Gain Foundational knowledge of Cybersecurity with ISACA® Cybersecurity Fundamentals.

Get to know Cybersecurity’s key concepts and roles. Created by the industry’s leading minds, ISACA® Cybersecurity Fundamentals is the only one-stop global resource for everything cybersecurity. Cybersecurity Fundamentals is designed to help fortify and advance the industry by educating, training, and certifying a stronger, more informed workforce—from recent college graduates to IT professionals.

Cybersecurity is not optional. It’s Operational. Don’t wait for a breach. Build the skills. Earn the badge. Lead the defense. Explore our Top Cybersecurity Skills for Malaysia’s Digital Future campaign.

Be the reason your organization survives the next cyberattack.

Overview

Learn, train and grow with Cybersecurity Fundamentals.

As the cyber landscape continues to evolve rapidly, it is not enough to rely solely on knowledge and theory. Cybersecurity Fundamentals training is a performance-based testament to your real-life skills and experience and proclaims that your commitment, tenacity, and abilities exceed expectations.

This course is a comprehensive understanding of Cybersecurity’s key concepts, the impacts on your business, and the integral role of a cybersecurity professional in protecting enterprise data and infrastructure.

Cybersecurity Fundamentals offers a certificate in the introductory concepts that frame and define the standards, guidelines, and practices of the industry. The certificate and related training are an ideal way to get started on a career in Cybersecurity. These skills are in high demand as threats continue to plague enterprises around the world. This knowledge-based certificate can enable you to:

  • Demonstrate your understanding of the principles that frame and define Cybersecurity and the integral role of cybersecurity professionals in protecting enterprise data.
  • Add a credential to your resume/CV that will distinguish you from other candidates for advancement or a new job.
  • Stay ahead of the curve on your current career path or start your new cybersecurity career strong.

The purpose of the ISACA® Cybersecurity Fundamentals qualification is to measure whether a candidate has sufficient knowledge and understanding of the key concept principles by defining Cybersecurity and the integral role of cybersecurity professionals in protecting cyber assets in the modern world.

Learn more about Malaysia’s Top Cybersecurity Strategies and Trends in 2024.

Here are five insightful blog posts about ISACA and its cybersecurity certifications. Each one focuses on a different aspect of how ISACA’s training can enhance your cybersecurity career, take a read: 

→ Top ISACA Cybersecurity Certifications 2024 | Career Advancement 

 Incorporating ISACA Certifications into Corporate Training Program 

 ISACA’s CISM vs CRISC: Which Certification Is Right for You? 

 Your Ultimate Guide to the ISACA CISM Certification 

 Become a leader with ISACA: Cybersecurity Leadership 

Skills Covered

The Cybersecurity Fundamentals training provides a dynamic learning experience where you’ll learn to:

  • Explain cybersecurity concepts.
  • Define enterprise cybersecurity roles and responsibilities.
  • Identify the main components of telecommunications technologies.
  • Identify differences between information technology systems and specialized systems.
  • Explain defense in depth.
  • Describe common causes of enterprise service disruption.
  • Identify the key components of security architecture.
  • Describe risk management processes and practices.
  • Appraise cybersecurity incidents to apply appropriate responses.
  • Recognize system life cycle management principles, including software security and usability.
  • Analyze threats and risks within the context of the cybersecurity architecture.
  • Evaluate decision-making outcomes of cybersecurity scenarios.

Prerequisites

There are no prerequisites required to attend this course.

Target Audience

The Cybersecurity Fundamentals Certificate is intended for a wide-range of individuals, including:

  • Those new to IT, students, recent graduates and career changers.
  • Audit, risk, security and governance professionals looking to gain base-line IT knowledge and skills.
  • Current IT Professionals looking to reskill or upskill to broaden their IT knowledge and skills or keep up-to-date.

Course Curriculum

Module 1: Introduction to Cybersecurity
Learning Objectives

  • Identify and explain cybersecurity concepts.
  • Identify main components of telecommunications technologies.
  • Differentiate types of security.

Topics

  • Overview
  • What is Security?
  • Types of Security

Module 2: Cybersecurity and Privacy
Learning Objectives

  • Identify differences between information technology systems and specialized systems.
  • Discuss enterprise cybersecurity roles and responsibilities.
  • Define governance, risk management and compliance (GRC).
  • Distinguish between privacy and security.

Topics

  • Specialized Systems
  • Roles and Responsibilities
  • Governance, Risk Management and Compliance
  • Cybersecurity Governance
  • Privacy
  • Privacy vs. Security

Module 3: Service Disruption and Cybersecurity
Learning Objectives

  • Identify and discuss common causes of enterprise service disruption.
  • Explain business continuity planning.
  • Describe the relationship between business continuity planning (BCP) and disaster recovery (DR).

Topics

  • Resilience
  • Business Continuity and Disaster Recovery
  • Business Impact Analysis
  • Recovery Concepts

Module 4: Threat Landscape
Learning Objectives

  • Identify and discuss common causes of enterprise service disruption.
  • Explain business continuity planning.
  • Describe the relationship between business continuity planning (BCP) and disaster recovery (DR).

Topics

  • Specialized Systems
  • Roles and Responsibilities
  • Governance, Risk Management and Compliance
  • Cybersecurity Governance
  • Privacy
  • Privacy vs. Security

Module 5: Cyberattacks
Learning Objectives

  • Identify and explain cybersecurity concepts.
  • Identify main components of telecommunications technologies.
  • Differentiate types of security.

Topics

  • Attack Attributes
  • Attack Process
  • Malware and Attacks

Module 6: Risk Mitigation
Learning Objectives

  • Identify differences between information technology systems and specialized systems.
  • Discuss enterprise cybersecurity roles and responsibilities.
  • Define governance, risk management and compliance (GRC).
  • Distinguish between privacy and security

Topics

  • Risk Assessment
  • Supply Chain Considerations
  • Risk Management Life Cycle
  • Managing Risk
  • Using the Results of Risk Assessments

Module 7: Securing Assets
Learning Objectives

  • Identify differences between information technology systems and specialized systems.
  • Discuss enterprise cybersecurity roles and responsibilities.
  • Define governance, risk management and compliance (GRC).
  • Distinguish between privacy and security.

Topics

  • Risk Identification, Standards, Frameworks and Industry Guidance
  • Endpoint Security
  • System Hardening
  • Logging, Monitoring and Detection
  • Data Security

Module 8: Security Architecture
Learning Objectives

  • Identify components of a security architecture.
  • Compare security models.

Topics

  • Architecture, Models, and Frameworks

Module 9: Security Controls
Learning Objectives

  • Explain defense in depth.
  • Compare traditional security and assume-breach philosophies.
  • Identify three main types of security controls.
  • Distinguish types of logical access controls.
  • Identify and explain types of administrative controls.
  • Explain each component of authentication, authorization and accounting (AAA).

Topics

  • Security Controls

Module 10: Network Security
Learning Objectives

  • Explain methods to achieve isolation and segmentation.
  • Identify network security hardware.
  • Distinguish types of firewalls.

Topics

  • Network Security

Module 11: Application and Cloud Security
Learning Objectives

  • Recognize system life cycle management principles, including software security and usability.
  • Identify and analyze cloud service models.
  • Discuss risk associated with cloud computing.

Topics

  • Application Security
  • Cloud Security

Module 12: Software Management and Encryption
Learning Objectives

  • Identify elements of cryptographic systems.
  • Identify and discuss key systems.

Topics

  • Configuration Management
  • Change Management
  • Patch Management
  • Encryption Fundamentals, Techniques and Applications

Module 13: Introducing Security Operations
Learning Objectives

  • Discuss security operations center (SOC) deployment models.
  • Identify common SOC functions, roles and responsibilities.
  • Identify vulnerability assessment tools, including open source tools and their capabilities.

Topics

  • Security Operations

Module 14: Testing Technologies and Security Tools
Learning Objectives

  • Differentiate vulnerability scanning and penetration testing.
  • Discuss common phases of penetration testing.
  • Identify and use common cybersecurity tools.
  • Discuss components that aid cybersecurity monitoring and detection.

Topics

  • Tool and Technologies (Monitoring, Detection, Correlation)
  • Forensics

Module 15: Handling Security Incidents
Learning Objectives

  • Understand incident response and handling methodologies.
  • Distinguish between an event and an incident.
  • Discuss the elements of an incident response plan (IRP).

Topics

  • Incident Handling

Practice Labs

  • SQL Injection
  • Windows Event Monitoring & Defender
  • Threat Removal
  • Threat Detection
  • File Permissions on Windows and Linux
  • Forensics: File Recovery, Baselining with Lynis
  • Scanning Ports and Utilizing SSH
  • Windows and Linux OS Firewalls

Dates & Locations

Let’s make it work for you

Can’t find a date that fits? Need to train your whole team? Looking for a discount?
Speak to one of our learning experts today.

x Clear all selections

July 15, 2026 - July 17, 2026

Location: Kuala Lumpur
Modal: ILT
Availability: TBC
Exam:
Included
RM 5000 RM 4500
PROMO

July 15, 2026 - July 17, 2026

Location: Online
Modal: VILT
Availability: TBC
Exam:
Included
RM 5000 RM 4500
PROMO

October 7, 2026 - October 9, 2026

Location: Kuala Lumpur
Modal: ILT
Availability: TBC
Exam:
Included
RM 5000 RM 4500
PROMO

October 7, 2026 - October 9, 2026

Location: Online
Modal: VILT
Availability: TBC
Exam:
Included
RM 5000 RM 4500
PROMO
Trainocate exam and cert

Exam & Certification

The Cybersecurity Fundamentals Certificate exam is an online, closed-book, remotely-proctored exam. It covers:

  • 18% of Threat Landscape.
  • 20% of Security Operations & Response.
  • 27% of Information Security Fundamentals.
  • 35% of Securing Assets.

It includes 36 multiple-choice questions and 12 performance-based questions, and the passing score is 65%. You will have two hours to complete the exam. Simply schedule the time and date that works for you.

Training & Certification Guide

CCOA: Certified Cybersecurity Operations Analyst

Designed for early career professionals who want to demonstrate that they have the technical expertise to evaluate threats, identify vulnerabilities, and recommend countermeasures to prevent cybersecurity incidents.

CISA: Certified Information Systems Auditor

CISA is offered by ISACA and is designed for professionals who audit, control, monitor, and assess an organization’s information technology and business systems. It validates your expertise in identifying vulnerabilities, reporting on compliance, and instituting controls.

CRISC: Certified in Risk and Information Systems Control

CRISC (Certified in Risk and Information Systems Control) by ISACA validates your ability to identify, evaluate, and manage IT risks and implement effective control solutions. It’s designed for professionals who bridge the gap between business risk and IT.

Certified Information Security Manager

The CISM certification by ISACA brings credibility to IT teams and ensures alignment between the organization’s information security program and its broader goals and objectives. CISM elevates the perception of the IT security team, proving to the business side of the organization that the IT team has the management-level skills to communicate vulnerabilities and solutions from a business standpoint and balance priorities effectively. CISM provides instant recognition and credibility with external regulators, auditors and clients.

Frequently Asked Questions

Audit, risk, security and governance professionals, as well as those new to IT looking to
gain baseline IT knowledge and skills.

Cybersecurity Fundamentals helps you develop knowledge and skills in the critical
areas of information security and cybersecurity—both physical and logical—including
controls and operations, risk assessments and threat analysis and prevention.

The global cybersecurity market is projected to reach $403 billion; that’s with a
compound annual growth rate of 12.5% between 2020 and 2027.

Speak to a Training Consultant

All courses are HRD Claimable.
Get in touch with our team via the form or WhatsApp us on +6011-5119 6631

Preferred mode of training
Checkboxes