You need to go where you are interested.
IB is such a broad term in various interpretations that you first need to narrowly redefine it.
Formally, information security is work primarily of a documentary nature, for example, a description of the procedures for bringing the system in line with the law on the protection of personal data, or in accordance with the requirements for state secrets, bank secrecy, etc.
In this plane, information security is not a technical specialty at all, requiring some special technical knowledge. These are documents.
There is another interpretation of this term, this is penetration testing, application protection, network protection, i.e. practical security of services, applications, data storages, networks, transmission channels, etc.
This interpretation usually does not have a transparent learning system, is not standardized and is very very broad.
For example, the protection of data transmission channels, this is both physical protection, and engineering from the point of view of construction, and network administrators with VNP tunnels, and system administrators with https, and mathematics with encryption, and physics with quantum effects. And it’s also a bunch of administrative measures to protect the canal laying project, since unauthorized changes can be made to the project, and verification of real laying work, design work, as well as various licensing for these works and equipment, etc. etc.
If you want to study "practical" information security, you first need to deeply study a narrower area with a focus on potential vulnerabilities, such as system and network administration, application and web service development, processor and encryption features, pseudo-random number generators and mathematics.

Is information security relevant?

Some say wasted time and this is work with papers.

Will I, like Neo from the matrix, hack and break?