Resource Centre
Our Frameworks
Our Frameworks have been developed over a number of years across it’s membership and the wider cyber and information security industry.
Skills Framework
This framework describes the range of competencies expected of Information Security and Information Assurance Professionals in the effective performance of their roles. It was developed through collaboration between both private and public sector organisations and world-renowned academics and security leaders.
Roles Framework
This framework sets out the typical set of skills expected of cyber and information security professionals in the effective performance of their roles. It was developed through collaboration between both private and public sector organisations and world-renowned academics and security leaders.
Knowledge Framework
This framework expands upon the widely used CIISec Skills Framework allowing users to have a consistent view of cyber and information security. The Framework is also a baseline for the ICSF entry-level exam as a self-study material.
Our Industry Survey
CIISec runs an annual survey across its membership and the wider cyber and information security industry to gather views on a variety of factors relating to the security profession.
The Security Profession in 2022-23
I’m pleased to introduce the eighth year of CIISec’s ‘State of the profession’, our annual review of the security profession. As I write this, we are all struggling with a period of economic uncertainty, with interest rates still high and political unrest and war in some regions. Meanwhile, technology changes continue to bring along new concerns, for example, the rise and impact of AI on business.
The Security Profession in 2021-22
This is the seventh year that the “State of the Profession” report has been produced by CIISec. Each year I marvel that, what started out as a small survey of the members, has become a major piece of research and analysis of the trends affecting the industry and the profession.
The Security Profession in 2020-21
This is the sixth “state of the profession” report that CIISec (formerly IISP) has produced. It started as an idea to get member feedback and seek to derive some interesting data points on the challenges facing the security professional, to get their views on issues and to see what the personal demographics were. It has now become a major statistical exercise – generating a wealth of data and once again the results make interesting reading.
ABC Guides
CIISec ABC Guides help you to understand cyber security risks and provide actionable steps to secure your organisation.
Executive Board
Our Executive Board Guide explores how to communicate cyber security risks to the executive board, as well as practical guidance on gaining budget and discussing implications for the wider business.
Human Resources
Our Human Resources Guide focuses on the areas where HR will encounter cyber security, demonstrating where they need understanding of key issues and how to address them.
Supplier Management
Our Supplier Management Guide focuses on information security in supplier management and the importance of an organisation-wide approach in mitigating cyber risk in supplier relationships.
Security Culture
The guide focusses on the creation of a proactive security culture that is measurable and linked to risk reduction.
Training & Awareness
The guide focusses on developing security awareness across the business.
Diversity & Inclusion
At CIISec, we want you to feel welcomed, respected and valued, so we strive to treat everyone in a fair manner. We want you to feel that you belong and that you can bring your whole authentic self to our organisation.
- Webinars
- Guides
- Interviews
- Latest News
- D&I Charter
- Articles