Certificate in

Cyber Security Foundation

Offered in collaboration with ISEA, CERT-In/CSIRT-Fin, and C-DAC under the aegis of MeitY.

About the Course

Cyber security foundation is not a one-time event but a continuous process – it is not a project but a journey. Being aware of cyber security issues, challenges, methods to preserve cyber security is the first step and most important step in ensuring cyber security.

To address this important requirement of Cyber Security, NISM, jointly with CERT-In, CSIRT-Fin and C-DAC under the initiative of ISEA (Information Security Education and Awareness) by MeitY (Ministry of Electronics and Information Technology), Government of India is offering a self-paced eLearning certification course, which will focus on identifying the gaps in cyber security and develop a robust Cyber Security Framework based on the pillars – Identify, Build Mechanisms, Detect, Respond and Recover.

This course offers approx. 60 hours of learning through video lectures, presentation of case studies and text material for reference (in soft form); candidates who participate in this program will be issued a joint certificate by NISM, CERT-In, CSIRT-Fin, C-DAC once they clear a proctored test after learning the content using the self-paced eLearning material.

In addition to the basic conceptual knowledge about the cyber security pillars stated above, the course also dwells in detail about the cyber security advisory issued by SEBI from time to time. Learning these guidelines will help executives working in SEBI Regulated intermediaries and MIIs to learn “what” aspects and “how” aspects of cyber security.

Who should take this course?

This course is ideal for all executives working in any organisation that uses IT platforms for their transactions.

The course would add value to the professionals working in Banking, Stock Exchanges, Depositories, Clearing Corporations, Stock Brokers (Cash, Commodity, Currency, Derivatives) Mutual Funds and other intermediaries involved in Securities Markets, Fintech firms, and any other organization which heavily rely on IT infrastructure to deliver their services.

The course is also ideal for Management graduates in the field of finance to understand the future challenges of Cyber threats in fintech space.

Before registering for this course, candidates are required to have an understanding of the following:

  • Understanding of IT Technologies
  • Understanding of Operating System
  • Software Development Life Cycle
  • Network Concepts
  • Internet basics
  • Awareness on Security
Fee Structure

In order to encourage all targeted persons to take this test, the fee for this program is kept at very affordable price of Rs.2,500/- plus GST per person.

Learning Mode

The Course is designed in an e-Learning mode and the working executives can complete the same at their own pace.


The Candidate needs to appear for a remote proctored examination after the completion of the course and successful candidates will receive a joint certificate having NISM, C-DAC, ISEA, CSIRT-Fin and CERT-In.

Course Content

Module I – Cyber Security basics for IT/ICT environment
  • Chapter 1: Introduction to Information Security
  • Chapter 2: Need of Security
  • Chapter 3: Legal and Ethics of Information Security
  • Chapter 4: Introduction to Information Security Controls, Models, Standards, Practices and Management Goals
  • Chapter 5: Introduction to Security Systems Development Life Cycle
Module II – Information Security Policies, Procedures and Guidelines
  • Chapter 6: Information Security Policies, Procedures and Guidelines for Technical, Administrative and Management Staff
  • Chapter 7: Cyber Security Architecture and Respective Principles
  • Chapter 8: Understanding about Risks, Threats and Vulnerabilities towards Organization
  • Chapter 9: Describe Risk Management Processes and Practices
  • Chapter 10: Identify the Key Components of Cyber Security Network Architecture
  • Chapter 11: Defining and implementing Policies, Procedures, Guidelines
  • Chapter 12: Importance of Cyber Hygiene Program

Module III – System and Network Security Concepts
  • Chapter 13: Understanding about security of networks, systems, applications and data
  • Chapter 14: Understanding Hardware and Software are Used for Organization for Networking and Cyber Security
  • Chapter 15: Understanding about Various Security Tools and Hardening Techniques of Systems and Network Devices

Module IV – Information Security Audit and Assessments

  • Chapter 16: Importance of Auditing and Assessing Organization Systems, Networks and Users
  • Chapter 17: Distinguish / Understanding about System and Application Security Threats and Vulnerabilities
  • Chapter 18: Define types of incidents including Categories, Responses and Timelines for Response
  • Chapter 19: New and Emerging IT and Information Security (IS) Technologies

Frequently Asked Questions

What does the course offer?

The course offers close to 60 hrs of learning in Cyber Security Management for the Financial Sector.

How much is the course fee?

Rs.2500/- plus taxes.

What is the time period for accessing the course?

Access to course content will be valid for a period of 1 year from the date of registration. No extension will be provided.

Is the course online only?

Yes, the course is in self-paced eLearning mode.

How can I access the online learning modules?

Once registered, the user id and password will be shared with the candidate. The online course can be accessed using the credentials.

Can I access the modules on my mobile/ tablet?

Yes, the course can be accessed on mobile/ tablet.

Can I download the modules?

No, the course modules are only accessible for reading/ watching/ listening.

How many times can I access the modules?

The modules can be accessed as many times within the validity period.

What is the exam schedule?

The exams are scheduled every quarter (March, June, September, December). The dates for the exam will be declared at least 15 days in advance. Those wishing to take the exam have to register for it. The minimum study period for the course is 45 days – which means the gap between course registration and exam has to be 45 days. All 4 modules must be completed before registering for the exam.

How will the exam be conducted?

The exam will be conducted online in proctored mode using your laptop’s webcam and microphone.

Is bulk registration possible?

Yes. For bulk registration, write to elearning@nism.ac.in

What if a candidate does not clear the exam?

The candidate will have to re-appear for the exam by paying exam fees of Rs.1000/-plus taxes.

How many re-attempts are allowed?

Only one re-attempt is allowed. In all candidates will have two attempts to clear the examination.

What is the passing percentage?

A minimum of 60% marks is required to pass.

Is there negative marking for wrong answers?

There is no negative marking.

What will be the exam duration?

Exam duration is 120 minutes.

What is the cancellation/ refund policy?

Cancellation/ refund is not permitted.

Is there an age limit?

No. There is no age limit.

How can I get help with technical issues while accessing the modules online?

For technical help you may call eLearning helpdesk at 02192 6684 92/93 (Monday to Friday 9:30 AM till 5:30 PM) or email at elearning@nism.ac.in

How will the certificate be awarded to candidates?

A Joint certificate, signed by NISM, CERT-In, and C-DAC will be sent by email to the registered email ID of the candidates.

About the Institutions


The National Institute of Securities Markets (NISM) is an educational initiative of the Securities and Exchange Board of India (SEBI). A comprehensive understanding of activities of NISM can be formed by visiting ww.nism.ac.in. NISM carries out a wide range of capacity building activities at various levels aimed at enhancing the quality standards of and increasing the participation in the securities markets.


The Indian Computer Emergency Response Team (CERT -In) under Ministry of Electronics and Information Technology of the Government of India is the nodal agency for incident response. It performs various functions in the area of cyber security ranging from emergency measures for handling cyber security incidents to response coordination, analysis, alerts, podcasts and advisories.


Information Security Education and Awareness (ISEA) is a multilingual web portal created by Govt of India under the aegis of Meity (Ministry of Electronics and Information Technology). The portal hosts multiple Cyber Security awareness programs for children, students, government official, police, system administration and women.


CERT-In is providing the requisite leadership for the CSIRT-Fin (Computer Security Incident Response Team-Finance Sector) operations under its umbrella. CSIRT-Fin provides response, containment and mitigation of cyber security incidents reported from the financial sector.


Centre for Development of Advanced Computing (C-DAC) is the premier R&D organization of the Ministry of Electronics and Information Technology (MeitY) for carrying out R&D in IT, Electronics and associated areas. As an institution for high-end Research and Development (R&D), C-DAC has been at the forefront of the Information Technology (IT) revolution, constantly building capacities in emerging/enabling technologies and innovating and leveraging its expertise, caliber, skill sets to develop and deploy IT products and solutions for different sectors of the economy.


The Ministry of Electronics and Information Technology (MeitY) aims to promote e-Governance for empowering citizens, promoting the inclusive and sustainable growth of the Electronics, IT & ITeS industries, enhancing India’s role in Internet Governance, adopting a multipronged approach that includes development of human resources, promoting R&D and innovation, enhancing efficiency through digital services and ensuring a secure cyber space. It envisions e-Development of India as the engine for transition into a developed nation and an empowered society.

Scroll to Top