Building up information security according to ISO 27005 Training Course

This instructor-led, live training in Italy (online or onsite) is designed for intermediate-level IT auditors who wish to effectively incorporate AI tools into their audit practices.

By the end of this training, participants will be able to:

• Understand the core concepts of artificial intelligence and how it is applied in the context of IT auditing.
• Utilize AI technologies such as machine learning, NLP, and RPA to improve audit efficiency, accuracy, and scope.
• Perform risk assessments using AI tools, enabling continuous monitoring and proactive risk management.
• Integrate AI into audit planning, execution, and reporting, enhancing the overall effectiveness of IT audits.

This instructor-led, live training session Italy (online or onsite) is designed for advanced security analysts eager to enhance their proficiency in using sophisticated Micro Focus ArcSight ESM features. The objective is to improve an organization's capability to detect, respond to, and mitigate cyber threats with greater precision and speed.

By the conclusion of this training, participants will be able to:

• Optimize Micro Focus ArcSight ESM usage to strengthen monitoring and threat detection.
• Construct and manage advanced ArcSight variables to refine event streams for more accurate analysis.
• Develop and implement ArcSight lists and rules for efficient event correlation and alerting.
• Apply advanced correlation techniques to detect complex threat patterns and reduce false positives.

Description:

Basel III represents a global regulatory framework focused on bank capital adequacy, stress testing, and market liquidity risk. Originally established by the Basel Committee on Banking Supervision in 2010–2011, the implementation timeline for the Accord was extended to March 31, 2019. Basel III enhances bank capital requirements by boosting liquidity levels while reducing leverage. Unlike its predecessors, Basel I and II, which are not fully superseded but rather complemented, Basel III mandates distinct reserve levels for various deposit types and borrowing structures.
Navigating this intricate and evolving regulatory landscape can be challenging. Our course and training programs are designed to help you anticipate changes and understand their impact on your institution. As an accredited training partner of the Basel Certification Institute, we guarantee that our educational materials and training quality remain current and highly effective.

Objectives:

• Prepare participants for the Certified Basel Professional Examination.
• Develop practical strategies and techniques for defining, measuring, analyzing, improving, and controlling operational risk within banking organizations.

Target Audience:

• Board members with risk oversight responsibilities
• Chief Risk Officers (CROs) and Heads of Risk Management
• Members of the Risk Management team
• Staff in Compliance, Legal, and IT support functions
• Equity and Credit Analysts
• Portfolio Managers
• Rating Agency Analysts

Overview:

• Introduction to Basel norms and amendments to the Basel Accord (III)
• Regulations concerning market, credit, counterparty, and liquidity risk
• Stress testing methodologies for various risk measures, including formulation and delivery
• Analysis of Basel III’s likely effects on the international banking industry, with practical application demonstrations
• Justification for the adoption of new Basel norms
• Key features of the Basel III Norms
• Objectives of The Basel III Norms
• Implementation timeline for Basel III

This instructor-led, live training in Italy (online or onsite) targets security managers looking to develop foundational to intermediate skills in CCTV security surveillance and management.

Upon completing this training, participants will be able to:

• Identify various types of CCTV systems and understand their benefits and features.
• Grasp the cabling and setup requirements for CCTV systems.
• Install, configure, and manage CCTV systems effectively.

This instructor-led, live training in Italy (available online or on-site) is designed for advanced professionals seeking a comprehensive understanding of fraud examination concepts and preparation for the Certified Fraud Examiner (CFE) exam.

By the end of this training, participants will be able to:

• Gain comprehensive knowledge of fraud examination principles and the fraud examination process.
• Learn to identify, investigate, and prevent various types of financial fraud schemes.
• Understand the legal environment related to fraud, including the legal elements of fraud, relevant laws, and regulations.
• Acquire practical skills in conducting fraud investigations, including evidence collection, interviewing techniques, and data analysis.
• Learn to design and implement effective fraud prevention and deterrence programs within organizations.
• Gain confidence and knowledge to successfully pass the Certified Fraud Examiner (CFE) exam.

Description:

This four-day event (CGEIT training) serves as the definitive preparation for the exam period, designed to ensure you pass the challenging CGEIT exam on your first attempt.
The CGEIT qualification is an internationally recognized symbol of excellence in IT governance, awarded by ISACA. It is tailored for professionals responsible for managing IT governance or holding significant advisory or assurance responsibilities for IT governance.
Achieving CGEIT status will provide you with broader recognition in the marketplace, as well as increased influence at the executive level.

Objectives:

This seminar has been designed to prepare Delegates for the CGEIT examination by enabling them to supplement their existing knowledge and understanding to be better prepared to pass the exam, as defined by ISACA.

Target Audience:

Our training course is for IT and business professionals, with significant IT governance experience who are undertaking the CGEIT exam.

This instructor-led, live training in Italy (online or on-site) is designed for IT professionals who wish to understand how to utilize the CipherTrust Solution suite.

By the end of this training, participants will be able to:

• Understand the CipherTrust Solution and its basic functions.
• Evaluate device architecture and usage schemes.
• Manage CipherTrust product suite.

This instructor-led, live training in Italy (online or onsite) is designed for compliance professionals in the payment services sector who aim to establish, execute, and enforce an effective compliance program within their organizations.

Upon completion of this training, participants will be able to:

• Grasp the regulatory requirements imposed by government authorities on payment service providers.
• Develop internal policies and procedures necessary to meet government regulations.
• Implement a compliance program that aligns with applicable laws.
• Ensure that all corporate processes and procedures adhere to the compliance program.
• Protect the business's reputation and shield it from legal liabilities.

This instructor-led live training in Italy (online or on-site) targets intermediate-level cybersecurity professionals aiming to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

By the end of this training, participants will be able to:

• Comprehend the core elements of cybersecurity governance, risk, and compliance.
• Perform risk assessments and formulate strategies for risk mitigation.
• Execute compliance measures and oversee regulatory obligations.
• Create and enforce security policies and procedures.

This course offers an expert-level introduction to the newly enacted Accessibility Law, equipping developers with the practical skills necessary to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the significance and implications of the law, the curriculum swiftly transitions into hands-on coding practices, tools, and testing techniques to ensure both compliance and inclusivity for users with disabilities.

Course Objective:

Equipping participants with a solid grasp of GRC processes and capabilities, along with the necessary skills to effectively integrate governance, performance management, risk management, internal control, and compliance activities.

Course Summary:

• Key terms and definitions in GRC
• Core principles of GRC
• Essential components, practices, and activities
• The connection between GRC and related disciplines

This instructor-led, live training in Italy (available online or onsite) is designed for developers and administrators who aim to create software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

Target Audience

This course is designed for all staff members who need a practical grasp of Compliance and effective Risk Management.

Course Format

The training utilizes a blended learning methodology that includes:

• Guided discussions
• Slide-based presentations
• Case studies
• Real-world examples

Learning Objectives

Upon completion, participants will be equipped to:

Gain a robust understanding of key Compliance aspects, alongside national and international initiatives focused on managing related risks.

Articulate how organizations and their teams can implement an effective Compliance Risk Management Framework.

Clarify the roles and responsibilities of the Compliance Officer and the Money Laundering Reporting Officer, and comprehend how these functions integrate into the business structure.

Pinpoint critical risk areas within Financial Crime, especially regarding international operations, offshore centers, and high-net-worth clients.

Open Source Software (OSS) Management involves the comprehensive oversight of open-source components throughout their lifecycle within an organization, guaranteeing secure, compliant, and efficient utilization.

Delivered as an instructor-led, live training session (available online or onsite), this program is designed for intermediate IT professionals aiming to implement best practices for managing open-source software in enterprise and government settings.

Upon completion of this training, participants will be equipped to:

• Develop effective OSS policies and governance structures.
• Utilize SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Address risks related to licensing compliance and security vulnerabilities.
• Optimize OSS adoption to maximize innovation and cost efficiency.

Course Format

• Interactive lectures and discussions.
• Case studies and scenario-based exercises.
• Hands-on demonstrations featuring OSS management tools.

Customization Options

• This course can be customized to align with your organization’s specific OSS policies and toolchains. Please contact us to arrange.

This instructor-led, live training for Payment Card Industry Professionals in Italy (online or onsite) offers a professional qualification for practitioners seeking to demonstrate their expertise and understanding of the PCI Data Security Standard (PCI DSS).

Upon completion of this training, participants will be able to:

• Comprehend the payment process and the PCI standards established to safeguard it.
• Understand the roles and responsibilities of entities within the payment industry.
• Gain deep insight into, and a clear understanding of, the 12 PCI DSS requirements.
• Demonstrate knowledge of PCI DSS and its application to organizations involved in the transaction process.