professionals. The CIISec defined a set of information security skills and skill levels and these skill definitions have been supplemented by NCSC to enable certification bodies to make formal assessments, and others to make informal assessments against the IA skill levels.

See also

Related Research Articles

Professional certification, trade certification, or professional designation, often called simply certification or qualification, is a designation earned by a person to assure qualification to perform a job or task. Not all certifications that use post-nominal letters are an acknowledgement of educational achievement, or an agency appointed to safeguard the public interest.

<span class="mw-page-title-main">Chartered Management Institute</span> Professional institution for management based in the United Kingdom

The Chartered Management Institute (CMI) is a professional institution for management based in the United Kingdom. It was founded as the British Institute of Management (BIM) in 1947 or 1948, merged with the Institution of Industrial Managers (IIM) in 1992 to form the Institute of Management (IM), and gained a royal charter, and its present name, in 2002.

CISSP is an independent information security certification granted by the International Information System Security Certification Consortium, also known as ISC2.

<span class="mw-page-title-main">British Computer Society</span> British professional body in IT

The British Computer Society (BCS), branded BCS, The Chartered Institute for IT, since 2009, is a professional body and a learned society that represents those working in information technology (IT), computing, software engineering and computer science, both in the United Kingdom and internationally. Founded in 1957, BCS has played an important role in educating and nurturing IT professionals, computer scientists, software engineers, computer engineers, upholding the profession, accrediting chartered IT professional status, and creating a global community active in promoting and furthering the field and practice of computing.

<span class="mw-page-title-main">Association of Chartered Certified Accountants</span> Global professional organization

Founded in 1904, the Association of Chartered Certified Accountants (ACCA) is the global professional accounting body offering the Chartered Certified Accountant qualification (ACCA). It has 240,952 members and 541,930 future members worldwide. ACCA's headquarters are in London with principal administrative office in Glasgow. ACCA works through a network of over 110 offices and centres in 51 countries - with 346 Approved Learning Partners (ALP) and more than 7,600 Approved Employers worldwide, who provide employee development.

ISACA is an international professional association focused on IT governance. On its IRS filings, it is known as the Information Systems Audit and Control Association, although ISACA now goes by its acronym only. ISACA currently offers 8 certification programs, as well as other micro-certificates.

Information security standards or cyber security standards are techniques generally outlined in published materials that attempt to protect the cyber environment of a user or organization. This environment includes users themselves, networks, devices, all software, processes, information in storage or transit, applications, services, and systems that can be connected directly or indirectly to networks.

The American Board of Medical Specialties (ABMS) is a non-profit organization established in 1933 which represents 24 broad areas of specialty medicine. ABMS is the largest and most widely recognized physician-led specialty certification organization in the United States. The other certification organizations in the United States are the American Board of Physician Specialties and American Osteopathic Association Bureau of Osteopathic Specialists.

<span class="mw-page-title-main">Chartered Quality Institute</span> Chartered body for quality professionals

The Chartered Quality Institute (CQI), formerly known as the Institute of Quality Assurance (IQA), is the chartered body for quality professionals. It improves the performance of organizations by developing their capabilities in quality management. As a registered charity, the CQI exists to advance education in, knowledge of, and the practice of quality in industry, the public sector, and the voluntary sector.

The Institution of Occupational Safety and Health (IOSH) is a global organisation for health and safety professionals, based in the UK.

SFIAplus is the IT training and development model of the British Computer Society (BCS). Based on the original Industry Structure Model, first published by the BCS in July 1986, which was remapped to the Skills Framework for the Information Age (SFIA) and rebranded as SFIAPlus.

The Institute for the Certification of Computing Professionals (ICCP) is a non-profit institution for professional certification in the Computer engineering and Information technology industry. It was founded in 1973 by 8 professional computer societies to promote certification and professionalism in the industry, lower the cost of development and administration of certification for all of the societies and act as the central resource for job standards and performance criteria.

<span class="mw-page-title-main">CESG Listed Adviser Scheme</span>

The CESG Listed Adviser Scheme was a programme run by CESG, to provide a pool of information assurance consultants to government departments and other public-sector bodies in the UK.

The National Information Assurance Training and Education Center (NIATEC) is an American consortium of academic, industry, and government organizations to improve the literacy, awareness, training and education standards in Information Assurance. It serves to develop professionals with IA expertise in various disciplines and ultimately contributes to the protection of the National Information Infrastructure.

The Computing Technology Industry Association, more commonly known as CompTIA, is an American non-profit trade association that issues professional certifications for the information technology (IT) industry. It is considered one of the IT industry's top trade associations.

<span class="mw-page-title-main">IASME</span>

IASME Governance is an Information Assurance standard that is designed to be simple and affordable to help improve the cyber security of Small and medium-sized enterprises (SMEs).

The United Kingdom has a diverse cyber security community, interconnected in a complex network.

Egress Software Technologies Ltd is a UK-based software company providing security software for e-mail, secure messaging, Document and Email Classification, and associated technologies to assist secure file sharing and handling.

Cyber Essentials is a United Kingdom certification scheme designed to show an organisation has a minimum level of protection in cyber security through annual assessments to maintain certification.

The National Cyber Security Centre (NCSC) is an organisation of the United Kingdom Government that provides advice and support for the public and private sector in how to avoid computer security threats. It is the UK's National technical authority for cyber threats and Information Assurance Based in London, it became operational in October 2016, and its parent organisation is GCHQ.

References

  1. "Our Mission". www.iisp.org. Archived from the original on 2018-07-05. Retrieved 2018-07-05.
  2. "Certified Cyber Professional (CCP) assured service". www.ncsc.gov.uk. Retrieved 2022-12-06.
  3. "Full Membership". www.iisp.org. Archived from the original on 2018-07-05. Retrieved 2018-07-05.
  4. "Community Hub Events". www.ciisec.org. Retrieved 2022-12-06.

Sources