This module provides a comprehensive introduction to the fundamentals of Information Security, designed to equip students with essential knowledge and skills in the field. The course covers the evolution of information security, distinguishing between information and cyber security, and understanding core concepts such as Confidentiality, Integrity, and Availability (CIA). Students will explore the role of information as an asset and learn about vulnerabilities, threats, and risks. The module delves into critical aspects of security, including enterprise governance, risk management, and compliance, as well as information security standards and physical security measures. Key topics include network security, operating system and application security, and various types of malware such as viruses, trojans, worms, ransomware, and advanced persistent threats (APTs). Additionally, students will examine countermeasures, user identity management, authentication, authorization, disaster recovery, and the impact of information security breaches on business operations. The course also introduces cyber security laws and regulations, digital forensics, and cloud security, providing a well-rounded understanding of modern information security practices and their importance in ensuring business continuity.