Cyber Security & ISMS Management Bootcamp

Learn the fundamental principles, frameworks, and tools of information security management and develop practical skills to establish, implement, and further develop an ISMS in accordance with ISO 27001—including modern topics such as cloud security, AI, business continuity management (BCM), and governance, risk, and compliance (GRC).

20 weeks | Full-time | Remote | German

No money? No problem. Get 100% financing with the Agentur für Arbeit

Get started

Lerne die Grundlagen des Informationssicherheitsmanagements und entwickle praxisnahe Skills, um ein ISMS nach ISO 27001 aufzubauen und weiterzuentwickeln – inklusive Cloud-Sicherheit, KI, BCM sowie Governance, Risk & Compliance.

After completing this program, you’ll be fully qualified for a role at the intersection of IT, security, and compliance. You’ll learn how to strategically assess modern ICT and cloud infrastructures (Course 1) and protect them against current cyber threats using technical expertise (Course 2). Your core strength lies in building and managing a certification-ready Information Security Management System (ISMS) in accordance with ISO 27001 and BSI IT-Grundschutz (Course 4), while ensuring compliance with strict regulatory and data protection requirements such as GDPR and BCM (Course 3).

Core competency: Designing, implementing, and auditing digital resilience

You combine technical defense mechanisms such as firewalls, cryptography, and cloud security with strategic management frameworks. You’re able to assess risks holistically – from technical vulnerabilities (Course 2) to legal and organizational consequences in critical situations (Course 3). You take responsibility for information security, audit processes, and continuously improve them. This combination makes you an ideal fit for roles such as Information Security Officer (ISO), IT Compliance Manager, or Business Continuity Manager, helping organizations maintain digital sovereignty and strengthen stakeholder trust.

For this profile, you need above all a strong interest in technology, IT infrastructures, and legal frameworks. In-depth IT knowledge is not necessary—all relevant basics of IT and the cloud will be taught during training.

However, it is important to have an analytical and structured way of thinking in order to set up management systems in a meaningful way and systematically assess risks. You should also be prepared to continuously deal with new threat scenarios (e.g., AI security) and changing legal requirements (e.g., NIS2) in order to strengthen the resilience of organizations in the long term.

Course Overview

What you'll learn at our Cyber Security & ISMS Management Bootcamp

ICT Fundamentals – Hardware, Operating Systems, and Networks

You’ll learn the fundamentals of information and communication technology (ICT). This includes modern end devices, their structure and functionality, operating systems, application software, folder and file structures, as well as the basics of networks and cloud environments.ICT Fundamentals – Hardware, Operating Systems, and Networks

Digital Communication, Collaboration & Browser Skills

You’ll learn how to use digital communication and collaboration tools securely and in compliance with data protection requirements. Topics include email communication, calendar management, browser functionality, search strategies, cookies, data protection principles, and audience-focused digital communication.

IT Security Fundamentals and Awareness

You’ll identify common threats such as malware, phishing, and unauthorized access, and apply basic security measures like strong passwords, multi-factor authentication, updates, and antivirus solutions. You’ll also learn how to securely use cloud, email, and web services.

Networks, Topologies, and Tools

You’ll understand network topologies such as star, bus, ring, and mesh, as well as key network components like routers, switches, and access points. Using tools like ping, traceroute, and ipconfig/ifconfig, you’ll identify common issues and interpret routing and name resolution problems.

Cryptography, Firewalls, and Encryption

You’ll analyze firewall rules, interpret log entries, and map encryption technologies such as TLS, VPNs, and disk encryption to real-world use cases.

Cloud and AI Security

You’ll differentiate between on-premise and cloud-based data storage, understand cloud deployment models and role-based access concepts, and assess risks in infrastructure and AI environments. You’ll apply best practices for identity and access management as well as security measures for AI systems.

Incident Response and Logging

You’ll learn the phases of incident response – detection, analysis, containment, eradication, and recovery. You’ll interpret logs, SIEM data, and alerts, and apply vulnerability management to real-world scenarios. Awareness measures are placed in the appropriate security context.

Governance, Data Protection, and Compliance

You’ll understand regulatory requirements, governance structures, and role models. You’ll conduct risk assessments, evaluate data protection and compliance requirements, and apply regulations such as GDPR, NIS2, IT Security Act 2.0, and the EU AI Act in practice.

Business Continuity Management (BCM) & Emergency Planning

You’ll create Business Impact Analyses (BIAs), derive RTO and RPO values, and develop emergency and recovery plans. You’ll understand emergency response organizations (BAO), conduct BCM tests, and document audit-relevant evidence.

ISMS Fundamentals and Systematic Implementation

You’ll learn ISO 27001/27002 and BSI IT-Grundschutz, define protection requirements, model organizational structures, create control catalogs and policies, and implement Annex A requirements as well as the Statement of Applicability (SoA).

Capstone Project & Audit Documentatio

In the capstone project, you’ll apply everything you’ve learned: defining scope, identifying stakeholders, conducting full risk analyses and BIAs, documenting Annex A controls, and creating ISMS policies. You’ll consolidate all results into a complete, audit-ready ISMS documentation set.

Curriculum at a glance

The most up-to-date, effective tech stack on the market:

ICT Fundamentals – Hardware, Operating Systems, and Networks

Digital Communication, Collaboration & Browser Skills

IT Security Fundamentals and Awareness

You’ll identify common threats such as malware, phishing, and unauthorized access, and apply basic protection measures like strong passwords, multi-factor authentication, patching/updates, and antivirus solutions. You’ll also learn safe usage of cloud, email, and web services.

Networks, Topologies, and Tools

You’ll understand network topologies (star, bus, ring, mesh), key network components (routers, switches, access points), and basic protocols. You’ll use tools like ping, traceroute, and ipconfig/ifconfig to troubleshoot issues and interpret routing and name-resolution problems.

Cryptography, Firewalls, and Encryption

You’ll analyze firewall rules, interpret logging entries, and connect encryption concepts (TLS, VPNs, disk encryption) to real-world use cases.

Cloud and AI Security

You’ll distinguish on-premise vs. cloud data storage, understand cloud deployment models and role/permission concepts, and assess risks in infrastructure and AI environments. You’ll apply best practices for identity & access management and security measures for AI systems.

Incident Response and Logging

You’ll learn incident response phases (detection, analysis, containment, eradication, recovery), interpret logs and SIEM signals, and apply vulnerability management to practical scenarios. You’ll also place awareness measures into the right security context.

Governance, Data Protection, and Compliance

You’ll understand regulatory requirements, governance structures, and role models. You’ll conduct risk assessments and map requirements from GDPR, NIS2, IT Security Act 2.0, and the EU AI Act to practical security and compliance work.

Business Continuity Management (BCM) & Emergency Planning

You’ll create Business Impact Analyses (BIA), derive RTO and RPO values, and develop emergency and recovery plans. You’ll understand emergency response organizations, run BCM tests, and document audit-relevant evidence.

ISMS Fundamentals and Systematic Implementation

You’ll learn ISO 27001/27002 and BSI IT-Grundschutz, define protection needs, model structures, create control catalogs and policies, and implement Annex A requirements as well as the Statement of Applicability (SoA).

Capstone Project & Audit Documentation

You’ll apply everything in practice: define scope, identify stakeholders, run full risk assessments and a BIA, document Annex A controls, create ISMS policies, and consolidate results into a complete, audit-ready ISMS documentation set.

Career Service

Ready for the real world.

What good are skills without getting a foot in the door? We focus extensively on helping you ace real world technical interviews.

Coaching built for you.

We believe that development is continuous, so we offer up-to-date career coaching sessions to help you progress professionally.

Beyond the technical.

Changing careers is more than learning new tech skills. We additionally provide you with spot on soft skills to ace your application process.

Your next step.

Wondering ‘what’s next’? We're connected with exciting startups and companies in Germany.

Where Spicedlings work

Spicedlings are getting hired by your favourite companies:

Financing Options

Invest in your future

Bildungsgutschein

If you’re registered as unemployed (or soon to be) in Germany, you could be eligible to have all your costs covered with a Bildungsgutschein (training voucher).

For more information on this option, check our page dedicated to financing your coding bootcamp with a Bildungsgutschein.

More info

Deferred Payment

We want to make our best-in-class tech courses available to everyone with the motivation to complete them.

Our Deferred Payment Option enables those who aren’t in the position to pay upfront nor in instalments to participate, by offering the chance to pay back at a later date.

More info

Full Payment

If you’re ready to cover the cost of our coding bootcamps immediately, this is the option for you. Pay 14 days before the course starts.

More info

FAQ

Who is this training for?

This training is ideal for anyone aiming for a specialized career in information security, compliance, IT risk management, or Business Continuity Management (BCM). Deep technical IT knowledge is not required, as all fundamentals are covered during the program. It’s especially suitable for career switchers and professionals looking to expand their profile with management systems such as ISO 27001.

What will I be able to do after the training?

You’ll be able to build and maintain an audit-ready Information Security Management System (ISMS) in line with ISO 27001 and BSI IT-Grundschutz. You’ll conduct risk analyses (ISO 27005) and Business Impact Analyses (BIA), assess technical security measures, ensure GDPR compliance, and integrate new regulatory requirements such as NIS2 and the EU AI Act.

What career opportunities will I have after the training?

You’ll be well prepared for demanding roles at the intersection of IT, security, and management. Typical positions include Information Security Officer, ISMS Manager, IT Compliance Manager, Business Continuity Manager, or IT Risk Consultant.

How does the application process work?

You submit your online application and then take part in a personal interview with us. We’ll talk about your motivation, your interest in governance topics, and your career goals. If everything’s a match, you’ll receive your acceptance shortly after.

What our participants say

Join our community and kick-start your career in information security and ISMS management.

Attending the UX/UI bootcamp at Spiced Academy was an amazing experience. The coaches and staff were incredibly supportive and friendly throughout the entire journey. I highly recommend it!
Faeze Parhizkari
1 year ago
A competent data science class that covers as much as possible the essentials to give a solid background. The teachers adapt and help according to the needs of the respective students and they add material to follow the updates of the field. Group projects are...
Dimitra G.
1 year ago
My time at Spiced Academy was transformative. I came in as a total newbie to web development and left wanting even more. The instructors were a mixed bag. Some were really helpful and knew their stuff, but others struggled to explain things clearly, especiall...
Alan Tonello
1 year ago
I've attended the UX/UI design course at Spiced Academy and it is awesome! It's full of excitement and challenge, with a super welcoming vibe. The teachers are really cool, knowledgeable, and always there to help out
Giulia Graziani
2 years ago
I enjoyed my time with Spiced, a good quality boot camp with a structured curriculum offering additional career services in the center of Berlin and online. Nice and clean modern campus with up-to-date topics in Tech.
Kilian Gedat
2 years ago
Did Data Science Bootcamp and had the best time! It covers a wide range of topics in a super accessible way, but also offers students to dig deeper into the statistics/maths or the coding side of the methods covered. Would absolutely recommend to anyone who wa...
Martina Kaplanová
2 years ago
I did the Data Analytics bootcamp at SPICED in August 2023. The training offered by the Bootcamp was comprehensive and practical, and industry specific. My time at SPICED was really gooood. I made some really good friends. I love how diverse it is. The teacher...
Tayyaba Saleem
2 years ago
I was very sceptical going "back to school" im my 30s but this was exactly what I needed! The UI/UX course was a good kickstart for change in my professional life and the coaches and team made the experience something to remember. It's important to have the ri...
Tho Mas
2 years ago

Do not miss out.
Subscribe to our newsletter.

Email address

I would like to receive email updates from SPICED Academy. This decision can be revoked at any time. Information on how we handle your data can be found in our privacy policy.