Chartered Institute of Information Security

Last updated
The Chartered Institute of Information Security
Formation2006
TypeNot-for-Profit
Legal statusLimited Company registered in England and Wales
PurposeProfessional Body
Headquarters Evesham, Worcestershire United Kingdom
Region served
United Kingdom, Worldwide
Membership
10,000
Chairman
Alastair MacWillson
Website CIISec website

The Chartered Institute of Information Security (CIISec), formerly the Institute of Information Security Professionals (IISP), is an independent, not-for-profit body governed by its members, with the principal objective of advancing the professionalism of information security practitioners and thereby the professionalism of the industry as a whole.

Contents

The primary aim of the institute is to provide a universally accepted focal point for the information security profession. [1]

Overview

The Chartered Institute of Information Security has a membership representing over 10,000 individuals globally throughout Industry, Academia and Government.

CIISec has offices in Evesham, Worcestershire and Southwark, London. The institute's HQs are based in Evesham, close to the cyber-hubs of Cheltenham and Malvern.

The institute is run by its members and has an elected board of directors with Dr Alastair MacWillson as the chairman.

Activities

One of its main activities is to act as an accreditation authority for the industry. The consortium of CIISec, CREST, and RHUL has been appointed by NCSC as one of the certification bodies for the UK's Certified Cyber Professional (CCP) assured service. [2] The consortium assesses individuals based on the Skills Framework, as part of a certification scheme driven by NCSC, the IA arm of GCHQ.

Full membership of the institute is information security's professional standard and endorses the knowledge, experience and professionalism of an individual in this field. The award of membership levels is competency-based which sets it apart from purely knowledge-based qualifications and is awarded to those professionals who demonstrate breadth and depth of knowledge, and substantial practical experience. [3]

Community hubs

The CIISec has a number of regional branches which are developed for its members: [4]

Community Hub Locations:
  • Bristol/Bath
  • Channel Islands
  • Cheltenham
  • East Anglia
  • London
  • North East
  • North West
  • Northern Ireland
  • Nottingham/Derby/Leicester
  • Scotland
  • South West
  • Thames Valley
  • Wales
  • West Midlands

History

Based in London, United Kingdom, the institute was established in 2006 by information security professionals. In 2007, the institute developed the CIISec Skills Framework. This framework describes the range of competencies expected of information security and information assurance (IA) professionals in the effective performance of their roles. It was developed through collaboration between both private and public sector organisations and academics and security leaders.

In 2012, as part of the government's investment in cyber security, the CIISec consortium was appointed by NCSC (formally CESG) to provide certification for UK government information assurance professionals. The CIISec defined a set of information security skills and skill levels and these skill definitions have been supplemented by NCSC to enable certification bodies to make formal assessments, and others to make informal assessments against the IA skill levels.

See also

Related Research Articles

Professional certification, trade certification, or professional designation, often called simply certification or qualification, is a designation earned by a person to assure qualification to perform a job or task. Not all certifications that use post-nominal letters are an acknowledgement of educational achievement, or an agency appointed to safeguard the public interest.

<span class="mw-page-title-main">Chartered Management Institute</span> Professional institution for management based in the United Kingdom

The Chartered Management Institute (CMI) is a professional institution for management based in the United Kingdom. It was founded as the British Institute of Management (BIM) in 1947 or 1948, merged with the Institution of Industrial Managers (IIM) in 1992 to form the Institute of Management (IM), and gained a royal charter, and its present name, in 2002.

CISSP is an independent information security certification granted by the International Information System Security Certification Consortium, also known as (ISC)².

<span class="mw-page-title-main">British Computer Society</span> British professional body in IT

The British Computer Society (BCS), branded BCS, The Chartered Institute for IT, since 2009, is a professional body and a learned society that represents those working in information technology (IT) and computer science, both in the United Kingdom and internationally. Founded in 1957, BCS has played an important role in educating and nurturing IT professionals, computer scientists, computer engineers, upholding the profession, accrediting chartered IT professional status, and creating a global community active in promoting and furthering the field and practice of computing.

<span class="mw-page-title-main">Association of Chartered Certified Accountants</span> Global professional organization

Founded in 1904, the Association of Chartered Certified Accountants(ACCA) is the global professional accounting body offering the Chartered Certified Accountant qualification (ACCA). It has 240,952 members and 541,930 future members worldwide. ACCA's headquarters are in London with principal administrative office in Glasgow. ACCA works through a network of over 110 offices and centres in 51 countries - with 346 Approved Learning Partners (ALP) and more than 7,600 Approved Employers worldwide, who provide employee development.

ISACA is an international professional association focused on IT governance. On its IRS filings, it is known as the Information Systems Audit and Control Association, although ISACA now goes by its acronym only. ISACA currently offers 8 certification program as well as other micro-certificates.

<span class="mw-page-title-main">IT security standards</span> Technology standards and techniques

IT security standards or cyber security standards are techniques generally outlined in published materials that attempt to protect the cyber environment of a user or organization. This environment includes users themselves, networks, devices, all software, processes, information in storage or transit, applications, services, and systems that can be connected directly or indirectly to networks.

Established in 1933, the American Board of Medical Specialties (ABMS) is a non-profit organization which represent 24 broad areas of specialty medicine. ABMS is the largest physician-led specialty certification organization in the United States.

<span class="mw-page-title-main">Chartered Quality Institute</span> Chartered body for quality professionals

The Chartered Quality Institute (CQI), formerly known as The Institute of Quality Assurance (IQA), is the chartered body for quality professionals. It improves the performance of organisations by developing their capability in quality management. As a registered charity, the CQI exists to advance education in, knowledge of and the practice of quality in the industry, the public sector and the voluntary sectors.

The Institution of Occupational Safety and Health (IOSH) is a global organisation for health and safety professionals, based in the UK.

In the United Kingdom, a Chartered Engineer (CEng) is an engineer registered with the UK's regulatory body for the engineering profession, the Engineering Council. Chartered Engineers are master's degree qualified or can demonstrate equivalent work-based learning and have gained the appropriate professional competencies through education and working experience. Demonstration of competence is defined in the UK Standard for Professional Engineering Competence, assessed through professional review of academic qualifications and professional development. Formal, non-formal and informal learning can be assessed. The title Chartered Engineer is protected in the UK under law by means of the Engineering Council’s Royal Charter and Bye-laws. As of 2019 there are approximately 180,000 engineers registered as a Chartered Engineer. Chartered Engineers are registered through Professional Engineering Institutions (PEIs) licensed by the Engineering Council which are relevant to their industry or specialism.

SFIAplus is the IT training and development model of the British Computer Society (BCS). Based on the original Industry Structure Model, first published by the BCS in July 1986, which was remapped to the Skills Framework for the Information Age (SFIA) and rebranded as SFIAPlus.

The Institute for the Certification of Computing Professionals (ICCP) is a non-profit institution for professional certification in the Computer engineering and Information technology industry. It was founded in 1973 by 8 professional computer societies to promote certification and professionalism in the industry, lower the cost of development and administration of certification for all of the societies and act as the central resource for job standards and performance criteria.

<span class="mw-page-title-main">CESG Listed Adviser Scheme</span>

The CESG Listed Adviser Scheme was a programme run by CESG, to provide a pool of information assurance consultants to government departments and other public-sector bodies in the UK.

The Computing Technology Industry Association, more commonly known as CompTIA, is an American non-profit trade association that issues professional certifications for the information technology (IT) industry. It is considered one of the IT industry's top trade associations.

<span class="mw-page-title-main">IASME</span>

IASME Governance is an Information Assurance standard that is designed to be simple and affordable to help improve the cyber security of Small and medium-sized enterprises (SMEs).

The cyber security community in the United Kingdom is diverse, with many stakeholders groups contributing to support the UK Cyber Security Strategy. The following is a list of some of these stakeholders.

Egress Software Technologies Ltd is a UK-based software company providing security software for e-mail, secure messaging, Document and Email Classification, and associated technologies to assist secure file sharing and handling.

Cyber Essentials is a United Kingdom certification scheme designed to show an organisation has a minimum level of protection in cyber security through annual assessments to maintain certification.

The National Cyber Security Centre (NCSC) is an organisation of the United Kingdom Government that provides advice and support for the public and private sector in how to avoid computer security threats. Based in London, it became operational in October 2016, and its parent organisation is GCHQ.

References

  1. "Our Mission". www.iisp.org. Archived from the original on 2018-07-05. Retrieved 2018-07-05.
  2. "Certified Cyber Professional (CCP) assured service". www.ncsc.gov.uk. Retrieved 2022-12-06.
  3. "Full Membership". www.iisp.org. Archived from the original on 2018-07-05. Retrieved 2018-07-05.
  4. "Community Hub Events". www.ciisec.org. Retrieved 2022-12-06.

Sources