Post Graduate Diploma/Executive Diploma in Information Security

This course in Information Security is a specialized, industry-relevant programme designed to prepare professionals and aspiring candidates with the practical knowledge and skills required to secure information assets, implement effective information security controls, and manage regulatory compliance in alignment with global standards like ISO/IEC 27001. In an era where organizations face unprecedented challenges from cyberattacks, data breaches, and evolving regulatory landscapes, the need for certified information security professionals is more urgent than ever.

This diploma course offers a structured pathway to develop your expertise in information security management systems (ISMS), risk assessment, audit procedures, data protection, and regulatory compliance. With an emphasis on real-world application, hands-on labs, and audit simulations, the course equips participants to contribute to enterprise-wide security initiatives and prepare for industry-recognized certifications such as ISO/IEC 27001 Lead Auditor or CISSP. Whether you are starting your journey in information security or seeking to enhance your career, this programme provides a strong foundation for future success.

Programme Structure

Module 1: Fundamentals of Information Security

• Definition, scope, and need for Information Security
• Information security principles: Confidentiality, Integrity, Availability (CIA triad)
• Key terms: asset, vulnerability, threat, control
• Information security roles, responsibilities, and governance structure

Module 2: Risk Management and Asset Protection

• Risk identification, assessment, treatment and mitigation
• Information asset classification and valuation
• Vulnerabilities, threats, and risk analysis methodologies
• Risk assessment tools -ISO/IEC 27005 overview

Module 3: Controls and Implementation Standards

• Structure and clauses of ISO/IEC 27001:2022
• Control objectives vs. control implementation
• Statement of Applicability (SoA) and control justification
• Policy development and security governance

Module 4: Security Controls, Access Management & Cryptography

• Types of Security Control: Administrative, physical, and technical controls
• Identity and Access Management (IAM) principles
• Multi-factor authentication and role-based access control (RBAC)
• Encryption fundamentals: symmetric, asymmetric, hashing 

Module 5: Legal, Policies and Compliance

• Data protection laws and regulatory frameworks
• Roles and responsibilities of information security personnel
• Intellectual property rights and cybersecurity ethics
• Internal compliance monitoring

Module 6: Incident Management and Business continuity

• Security incident detection and response process
• Roles and responsibilities during incidents
• Security Information and Event Management (SIEM) tools
• Business continuity and disaster recovery integration

Module 7: Auditing and Internal Control Evaluation

• Audit fundamentals: ISO 19011 guidelines
• Internal vs external audits; first, second, third-party audits
• Audit planning, evidence collection, and reporting
• Nonconformity classification and corrective actions

Module 8: Tools, Technologies, and Threat Intelligence

• Overview of tools for vulnerability scanning, encryption, and endpoint protection
• Common tools and technologies (firewalls, IDS/IPS, antivirus)
• Threat intelligence lifecycle
• Malware, ransomware, phishing and social engineering defence.

Module 9: Sustainable Information Security

• Understanding the concept and importance of sustainability in information security.
• Designing resilient, energy-efficient, and resource-conscious security systems.
• Implementing sustainable procurement, asset lifecycle management.
• Integrating environmental responsibility with compliance, risk management, and ISMS practices.
  

Module 10: Industry Case Studies

• Real-world case studies on ISMS implementation and audit

Module 11: Capstone Project

Eligibility

Graduates in any discipline are eligible for our Post Graduate Diploma, Executive Diploma and Professional Certification Programmes.

Programme Duration

The minimum duration to complete the PG diploma programme is 12 months and maximum is 24 months. The minimum duration to complete the executive diploma programme is 6 months and maximum is 12 months.

Programme Mode

Registrations are currently open for regular and Online Live Classes/Part-time both modes.

Programme Deliverables

A comprehensive study material for all the modules in hard copies ensuring the needs of the audience. The accompanying training material is appropriately aligned with the current Industry’s expectations.

• Interactive or online live sessions on all key areas of the programme giving all flexibility to the participants
• Online Live Classes/Part-time for all the modules will be conducted on the weekends. Moreover, a doubt clearing session will also be scheduled before the examination
• All the efforts are made by IGMPI faculty members to make the entire programme modules easily understandable
• Assessment and evaluation for all the programme modules in order to enhance the levels of competencies and skills of the participants leading towards the objective of application in the job
• At the end of each programme modules, the trainers shall obtain feedback from the participants using specially designed questionnaires
• All learning and training delivery initiatives shall be conducted in English

Examination and Certification

IGMPI follows a credit system based on all learning activities involved in studying the certificate programs. Each of your module is equal to 4 credits. To successfully complete the programme, you will have to earn all the credits assigned to the program.

All the participants are obliged to timely submit completed assessment assignments (during the programme, usually after every module) and appear for an online proctored exam at the end of the programme. After successful completion, the participants will be awarded Post Graduate Diploma/Executive Diploma in Information Security by Centre for Environmental Health and Safety, IGMPI. For all the above-mentioned modules elaborate programme material, self-assessment assignments and project work details would be provided by the Institute from time to time. Details get updated on the webpage as well.

Placement Assistance & Corporate Relations

The Institute has partnered with many organizations for providing with placement assistance to its participants. Besides, it has a robust placement cell comprised of senior level Human Resources professionals and Talent Acquisition experts which maintains close links with business and industry. This cell is continuously engaged in promoting the employability of our participants and encouraging the concerned Human Resource department and Hiring Managers to recruit/hire our participants for their vacant positions. The efforts of our placement cell also include helping with professional resume writing and interview skills.

In recent months, the Institute has witnessed more and more participation from professionals working with global think tanks. The IGMPI ‘s Corporate Resource Division actively recommends our students and training participants for various job requirements and specialized roles to Human Resource, Talent Acquisition as well as the heads of various departments in the industrial sector on a regular basis.

Future Career Prospects

Professionals after completing Post Graduate Diploma/Executive Diploma in Information Security are exceptionally well-positioned to enter high-demand roles across a wide range of industries, including information technology, banking and financial services (BFSI), healthcare, energy, telecommunications, and government sectors. The growing reliance on digital infrastructure, combined with increasingly stringent regulatory requirements and the ever-evolving threat landscape, has created an urgent need for trained information security professionals. This certification equips learners with practical, job-ready skills to pursue roles such as Information Security Officer or Analyst, ISO/IEC 27001 Auditor or Lead Auditor, Compliance and Risk Analyst, Governance, Risk, and Compliance (GRC) Consultant, IT Security Manager, and Security Policy and Awareness Lead. Leading firms such as KPMG, PwC, EY, Deloitte, TCS, Accenture, Wipro, IBM, and Infosys—as well as global multinationals and public sector bodies—are consistently seeking individuals with demonstrated expertise in ISMS implementation and audit. As the demand for data privacy, compliance, and security assurance intensifies worldwide, this certification serves as a strong foundation for a secure, respected, and future-proof career in the dynamic field of information security.

View Prospectus

Apply Online

Programme Fee Details

Last date for submitting completed Application Form is 28^th Aug 2025.

For further enquiries, call or write to us on:
18001031071 (Toll Free -9:00 am to 5:30 pm IST-except on Central Government holidays)/ info@igmpi.ac.in