Information security is the protection of information assets, and any ICT assets which create, process, store, view or transmit information, against unauthorised use or accidental modification, loss or release.

More information

What are the relevant roles and SFIA skill(s)?

Example role(s)

Skills Framework for the Information Age (SFIA) skill(s)

  • Information Security (SCTY)
  • Security Administration (SCAD)
  • Information Assurance (INAS)

You can search for these four letter skill codes on the SFIA website for more information

How do I develop this skill set?

Detailed information on Cyber careers, training and events can be found here

What are the relevant policies and guidance?

Internal policies and standards:

External policies and standards:

    Departments should refer to Annex A ISO/IEC 27001:2013 Information technology - Security techniques – Information security management systems – Requirements (second edition) for information security related definitions.

    Find out how to access ISO 27000 here.

Last Reviewed: 29 June 2022