HiTrust Common Security Framework Compliance Training Course

Description:

Basel III represents a global regulatory framework focused on bank capital adequacy, stress testing, and market liquidity risk. Originally established by the Basel Committee on Banking Supervision in 2010–2011, the implementation timeline for the Accord was extended to March 31, 2019. Basel III enhances bank capital requirements by boosting liquidity levels while reducing leverage. Unlike its predecessors, Basel I and II, which are not fully superseded but rather complemented, Basel III mandates distinct reserve levels for various deposit types and borrowing structures.
Navigating this intricate and evolving regulatory landscape can be challenging. Our course and training programs are designed to help you anticipate changes and understand their impact on your institution. As an accredited training partner of the Basel Certification Institute, we guarantee that our educational materials and training quality remain current and highly effective.

Objectives:

• Prepare participants for the Certified Basel Professional Examination.
• Develop practical strategies and techniques for defining, measuring, analyzing, improving, and controlling operational risk within banking organizations.

Target Audience:

• Board members with risk oversight responsibilities
• Chief Risk Officers (CROs) and Heads of Risk Management
• Members of the Risk Management team
• Staff in Compliance, Legal, and IT support functions
• Equity and Credit Analysts
• Portfolio Managers
• Rating Agency Analysts

Overview:

• Introduction to Basel norms and amendments to the Basel Accord (III)
• Regulations concerning market, credit, counterparty, and liquidity risk
• Stress testing methodologies for various risk measures, including formulation and delivery
• Analysis of Basel III’s likely effects on the international banking industry, with practical application demonstrations
• Justification for the adoption of new Basel norms
• Key features of the Basel III Norms
• Objectives of The Basel III Norms
• Implementation timeline for Basel III

This instructor-led, live training in Italy (available online or on-site) is designed for advanced professionals seeking a comprehensive understanding of fraud examination concepts and preparation for the Certified Fraud Examiner (CFE) exam.

By the end of this training, participants will be able to:

• Gain comprehensive knowledge of fraud examination principles and the fraud examination process.
• Learn to identify, investigate, and prevent various types of financial fraud schemes.
• Understand the legal environment related to fraud, including the legal elements of fraud, relevant laws, and regulations.
• Acquire practical skills in conducting fraud investigations, including evidence collection, interviewing techniques, and data analysis.
• Learn to design and implement effective fraud prevention and deterrence programs within organizations.
• Gain confidence and knowledge to successfully pass the Certified Fraud Examiner (CFE) exam.

Description:

This four-day event (CGEIT training) serves as the definitive preparation for the exam period, designed to ensure you pass the challenging CGEIT exam on your first attempt.
The CGEIT qualification is an internationally recognized symbol of excellence in IT governance, awarded by ISACA. It is tailored for professionals responsible for managing IT governance or holding significant advisory or assurance responsibilities for IT governance.
Achieving CGEIT status will provide you with broader recognition in the marketplace, as well as increased influence at the executive level.

Objectives:

This seminar has been designed to prepare Delegates for the CGEIT examination by enabling them to supplement their existing knowledge and understanding to be better prepared to pass the exam, as defined by ISACA.

Target Audience:

Our training course is for IT and business professionals, with significant IT governance experience who are undertaking the CGEIT exam.

This instructor-led, live training in Italy (online or onsite) is aimed at beginner to intermediate-level system administrators and security professionals who wish to learn how to implement Cloudflare for content delivery and cloud security, as well as mitigate DDoS attacks.

By the end of this training, participants will be able to:

• Configure Cloudflare for their websites.
• Set up DNS records and SSL certificates.
• Implement Cloudflare for content delivery and caching.
• Protect their websites from DDoS attacks.
• Implement firewall rules to restrict traffic to their websites.

This instructor-led, live training in Italy (online or onsite) is designed for compliance professionals in the payment services sector who aim to establish, execute, and enforce an effective compliance program within their organizations.

Upon completion of this training, participants will be able to:

• Grasp the regulatory requirements imposed by government authorities on payment service providers.
• Develop internal policies and procedures necessary to meet government regulations.
• Implement a compliance program that aligns with applicable laws.
• Ensure that all corporate processes and procedures adhere to the compliance program.
• Protect the business's reputation and shield it from legal liabilities.

This instructor-led live training in Italy (online or on-site) targets intermediate-level cybersecurity professionals aiming to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

By the end of this training, participants will be able to:

• Comprehend the core elements of cybersecurity governance, risk, and compliance.
• Perform risk assessments and formulate strategies for risk mitigation.
• Execute compliance measures and oversee regulatory obligations.
• Create and enforce security policies and procedures.

This instructor-led, live training in Italy (online or onsite) is aimed at supply chain professionals who wish to establish effective control and oversight of their supply chain, especially as it relates to cybersecurity.

By the end of this training, participants will be able to:

• Understand the security oversights that can bring about significant damage and disruption to a supply chain.
• Break down a complex security problem into manageable and actionable parts.
• Address common supply chain vulnerabilities by analyzing high risk areas and engaging with stakeholders.
• Adopt best practices in securing a supply chain.
• Noticeably reduce or eliminate the biggest risks to an organization's supply chain.

This instructor-led, live training in Italy (online or onsite) targets intermediate to advanced IT professionals and business leaders who wish to develop a structured approach to managing data breaches.

By the end of this training, participants will be able to:

• Comprehend the causes and repercussions of data breaches.
• Formulate and execute data breach prevention strategies.
• Establish an incident response plan to contain and mitigate breaches.
• Perform forensic investigations and evaluate the impact of breaches.
• Adhere to legal and regulatory mandates for breach notification.
• Recover from data breaches and enhance security postures.

This course offers an expert-level introduction to the newly enacted Accessibility Law, equipping developers with the practical skills necessary to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the significance and implications of the law, the curriculum swiftly transitions into hands-on coding practices, tools, and testing techniques to ensure both compliance and inclusivity for users with disabilities.

Course Objective:

Equipping participants with a solid grasp of GRC processes and capabilities, along with the necessary skills to effectively integrate governance, performance management, risk management, internal control, and compliance activities.

Course Summary:

• Key terms and definitions in GRC
• Core principles of GRC
• Essential components, practices, and activities
• The connection between GRC and related disciplines

Target Audience

This course is designed for all staff members who need a practical grasp of Compliance and effective Risk Management.

Course Format

The training utilizes a blended learning methodology that includes:

• Guided discussions
• Slide-based presentations
• Case studies
• Real-world examples

Learning Objectives

Upon completion, participants will be equipped to:

Gain a robust understanding of key Compliance aspects, alongside national and international initiatives focused on managing related risks.

Articulate how organizations and their teams can implement an effective Compliance Risk Management Framework.

Clarify the roles and responsibilities of the Compliance Officer and the Money Laundering Reporting Officer, and comprehend how these functions integrate into the business structure.

Pinpoint critical risk areas within Financial Crime, especially regarding international operations, offshore centers, and high-net-worth clients.

Open Source Software (OSS) Management involves the comprehensive oversight of open-source components throughout their lifecycle within an organization, guaranteeing secure, compliant, and efficient utilization.

Delivered as an instructor-led, live training session (available online or onsite), this program is designed for intermediate IT professionals aiming to implement best practices for managing open-source software in enterprise and government settings.

Upon completion of this training, participants will be equipped to:

• Develop effective OSS policies and governance structures.
• Utilize SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Address risks related to licensing compliance and security vulnerabilities.
• Optimize OSS adoption to maximize innovation and cost efficiency.

Course Format

• Interactive lectures and discussions.
• Case studies and scenario-based exercises.
• Hands-on demonstrations featuring OSS management tools.

Customization Options

• This course can be customized to align with your organization’s specific OSS policies and toolchains. Please contact us to arrange.

Description:

This 'Practitioner' course places a strong emphasis on practical exercises intended to reinforce the concepts taught and to build delegates' confidence in implementing business continuity management. The curriculum is also designed to foster debate, as well as the sharing of knowledge and experience among participants.
Delegates will gain valuable insights from the extensive practical experience of our trainers, who are active practitioners in business continuity management and ISO 22301:2019 specialists.

Delegates will learn how to:

• Explain the necessity of business continuity management (BCM) across all organisations
• Define the business continuity lifecycle
• Manage the business continuity programme
• Gain a sufficient understanding of their organisation to identify mission-critical impact areas
• Determine the organisation's business continuity strategy
• Establish a business continuity response
• Exercise, maintain, and review plans
• Embed business continuity within an organisation
• Define terms and definitions appropriate to business continuity

Upon completing the course, delegates will possess a detailed understanding of all key components of business continuity management and will be equipped to return to their roles, making a significant contribution to the business continuity management process.

This instructor-led, live training for Payment Card Industry Professionals in Italy (online or onsite) offers a professional qualification for practitioners seeking to demonstrate their expertise and understanding of the PCI Data Security Standard (PCI DSS).

Upon completion of this training, participants will be able to:

• Comprehend the payment process and the PCI standards established to safeguard it.
• Understand the roles and responsibilities of entities within the payment industry.
• Gain deep insight into, and a clear understanding of, the 12 PCI DSS requirements.
• Demonstrate knowledge of PCI DSS and its application to organizations involved in the transaction process.

This instructor-led, live training in Italy (online or on-site) is designed for developers who wish to incorporate Snyk into their development tools to identify and fix security issues in their code.

By the end of this training, participants will be able to:

• Understand the features and structure of Snyk.
• Use Snyk to find and fix code security issues.
• Integrate Snyk in a software development lifecycle.