1. Home
  2. Exin
  3. ISFS ISO/IEC Exam Syllabus

Exin ISFS Exam Syllabus

Exin ISFS Exam

Information Security Foundation

Total Questions: 85

What is Included in the Exin ISFS Exam?

Authentic information about the syllabus and an effective study guide is essential to go through the Exin ISFS exam in the first attempt. The study guide of Study4Exam provides you with comprehensive information about the syllabus of the Exin ISFS exam. You should get this information at the start of your preparation because it helps you make an effective study plan. We have designed this Exin ITSM ISO IEC 20000 certification exam preparation guide to give the exam overview, practice questions, practice test, prerequisites, and information about exam topics that help to go through the Exin Information Security Foundation (2022) exam. We recommend you to the preparation material mentioned in this study guide to cover the entire Exin ISFS syllabus. Study4Exam offers 3 formats of Exin ISFS exam preparation material. Each format provides new practice questions in PDF format, web-based and desktop practice exams to get passing marks in the first attempt.

Exin ISFS Exam Overview :

Exam Name Information Security Foundation
Exam Code ISFS
Actual Exam Duration 60 minutes
Expected no. of Questions in Actual Exam 40
Official Information https://www.exin.com/certifications/information-security-foundation-based-iso-iec-27001-exam
See Expected Questions Exin ISFS Expected Questions in Actual Exam
Take Self-Assessment Use Exin ISFS Practice Test to Assess your preparation - Save Time and Reduce Chances of Failure

Exin ISFS Exam Topics :

Section Weight Objectives
1 Information and Security 15%  1.1 The Concept of Information
  The candidate can...
  1.1.1 explain the difference between data and information.
  1.1.2 explain what information management is.

 1.2 Value of Information
  The candidate can...
  1.2.1 describe the value of data and information for organizations.
  1.2.2 describe how the value of data and information can influence organizations.
  1.2.3 explain how applied information security concepts protect the value of data and information.

 1.3 Reliability Aspects
  The candidate can...
  1.3.1 name the reliability aspects of information.
  1.3.2 describe the reliability aspects of information.
2 Threats and Risks 15%  2.1 Threats and Risks
  The candidate can...
  2.1.1 explain the concepts threat, risk and risk analysis.  
  2.1.2 explain the relationship between a threat and a risk.
  2.1.3 explain various types of threats.
  2.1.4 describe various types of damage.
  2.1.5 describe various risk strategies.
3 Approach and Organization 17.5%  3.1 Security Policy and Security Organization
  The candidate can...
  3.1.1 outline the objectives and the content of a security policy.
  3.1.2 outline the objectives and the content of a security organization.
 3.2 Components
  The candidate can...
  3.2.1 explain the importance of a code of conduct.  
  3.2.2 explain the importance of ownership.
  3.2.3 name the most important roles in the security organization.
 3.3 Incident Management
  The candidate can....
  3.3.1 summarize how security incidents are reported and what information is required.
  3.3.2 give examples of security incidents.
  3.3.3 explain the consequences of not reporting security incidents.
  3.3.4 explain what an escalation entails (functionally and hierarchically).
  3.3.5 describe the effects of escalation within the organization.
  3.3.6 explain the incident cycle.
4 Measures 42.5%  4.1 Importance of Measures
  The candidate can...
  4.1.1 describe various ways in which security measures may be structured or arranged.  
  4.1.2 give examples for each type of security measure.
  4.1.3 explain the relationship between risks and security measures.
  4.1.4 explain the objective of the classification of information.
  4.1.5 describe the effect of classification.

 4.2 Physical Measures
  The candidate can...
  4.2.1 give examples of physical security measures.
  4.2.2 describe the risks involved with insufficient physical security measures.

 4.3 Technical Measures
  The candidate can...
  4.3.1 give examples of technical security measures.  
  4.3.2 describe the risks involved with insufficient technical security measures.
  4.3.3 understand the concepts cryptography, digital signature, and certificate.
  4.3.4 name various types of malware, phishing, and spam.
  4.3.5 describe the measures that can be used against malware, phishing, and spam.

 4.4 Organizational Measures
  The candidate can...
  4.4.1 give examples of organizational security measures.
  4.4.2 describe the dangers and risks involved with insufficient organizational security measures.
  4.4.3 describe access security measures such as the segregation of duties and the use of passwords.
  4.4.4 describe the principles of access management.
  4.4.5 describe the concepts identification, authentication, and authorization.
  4.4.6 explain the importance to an organization of a well set-up business continuity management.
  4.4.7 make clear the importance of conducting exercises.
5 Legislation and Regulations 10%  5.1 Legislation and Regulations
  The candidate can...
  5.1.1 explain why legislation and regulations are important for the reliability of information.
  5.1.2 give examples of legislation related to information security.
  5.1.3 give examples of regulations related to information security.
  5.1.4 indicate possible measures that may be taken to fulfill the requirements of legislation and regulations.

Updates in the Exin ISFS Exam Syllabus:

Exin ISFS exam questions and practice test are the best ways to get fully prepared. Study4exam's trusted preparation material consists of both practice questions and practice test. To pass the actual ITSM ISO IEC 20000 ISFS exam on the first attempt, you need to put in hard work on these Exin ISFS questions that provide updated information about the entire exam syllabus. Besides studying actual questions, you should take the Exin ISFS practice test for self-assessment and actual exam simulation. Revise actual exam questions and remove your mistakes with the Information Security Foundation ISFS exam practice test. Online and windows-based formats of the ISFS exam practice test are available for self-assessment.


ISFS Exam Details

Free ISFS Questions