CBP® Foundation
About the best practice
| IP owner: | CBP® |
| Accreditation institute: | Van Haren Certify |
| Examination institute: | certN |
The “Baseline Informatiebeveiliging Overheid” (BIO) is the obligatory framework for information security within all levels of the Dutch government (Central, local, provincial, and water boards). Previously, each level of the Dutch government had its baseline. Now, with joint effort, there is one BIO for the entire government.
Certification definition
The CBP® Foundation certification is part of the CBP® certification program. Candidates who have achieved their CBP® Foundation certification have proven that they understand and can apply the following components of the BIO:
- Understanding the goals and scope of the BIO
- Understanding and determining the Baseline Security Norms (BSNs) for a process/organization
- Understanding the relationship between BSNs and risk management
- Knowledge of the key principles of risk management
- Understanding the key roles in information security and their responsibilities
- Understanding the requirements for accountability in information security
- Understanding what an Information Security Management System (ISMS) is according to ISO27001
- Understanding and interpreting the relevant requirements for their organization’s ISMS from ISO27001
- Having a basic understanding of different security measures from the BIO and how to apply them
Certification requirements
Candidates can become certified by passing the Certified BIO Professional® Foundation certification exam.
Vouchers for the certification exam are available through accredited trainers and Van Haren Group.
Certificate renewal
The CBP® Foundation certificate is valid for two years.
Exam format
The general exam regulations apply to this exam.| Attempts per voucher: | 1 |
| Number of questions: | 60 |
| Passing score: | 70% |
| Time: | 60 minutes |
| Open-book: | No |
| Language: | Dutch |
| Invigilation: | None |
| Question type: | Multiple choice |
Exam Syllabus
The following table is an overview of the topics examined in the certification exam.| #questions | Level(s) of Cognition | Category | ||
|---|---|---|---|---|
| 1 | 2 | 3 | ||
| 5 | ✓ | ✓ | Doel en toepassingsgebied | |
| 10 | ✓ | ✓ | Informatiebeveiliging | |
| 15 | ✓ | ✓ | ISMS | |
| 10 | ✓ | ✓ | Risicomanagement en BBN’s | |
| 5 | ✓ | ✓ | Governance | |
| 5 | ✓ | ✓ | Verantwoording | |
| 5 | ✓ | ✓ | Controls en maatregelen | |
| 5 | ✓ | ✓ | Leveranciers en derde partijen | |
More information about the levels of cognition
- Level 1 - Knowledge: This level requires candidates to recall specific information or facts. They should demonstrate the ability to remember and recognize details, terms, or concepts from their learning materials.
- Level 2 - Comprehension: At this level, candidates are expected to show their understanding of the acquired information. They should be able to interpret, explain, and summarize. Candidates must go beyond mere memorization and demonstrate that they can grasp the meaning and implications of the information they have learned.
- Level 3 - Application: The focus at this level is on candidates’ ability to apply their acquired knowledge in practical situations. They should be able to use what they have learned to solve problems, apply principles, or implement strategies in real-world scenarios.
- Level 4 - Analysis: Analysis involves candidates breaking down complex concepts into smaller parts and comprehending the relationships between them. Candidates must display the ability to analyze information, identify components, and understand the underlying connections between them.
- Level 5 - Synthesis: At this level, candidates are expected to exhibit the ability to create something new by combining different ideas, concepts, or elements. Candidates must demonstrate their capacity to generate hypotheses, design experiments, or develop original solutions to problems. Synthesis involves creativity and the integration of different elements to form a novel whole.
- Level 6 - Evaluation: This level requires candidates to use judgments or assessments based on criteria and evidence. Candidates must critically analyze information, compare and contrast different perspectives, and make informed decisions. They should demonstrate the ability to evaluate the quality, validity, and reliability of information, arguments, or solutions.
Reference Material
The reference material for the Certified BIO Professional Foundation exam is:
Baseline Informatiebeveiliging Overheid - Courseware
- Authors: Boudewijn Cremers and Ruben Zeegers
- ISBN: 9789401806831
- Publisher: Van Haren Publishing
Trainer accreditation
Van Haren Learning Solutions organizes the trainer accreditation for this certification program. More information on the accreditation process can be found on their website.