C)SP - Certified Security Principles




The IT world never stands still! Therefore, neither can IT security.


It does not matter if we are talking about the implementation of IoT devices or cloud services, security is at the forefront of all of them.


According to a recent study, the top source of security incidents within a company are the current employees! We do not want you to be one of them!


This course is going to prepare you for security across the entire environment including understanding risk management, identity and access control, network and data security.


This is just a short list of everything that we cover within this course, which will include new technologies like IoT and cloud services.


This course is intended to prepare you to be a benefit to any company that is attempting to improve its security posture! With this certification, you will be marketable to any company, anywhere in the globe!



  • Fully understand Security from a real-world viewpoint
  • Implement security controls on systems within an environment, network, data, servers, host, mobile, cloud
  • Understand risk management and how each individual or department can be part of reducing risk
  • Understand cryptography at the basic level to ensure a company is implementing this correctly
  • Understand how to impose controls for mobile and IoT devices
  • Prepare for the CSP or Security+ certification
  • Become part of the solution for improving the security posture of your company



  • Individual Course Access
  • Course Video
  • Physical, Printed Course book
  • Exam Prep Guide
  • Exam Simulator
  • Exam

C)SP - Certified Security Principles - Electronic Course Kit & Exam

  • Module 1 – Introduction to IT Security

    • Understanding Security
    • Responsibilities
    • Building a Security Program
    • CIA Triad
    • Governance, Risk, Compliance
    • State of Security Today

    Module 2 – Risk Management

    • Risk Management
    • Risk Assessment
    • Types of Risk, Threats and Vulnerabilities
    • Mitigating Attacks
    • Discovering Vulnerabilities and Threats
    • Responding to Risk

    Module 3 – Understanding of Cryptography

    • Understanding Cryptography
    • Symmetric Encryption
    • Asymmetric Encryption
    • Hashing
    • PKI
    • Cryptography in Use

    Module 4 – Understanding Identity and Access Management

    • Identity Management
    • Authentication Techniques
    • Single Sign-on
    • Access Control Monitoring

    Module 5 – Managing Data Security

    • Virtualization Principles
    • Key Components Mapped to Cloud Layer
    • Key Security Concerns
    • Other Technologies Used in the Cloud
    • The Layers
    • Relevant CCM Controls

    Module 6 – Data Security

    • Different Types of Storage
    • Encryption Options
    • Data Management

    Module 7 – Managing Server/Host Security

    • The Operating Systems
    • Hardening the OS
    • Physical security
    • Virtualization and Cloud Technologies

    Module 8 – Application Security for Non-Developers

    • Application Security Principle
    • Software Development Life Cycle
    • OWASP Top 10
    • Hardening Web Applications
    • Patch/Update/Configuration Management

    Module 9 – Understanding Mobile Device Security (IoT)

    • What Devices are we talking about?
    • What is the risk?
    • Hardening Mobile/IoT Devices
    • Corporate Management

    Module 10 – Managing Day to Day Security

    • Company Responsibilities
    • Product Management
    • Business Continuity Basics
    • Incident Response
    • Why Train?

    Module 11 – Understating Compliance and Auditing

    • Benefits of Compliance
    • Assurance Frameworks
    • What is Auditing

©2019 by Oddfellows Services Ltd t/a OFS.

Registered in England Number 11987380

Registered Office : International House, 24 Holborn Viaduct, London, EC1A 2BN, London, United Kingdom.

Email : operations@ofsec.co.uk

Telephone : +44 (0) 203 787 4785