Micro Focus ArcSight ESM Advanced Training Course

Description:

Basel III is a global regulatory framework for bank capital adequacy, stress testing, and market liquidity risk. Initially agreed upon by the Basel Committee on Banking Supervision between 2010 and 2011, subsequent changes to The Accord have extended its implementation to 31st March 2019. Basel III enhances bank capital requirements by boosting bank liquidity and reducing leverage.
Basel III differs from Basel I and II in that it requires varying levels of reserves for different forms of deposits and other borrowings, complementing rather than replacing the earlier accords.
Navigating this complex and ever-evolving landscape can be challenging. Our course and training will assist you in managing potential changes and their impact on your institution. As an accredited partner of the Basel Certification Institute, we guarantee that our training and materials are up-to-date and effective.

Objectives:

• Preparation for the Certified Basel Professional Examination.
• Development of practical strategies and techniques for defining, measuring, analyzing, improving, and controlling operational risk within a banking organization.

Target Audience:

• Board members with risk management responsibilities
• Chief Risk Officers (CROs) and Heads of Risk Management
• Risk Management team members
• Compliance, legal, and IT support staff
• Equity and Credit Analysts
• Portfolio Managers
• Rating Agency Analysts

Overview:

• An introduction to Basel norms and amendments to the Basel Accord (III)
• Regulations for market, credit, counterparty, and liquidity risk
• Stress testing methodologies, including how to design and conduct stress tests
• The anticipated impact of Basel III on the international banking sector, with practical demonstrations of its application
• The rationale behind the new Basel norms
• An overview of the Basel III norms
• Objectives of the Basel III norms
• A timeline for Basel III implementation

This instructor-led, live training in Norway (online or onsite) is aimed at advanced-level professionals who wish to gain a comprehensive understanding of fraud examination concepts and prepare for the Certified Fraud Examiner (CFE) exam.

By the end of this training, participants will be able to:

• Gain comprehensive knowledge of fraud examination principles and the fraud examination process.
• Learn to identify, investigate, and prevent various types of financial fraud schemes.
• Understand the legal environment related to fraud, including the legal elements of fraud, relevant laws, and regulations.
• Acquire practical skills in conducting fraud investigations, including evidence collection, interviewing techniques, and data analysis.
• Learn to design and implement effective fraud prevention and deterrence programs within organizations.
• Gain confidence and knowledge to successfully pass the Certified Fraud Examiner (CFE) exam.

Description:

This four-day event (CGEIT training) serves as the ultimate preparation to help you pass the challenging CGEIT exam on your first attempt.
The CGEIT qualification is an internationally recognized symbol of excellence in IT governance, awarded by ISACA. It is tailored for professionals responsible for managing IT governance or those with significant advisory or assurance responsibilities in this field.
Achieving CGEIT status will enhance your recognition in the market and increase your influence at the executive level.

Objectives:

This seminar has been designed to prepare participants for the CGEIT examination by building on their existing knowledge and understanding, ensuring they are better equipped to pass the exam as defined by ISACA.

Target Audience:

This training course is aimed at IT and business professionals with substantial experience in IT governance who are preparing to take the CGEIT exam.

Description:

Disclaimer: Please be advised that this updated CISM exam content outline is applicable to exams starting from 1 June 2022.

CISM® is the most prestigious and demanding qualification for Information Security Managers globally. This certification provides a platform for you to join an elite peer network, enabling you to continuously learn and adapt to the evolving opportunities and challenges in Information Security Management.

Our CISM training methodology offers comprehensive coverage of the four CISM domains, with a strong focus on building concepts and solving ISACA-released CISM exam questions. The course is designed as an intensive training program and rigorous exam preparation for ISACA’s Certified Information Security Manager (CISM®) Examination.

Our instructors strongly recommend that all participants review the ISACA-released CISM QA&E (Questions, Answers, and Explanations) as part of their exam preparation. The QA&E is invaluable in helping delegates understand the style of questions from ISACA, the approach to solving them, and it aids in the rapid assimilation of CISM concepts during live classroom sessions. All our trainers have extensive experience in delivering CISM training and will thoroughly prepare you for the CISM examination.

Goal:

The ultimate goal is to pass your CISM examination on the first attempt.

Objectives:

• Apply the knowledge gained in a practical and beneficial manner for your organization
• Establish and maintain an Information Security governance framework to achieve your organizational goals and objectives
• Manage Information risk to an acceptable level to meet business and compliance requirements
• Establish and maintain information security architectures (people, processes, technology)
• Integrate information security requirements into contracts and activities of third parties/suppliers
• Plan, establish, and manage the capability to detect, investigate, respond to, and recover from information security incidents to minimize business impact

Target Audience:

• Security professionals with 3-5 years of front-line experience
• Information security managers or those with management responsibilities
• Information security staff, information security assurance providers who require an in-depth understanding of information security management, including: CISOs, CIOs, CSOs, privacy officers, risk managers, security auditors, and compliance personnel, BCP/DR personnel, executive and operational managers responsible for assurance functions

A comprehensive, hands-on 3-day course designed to equip participants with the knowledge and skills necessary to manage information security, assurance, or risk-based processes. The CISMP course aligns with the latest national information assurance frameworks (IAMM) as well as ISO/IEC 27002 and 27001, which are the code of practice and standard for information security. This course is certified by CESG Certified Training (CCT).

The course follows the most recent BCS syllabus and prepares participants for the 2-hour multiple-choice BCS examination.

This qualification provides participants with a detailed understanding of concepts related to information security, including confidentiality, integrity, availability, vulnerability, threats, risks, and countermeasures. It also covers current legislation and regulations that impact information security management. Holders of this certification will be able to apply the practical principles learned throughout the course, ensuring that normal business processes are more robust and secure.

This instructor-led, live training in Norway (online or onsite) is aimed at payment services compliance professionals who wish to create, implement, and enforce a compliance program within an organization.

By the end of this training, participants will be able to:

• Understand the rules set forth by government regulators for payment service providers.
• Create the internal policies and procedures needed to satisfy government regulations.
• Implement a compliance program that adheres to relevant laws.
• Ensures that all corporate processes and procedures comply with the compliance program.
• Uphold the business's reputation while protecting it from lawsuits.

This instructor-led, live training in Norway (online or onsite) is aimed at intermediate-level cybersecurity professionals who wish to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

By the end of this training, participants will be able to:

• Understand the key components of cybersecurity governance, risk, and compliance.
• Conduct risk assessments and develop risk mitigation strategies.
• Implement compliance measures and manage regulatory requirements.
• Develop and enforce security policies and procedures.

This course provides an expert introduction to the newly enacted Accessibility Law and equips developers with the practical skills to design, develop, and maintain fully accessible applications. Starting with a contextual discussion on the law's importance and implications, the course quickly shifts to hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

Course Goal:

To ensure that participants gain a solid understanding of GRC processes and capabilities, as well as the skills needed to integrate governance, performance management, risk management, internal control, and compliance activities effectively.

Overview:

• Basic terms and definitions in GRC
• Principles guiding GRC
• Core components, practices, and activities within GRC
• The relationship between GRC and other disciplines

HIPAA (Health Insurance Portability and Accountability Act of 1996) is a U.S. legislation that sets standards for data privacy and security in the handling and storage of medical information. These guidelines serve as a robust framework that can be beneficial for developing health applications, regardless of their geographical location. Applications compliant with HIPAA are generally recognized and trusted on a global scale.

In this instructor-led, live training (conducted remotely), participants will gain an understanding of the fundamentals of HIPAA through a series of hands-on exercises in a live-lab environment.

By the end of this training, participants will be able to:

• Grasp the essential principles of HIPAA
• Create health applications that adhere to HIPAA regulations
• Utilize developer tools designed for HIPAA compliance

Audience

• Developers
• Product Managers
• Data Privacy Officers

Format of the Course

• A combination of lectures, discussions, practical exercises, and extensive hands-on practice.

Note

• To request a customized training session for this course, please contact us to arrange.

This instructor-led, live training in Norway (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

The ISO/IEC 27002 Lead Manager training equips you with the essential expertise and knowledge to support an organization in implementing and managing Information Security controls as outlined in ISO/IEC 27002.

Upon completing this course, you will be eligible to take the exam and apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. A PECB Lead Manager Certification demonstrates that you have a deep understanding of the principles and techniques necessary for implementing and managing Information Security Controls based on ISO/IEC 27002.

Who should attend?

• Managers or consultants aiming to implement an Information Security Management System (ISMS) in line with ISO/IEC 27001 and ISO/IEC 27002
• Project managers or consultants looking to master the ISMS implementation process
• Individuals responsible for information security, compliance, risk, and governance within an organization
• Members of information security teams
• Expert advisors in information technology
• Information Security officers
• Privacy officers
• IT professionals
• CTOs, CIOs, and CISOs

Learning objectives

• Master the implementation of Information Security controls by following the framework and principles of ISO/IEC 27002
• Gain a thorough understanding of the concepts, approaches, standards, methods, and techniques required for the effective implementation and management of Information Security controls
• Understand the relationship between various components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behavior
• Recognize the importance of information security in organizational strategy
• Become proficient in implementing information security management processes
• Excel in formulating and implementing security requirements and objectives

Educational approach

• This training combines both theoretical and practical elements
• Lectures are complemented with real-life examples to illustrate key concepts
• Practical exercises based on case studies are included
• Review exercises to assist in exam preparation are provided
• A practice test similar to the certification exam is offered

General Information

• Certification fees are included in the exam price
• Participants will receive a comprehensive training material of over 500 pages, including practical examples
• A participation certificate with 31 CPD (Continuing Professional Development) credits will be issued to participants
• In the event of an exam failure, you have the option to retake the exam within 12 months at no additional cost

Audience

This course is designed for all employees who require a comprehensive understanding of Compliance and Risk Management.

Format of the Course

The course is structured as a blend of:

• Facilitated discussions
• Slide presentations
• Case studies
• Practical examples

Course Objectives

By the end of this course, participants will be able to:

• Grasp the key aspects of Compliance and the national and international initiatives aimed at managing associated risks.
• Outline the methods by which a company and its employees can establish a Compliance Risk Management Framework.
• Explain the roles of the Compliance Officer and Money Laundering Reporting Officer, and how these roles should be integrated into business operations.
• Understand other critical areas in Financial Crime, particularly as they pertain to International Business, Offshore Centres, and High-Net-Worth Clients.

Open Source Software (OSS) Management involves the oversight of open-source components' lifecycle within an organization, ensuring their use is secure, compliant, and efficient.

This instructor-led, live training (online or onsite) is designed for intermediate-level IT professionals who want to implement best practices for managing open-source software in enterprise and government settings.

By the end of this training, participants will be able to:

• Establish effective OSS policies and governance frameworks.
• Utilize SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Mitigate risks related to licensing and security vulnerabilities.
• Streamline the adoption of OSS while maximizing innovation and cost savings.

Format of the Course

• Interactive lectures and discussions.
• Case studies and scenario-based exercises.
• Practical demonstrations with OSS management tools.

Course Customization Options

• This course can be customized to align with specific organizational OSS policies and toolchains. Please contact us for arrangements.

This instructor-led, live Payment Card Industry Professional training in Norway (online or onsite) provides an individual qualification for industry practitioners who wish to demonstrate their professional expertise and understanding of the PCI Data Security Standard (PCI DSS).

By the end of this training, participants will be able to:

• Understand the payment process and the PCI standards designed to protect it.
• Understand the roles and responsibilities for entities involved in the payment industry.
• Have deep insight into, and understanding of, the 12 PCI DSS requirements.
• Demonstrate knowledge of PCI DSS and how it applies to organizations that are involved in the transaction process.