Chartered Institute of Information Security

The Chartered Institute of Information Security
Formation	2006
Type	Not-for-Profit
Legal status	Limited Company registered in England and Wales
Purpose	Professional Body
Headquarters	Evesham, Worcestershire United Kingdom
Region served	United Kingdom, Worldwide
Membership	10,000
Chairman	Luke Beason
Website	CIISec website

Last updated October 17, 2024

The Chartered Institute of Information Security (CIISec), formerly the Institute of Information Security Professionals (IISP), is an independent, not-for-profit body governed by its members, with the principal objective of advancing the professionalism of information security practitioners and thereby the professionalism of the industry as a whole.

Overview

The Chartered Institute of Information Security has a membership representing over 10,000 individuals globally throughout Industry, Academia and Government.

CIISec has offices in Evesham, Worcestershire and Southwark, London. The institute's HQs are based in Evesham, close to the cyber-hubs of Cheltenham and Malvern.

The institute is run by its members and has an elected board of directors with Luke Beason as the chairman.

Activities

One of its main activities is to act as an accreditation authority for the industry. The consortium of CIISec, CREST, and RHUL has been appointed by NCSC as one of the certification bodies for the UK's Certified Cyber Professional (CCP) assured service.^[2] The consortium assesses individuals based on the Skills Framework, as part of a certification scheme driven by NCSC, the IA arm of GCHQ.

Full membership of the institute is information security's professional standard and endorses the knowledge, experience and professionalism of an individual in this field. The award of membership levels is competency-based which sets it apart from purely knowledge-based qualifications and is awarded to those professionals who demonstrate breadth and depth of knowledge, and substantial practical experience.^[3]

History

Based in London, United Kingdom, the institute was established in 2006 by information security professionals. In 2007, the institute developed the CIISec Skills Framework. This framework describes the range of competencies expected of information security and information assurance (IA) professionals in the effective performance of their roles. It was developed through collaboration between both private and public sector organisations and academics and security leaders.

In 2012, as part of the government's investment in cyber security, the CIISec consortium was appointed by NCSC (formally CESG) to provide certification for UK government information assurance professionals. The CIISec defined a set of information security skills and skill levels and these skill definitions have been supplemented by NCSC to enable certification bodies to make formal assessments, and others to make informal assessments against the IA skill levels.

Related Research Articles

Professional certification, trade certification, or professional designation, often called simply certification or qualification, is a designation earned by a person to assure qualification to perform a job or task. Not all certifications that use post-nominal letters are an acknowledgement of educational achievement, or an agency appointed to safeguard the public interest.

CISSP is an independent information security certification granted by the International Information System Security Certification Consortium, also known as ISC2.

The British Computer Society (BCS), branded BCS, The Chartered Institute for IT, since 2009, is a professional body and a learned society that represents those working in information technology (IT), computing, software engineering, computer engineering and computer science, both in the United Kingdom and internationally. Founded in 1957, BCS has played an important role in educating and nurturing IT professionals, computer scientists, software engineers, computer engineers, upholding the profession, accrediting Chartered IT Professional (CITP) and Chartered Engineer (CEng) status, and creating a global community active in promoting and furthering the field and practice of computing.

Founded in 1904, the Association of Chartered Certified Accountants (ACCA) is the global professional accounting body offering the Chartered Certified Accountant qualification (ACCA). It is the fourth-largest professional accounting body in the world, with 252,500 members and 526,000 future members. ACCA's headquarters are in London with principal administrative office in Glasgow. ACCA works through a network of over 110 offices and centres in 51 countries - with 346 Approved Learning Partners (ALP) and more than 7,600 Approved Employers worldwide, who provide employee development.

ISACA is an international professional association focused on IT governance. On its IRS filings, it is known as the Information Systems Audit and Control Association, although ISACA now goes by its acronym only. ISACA currently offers 8 certification programs, as well as other micro-certificates.

The CCP, or Chinese Communist Party, is the sole ruling party in the People's Republic of China.

Information security standards are techniques generally outlined in published materials that attempt to protect a user's or organization's cyber environment. This environment includes users themselves, networks, devices, all software, processes, information in storage or transit, applications, services, and systems that can be connected directly or indirectly to networks.

The Institution of Occupational Safety and Health (IOSH) is a global organisation for health and safety professionals, based in the UK.

Following is a partial list of professional certifications in financial services, with an overview of the educational and continuing requirements for each; see Professional certification § Accountancy, auditing and finance and Category:Professional certification in finance for all articles.

In the United Kingdom, a Chartered Engineer (CEng) is an engineer registered with the UK's regulatory body for the engineering profession, the Engineering Council. Chartered Engineers are master's degree qualified or must demonstrate equivalent masters level, work-based learning. The appropriate professional competencies must be demonstrated through education, further training and work experience. Significant experience is required which invariably spans several years of postgraduate professional practice. Demonstration of competence is defined in the UK Standard for Professional Engineering Competence, assessed through professional review of academic qualifications and professional development. Formal, non-formal and informal learning can be assessed. The title Chartered Engineer is protected in the UK under law by means of the Engineering Council’s Royal Charter and Bye-laws. As of 2019 there are approximately 180,000 engineers registered as a Chartered Engineer. Chartered Engineers are registered through Professional Engineering Institutions (PEIs) licensed by the Engineering Council which are relevant to their industry or specialism. The total process of formation of a Chartered Engineer including MEng typically spans at least 8-10 years, although 12+ years is not uncommon to satisfy all of the competency requirements.

SFIAplus is the IT training and development model of the British Computer Society (BCS). Based on the original Industry Structure Model, first published by the BCS in July 1986, which was remapped to the Skills Framework for the Information Age (SFIA) and rebranded as SFIAPlus.

The Institute for the Certification of Computing Professionals (ICCP) is a non-profit institution for professional certification in the Computer engineering and Information technology industry. It was founded in 1973 by 8 professional computer societies to promote certification and professionalism in the industry, lower the cost of development and administration of certification for all of the societies and act as the central resource for job standards and performance criteria.

<span class="mw-page-title-main">CESG Listed Adviser Scheme</span>

The CESG Listed Adviser Scheme was a programme run by CESG, to provide a pool of information assurance consultants to government departments and other public-sector bodies in the UK.

The National Information Assurance Training and Education Center (NIATEC) is an American consortium of academic, industry, and government organizations to improve the literacy, awareness, training and education standards in Information Assurance. It serves to develop professionals with IA expertise in various disciplines and ultimately contributes to the protection of the National Information Infrastructure.

The Computing Technology Industry Association, more commonly known as CompTIA, is an American non-profit trade association that issues professional certifications for the information technology (IT) industry. It is considered one of the IT industry's top trade associations.

The International Information System Security Certification Consortium, or ISC2, is a non-profit organization which specializes in training and certifications for cybersecurity professionals. It has been described as the "world's largest IT security organization". The most widely known certification offered by ISC2 is the Certified Information Systems Security Professional (CISSP) certification.

IASME Governance is an Information Assurance standard that is designed to be simple and affordable to help improve the cyber security of Small and medium-sized enterprises (SMEs).

The United Kingdom has a diverse cyber security community, interconnected in a complex network.

Cyber Essentials is a United Kingdom certification scheme designed to show an organisation has a minimum level of protection in cyber security through annual assessments to maintain certification.

The National Cyber Security Centre (NCSC) is an organisation of the United Kingdom Government that provides advice and support for the public and private sector in how to avoid computer security threats. It is the UK's National technical authority for cyber threats and Information Assurance. Based in Victoria, London, it became operational in October 2016, and its parent organisation is GCHQ.

References

↑ "Our Mission". www.iisp.org. Archived from the original on 2018-07-05. Retrieved 2018-07-05.
↑ "Certified Cyber Professional (CCP) assured service". www.ncsc.gov.uk. Retrieved 2022-12-06.
↑ "Full Membership". www.iisp.org. Archived from the original on 2018-07-05. Retrieved 2018-07-05.

Sources

"Cloud Expo 2014 presentation from Piers Wilson, Director of the IISP: Equipping security teams to deal with changing technology.", Wednesday 26 February 2014.
Burke, Claire. " Top tips to stop cyber criminals from targeting your small business ", The Guardian , London, Tuesday 11 March 2014.
"New Cyber Security Government skills certification from IISP and CREST.", Wednesday 24 October 2012.
"CREST works with industry influencers to enhance the recognition and professionalism of the technical security industry.", Retrieved on Saturday 15 March 2014.
"The Times Raconteur Section: What is a security professional? Knowing what good look like.", Wednesday 12 December 2012.
"e-skills uk and IISP to align professional skills standards in information-security.", Tuesday 6 November 2012.
"IISP Pulse magazine focus on Validsoft ceo's views." Archived 2014-04-28 at the Wayback Machine

External links

Chartered Institute of Information Security

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.

[1] "Our Mission". www.iisp.org. Archived from the original on 2018-07-05. Retrieved 2018-07-05.

[2] "Certified Cyber Professional (CCP) assured service". www.ncsc.gov.uk. Retrieved 2022-12-06.

[3] "Full Membership". www.iisp.org. Archived from the original on 2018-07-05. Retrieved 2018-07-05.

[1]

[2]

[3]