CISSP - Certified Information Systems Security Professional Training Course

This instructor-led, live training in the UK (online or onsite) is aimed at security engineers who wish to use IBM Qradar SIEM to address pressing security use cases.

By the end of this training, participants will be able to:

• Gain visibility into enterprise data across on-premise and cloud environments.
• Automate security intelligence to hunt threats and to contain risks.
• Detect, identify, and prioritize threats.

Description:

This class is intended as intense and hard core exam preparation for ISACA’s Certified Information Systems Auditor (CRISC) Examination. The latest four (4) domains of ISACA’s CRISC syllabus will be covered with a big focus on the Examination. The Official ISACA CRISC Review Manual and Question, Answer and Explanation, (Q,A&E), supplements will ALSO be provided when attending. The Q,A&E is exceptional in helping delegates understand the ISACA style of questions, the type of answers ISACA are looking for and it helps rapid memory assimilation of the material.

The technical skills and practices that ISACA promotes and evaluates within the CRISC certification are the building blocks of success in the field. Possessing the CRISC certification demonstrates your skill within the profession. With a growing demand for professionals holding risk and control expertise, ISACA’s CRISC has positioned itself to be the preferred certification program by individuals and enterprises around the world. The CRISC certification signifies commitment to serving an enterprise and the chosen profession with distinction.

Objectives:

• To help you pass the CRISC examination first time.
• Possessing this certification will signify your commitment to serving an enterprise with distinction.
• The growing demand for professionals with risk and control skills will allow holders of this certification to command better positions and salary.

You will learn:

• To help enterprises accomplish business objectives by designing, implementing, monitoring and maintaining risk-based, efficient and effective IS controls.
• The technical skills and practices that CRISC promotes, which are the building blocks of success in the field.

This instructor-led, live training in the UK (online or onsite) is aimed at intermediate-level IT professionals who wish to enhance their skills in identifying and managing IT risk and implementing information systems controls, and prepare for the CRISC certification exam.

By the end of this training, participants will be able to:

• Understand the governance and risk management aspects of IT.
• Conduct IT risk assessments and implement risk responses.
• Design and implement information systems controls.
• Prepare effectively for the CRISC certification exam.

Course Description

A comprehensive course focused on AI security, governance, compliance, and risk management for enterprise implementations. Designed for security professionals, compliance officers, and technology leaders responsible for secure AI deployment and governance frameworks.

Who is it for:

Anyone who is involved in the areas of information security and information assurance.

What will I learn:

Candidates should be able to demonstrate:

• How the management of information risk will bring about significant business benefits.
• How to explain and make full use of information risk management terminology.
• How to conduct threat and vulnerability assessments, business impact analyses and risk assessments.
• The principles of controls and risk treatment.
• How to present the results in a format which will form the basis of a risk treatment plan.
• The use of information classification schemes.

This instructor-led, live training in the UK (online or onsite) is aimed at beginner to intermediate-level system administrators and security professionals who wish to learn how to implement Cloudflare for content delivery and cloud security, as well as mitigate DDoS attacks.

By the end of this training, participants will be able to:

• Configure Cloudflare for their websites.
• Set up DNS records and SSL certificates.
• Implement Cloudflare for content delivery and caching.
• Protect their websites from DDoS attacks.
• Implement firewall rules to restrict traffic to their websites.

This instructor-led, live training in the UK (online or onsite) is aimed at supply chain professionals who wish to establish effective control and oversight of their supply chain, especially as it relates to cybersecurity.

By the end of this training, participants will be able to:

• Understand the security oversights that can bring about significant damage and disruption to a supply chain.
• Break down a complex security problem into manageable and actionable parts.
• Address common supply chain vulnerabilities by analyzing high risk areas and engaging with stakeholders.
• Adopt best practices in securing a supply chain.
• Noticeably reduce or eliminate the biggest risks to an organization's supply chain.

This instructor-led, live training in the UK (online or onsite) is aimed at intermediate-level to advanced-level IT professionals and business leaders who wish to develop a structured approach to handling data breaches.

By the end of this training, participants will be able to:

• Understand the causes and consequences of data breaches.
• Develop and implement data breach prevention strategies.
• Establish an incident response plan to contain and mitigate breaches.
• Conduct forensic investigations and assess the impact of breaches.
• Comply with legal and regulatory requirements for breach notification.
• Recover from data breaches and strengthen security postures.

This instructor-led, live training in the UK (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

This training course teaches how risk assessment for information security is done by combining the information on ISO/IEC 27005:2022 and ISO/IEC 27001. In addition to theoretical knowledge, this training course is equipped with practical exercises, quizzes, case studies, all of which make it a very engaging training course.

Description:

This is a 'Practitioner' course and leans heavily on practical exercises designed to reinforce the concepts being taught and to build the delegates' confidence in implementing business continuity management. The course is also designed to encourage debate, and the sharing of knowledge and experience between students.
Delegates will benefit from the practical and extensive experiences of ours trainers who are practicing business continuity management and ISO 22301:2019 specialists.

Delegates will learn how to:

• Explain the need for business continuity management (BCM) in all organisations
• Define the business continuity lifecycle
• Conducting business continuity programme management
• Understand their organisation sufficiently to identify mission-critical impact areas
• Determine their organisation's business continuity strategy
• Establish a business continuity response
• Exercise, maintain and review plans
• Embed business continuity in an organisation
• Define terms and definitions appropriate to business continuity

By the end of the course, delegates will have a detailed understanding of all the key components of business continuity management and be able to return to their work, making a significant contribution to the business continuity management process.

This instructor-led, live training in the UK (online or onsite) is aimed at developers who wish to integrate Snyk into their development tools to find and fix security issues in their code.

By the end of this training, participants will be able to:

• Understand the features and structure of Snyk.
• Use Snyk to find and fix code security issues.
• Integrate Snyk in a software development lifecycle.

This course is designed to help the attendee to build organizational resilience against a range of threats so that organizations can respond effectively to incidents, maintain the availability of business operations and safeguard its interests. 

Who is it for:

Anyone who is involved in the areas of information security and information assurance. 

The certificate is relevant to anyone requiring an understanding of Business Continuity Management as well as those who are involved in the areas of information security and information assurance.

What will I learn:

Candidates should be able to demonstrate: 

• The function of and need for business continuity management within an organisation
• The business continuity management life cycle
• The main components of a business continuity management programme
• The need for risk assessment within business continuity management
• The options for development of a business continuity management strategy
• How to prepare and develop plans for business continuity management response  
• The need for exercising, maintenance and review of plans 
• The need for embedding business continuity management awareness within the organisation 

Who is it for:

Security professionals looking to understand the technical and business aspects of the profession or anyone looking to work in the field of security architecture.

• System Administrators who wish to become security architects
• Technical architects looking to move into the field of security architecture 

This certificate also offers a complimentary certification for those awarded or looking to achieve CCP status in IA.

What will I learn:

Candidates should be able to:

• Describe the business environment and the information risks that apply to the systems.
• Describe and apply security design principles.
• Identify information risks that arise from potential solution architectures.
• Design alternate architectures or countermeasures to mitigate identified information risks.
• Ensure that proposed architectures and countermeasures adequately mitigate identified information risks.
• Apply ‘standard’ security techniques and architectures to mitigate security risks.
• Develop new architectures that mitigate the risks posed by new technologies and business practices.
• Provide consultancy and advice to explain Information Assurance and architectural problems.
• Security configure ICT systems in compliance with their approved security architectures.