CISA - Certified Information Systems Auditor Training Course

AAISM is an advanced framework for assessing, governing, and managing security risks in artificial intelligence systems.

This instructor-led, live training (online or onsite) is aimed at advanced-level professionals who wish to implement effective security controls and governance practices for enterprise AI environments.

At the conclusion of this program, participants will be prepared to:

• Evaluate AI security risks using industry-recognized methodologies.
• Implement governance models for responsible AI deployment.
• Align AI security policies with organizational goals and regulatory expectations.
• Enhance resilience and accountability within AI-driven operations.

Format of the Course

• Facilitated lectures supported by expert analysis.
• Practical workshops and assessment-based activities.
• Applied exercises using real-world AI governance scenarios.

Course Customization Options

• For tailored training aligned to your organizational AI strategy, please contact us to customize the course.

Description:

This intensive four-day course (CGEIT training) serves as the premier preparation for the examination, designed to equip you with the knowledge needed to successfully pass the challenging CGEIT exam on your first attempt.
The CGEIT qualification is an internationally recognized mark of excellence in IT governance, awarded by ISACA. It is tailored for professionals responsible for managing IT governance or those with significant advisory or assurance responsibilities in this domain.
Achieving CGEIT status will broaden your professional recognition in the marketplace and enhance your influence at the executive level.

Objectives:

This seminar aims to prepare delegates for the CGEIT examination by helping them supplement their existing knowledge and understanding, thereby better positioning them to pass the exam as defined by ISACA.

Target Audience:

This training course is intended for IT and business professionals who possess substantial IT governance experience and are undertaking the CGEIT exam.

This workshop combines practical training with comprehensive theoretical knowledge. The curriculum aligns with the official CISA certification framework. Through case studies, participants will explore specific challenges and scenarios. Instruction is conducted in English (Polish available upon request), utilizing the ISACA handbook as the primary resource.
 

CISA Exam Content Domains:

• Information System Auditing Process (21%)
• Governance and Management of IT (17%)
• Information Systems Acquisition, Development, and Implementation (12%)
• Information Systems Operation and Business Resilience (23%)
• Protection of Information Assets (27%)

Exam Duration: 4 hours
Format: Multiple-choice test
Number of Questions: 200

To qualify for the CISA designation, candidates must satisfy the following requirements: 

1. Pass the CISA exam. A score of 450 or higher is required to pass.
2. Adhere to the ISACA Code of Professional Ethics
3. Commit to complying with the CISA Continuing Professional Education Policy
4. Accumulate a minimum of 5 years of professional work experience in information systems auditing, control, or security.
5. Comply with Information Systems Auditing Standards

If you have passed the exam and believe you meet these criteria, you may submit your certification application: click here to certify
An application fee of $50 applies.

Additionally, you are required to pay an annual maintenance fee to keep your certification active. The fee is $40 per year for ISACA members and $75 for non-members.

Description:

Please note that this updated CISM exam content outline applies to exams commencing from 1 June 2022.

CISM® stands as the most prestigious and rigorous qualification for Information Security Managers globally. This credential offers you the opportunity to join an elite peer network dedicated to continuously learning and adapting to the evolving opportunities and challenges in Information Security Management.

Our CISM training methodology delivers comprehensive coverage of the four CISM domains, focusing on building foundational concepts and solving ISACA-released CISM exam questions. The course serves as intensive, rigorous exam preparation for the ISACA’s Certified Information Security Manager (CISM®) Examination.

Our instructors strongly recommend that all attendees review the ISACA-released CISM QA&E (Questions, Answers, and Explanations) as part of their preparation. This resource is invaluable for helping delegates understand the style and approach of ISACA questions, facilitating rapid assimilation of CISM concepts during live classroom sessions.
All our trainers possess extensive experience in delivering CISM training, ensuring you are thoroughly prepared for the CISM examination.

Goal:

The primary objective is to pass your CISM examination on the first attempt.

Objectives:

• Apply the acquired knowledge in practical ways that benefit your organisation
• Establish and maintain an information security governance framework to achieve organizational goals and objectives
• Manage information risk to an acceptable level to meet business and compliance requirements
• Establish and maintain information security architectures (people, process, technology)
• Integrate information security requirements into contracts and activities of third parties/suppliers
• Plan, establish, and manage the capability to detect, investigate, respond to, and recover from information security incidents to minimize business impact

Target Audience:

• Security professionals with 3-5 years of frontline experience
• Information security managers or individuals with management responsibilities
• Information security staff and assurance providers requiring an in-depth understanding of information security management, including: CISOs, CIOs, CSOs, privacy officers, risk managers, security auditors, compliance personnel, BCP/DR personnel, and executive and operational managers responsible for assurance functions

This instructor-led live training in Norway (online or onsite) is designed for beginner to intermediate system administrators and security professionals aiming to learn how to implement Cloudflare for content delivery, cloud security, and DDoS mitigation.

Upon completing this training, participants will be able to:

• Configure Cloudflare for their web properties.
• Establish DNS records and SSL certificates.
• Deploy Cloudflare for efficient content delivery and caching.
• Defend websites against DDoS attacks.
• Apply firewall rules to control and restrict web traffic.

Description:

This course is designed as an intensive and rigorous preparation for the ISACA Certified in Risk and Information Systems Control (CRISC) exam. The training covers the four (4) most recent domains of the ISACA CRISC syllabus, with a strong emphasis on exam readiness. Participants will receive the Official ISACA CRISC Review Manual, along with the Question, Answer, and Explanation (Q&A&E) supplements, upon attendance. The Q&A&E resource is particularly valuable for helping attendees grasp the specific style of ISACA questions, identify the types of answers ISACA expects, and accelerate the absorption of the course material.

The technical skills and practices promoted and evaluated by ISACA within the CRISC certification form the foundation for success in this profession. Holding the CRISC certification validates your professional expertise. As the demand for professionals with risk and control expertise continues to rise, ISACA’s CRISC has become the preferred certification for individuals and organizations worldwide. The CRISC certification reflects a commitment to serving an enterprise and one’s profession with distinction.

Objectives:

• To support you in passing the CRISC examination on your first attempt.
• Obtaining this certification demonstrates your dedication to serving an enterprise with excellence.
• Due to the increasing demand for professionals with risk and control competencies, certification holders can secure better career positions and salary levels.

You will learn:

• How to assist enterprises in achieving their business objectives by designing, implementing, monitoring, and maintaining efficient and effective risk-based IS controls.
• The technical skills and practices endorsed by CRISC, which serve as the building blocks for success in the field.

This instructor-led, live training in Norway (online or onsite) targets intermediate-level IT professionals seeking to strengthen their ability to identify and manage IT risk, implement information systems controls, and prepare for the CRISC certification exam.

Upon completion of this training, participants will be able to:

• Comprehend the governance and risk management dimensions of IT.
• Perform IT risk assessments and execute appropriate risk responses.
• Design and deploy information systems controls.
• Prepare effectively for the CRISC certification exam.

This instructor-led, live training in Norway (online or onsite) is designed for supply chain professionals seeking to establish robust control and oversight of their supply chains, with a specific focus on cybersecurity.

Upon completion of this training, participants will be able to:

• Identify security oversights that can cause significant damage and disruption to a supply chain.
• Deconstruct complex security challenges into manageable, actionable components.
• Tackle common supply chain vulnerabilities by analyzing high-risk areas and collaborating with stakeholders.
• Implement best practices for securing the supply chain.
• Significantly reduce or eliminate major risks to an organization's supply chain.

This instructor-led, live training in Norway (online or onsite) targets intermediate to advanced IT professionals and business leaders aiming to establish a structured approach to managing data breaches.

Upon completion of this training, participants will be able to:

• Understand the causes and consequences of data breaches.
• Develop and implement data breach prevention strategies.
• Establish an incident response plan to contain and mitigate breaches.
• Conduct forensic investigations and assess the impact of breaches.
• Comply with legal and regulatory requirements for breach notification.
• Recover from data breaches and strengthen security postures.

This instructor-led, live training in Norway (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

Course Overview

Designed for practitioners, this course emphasizes hands-on exercises aimed at reinforcing core concepts and building participants' confidence in applying business continuity management principles. It also fosters an environment for debate and the exchange of knowledge and practical experience among attendees.
Delegates gain valuable insights from the extensive practical experience of our trainers, who are active business continuity management professionals and ISO 22301:2019 specialists.

Learning Outcomes

• Articulate the necessity of business continuity management (BCM) across all organizational types.
  
• Define the business continuity lifecycle.
  
• Manage the business continuity programme effectively.
  
• Analyze the organization to identify mission-critical impact areas.
  
• Develop the organization's business continuity strategy.
  
• Establish a robust business continuity response.
  
• Exercise, maintain, and review continuity plans.
  
• Integrate business continuity into the organizational culture.
  
• Define key terms and definitions relevant to business continuity.
  

Upon completion, participants will possess a comprehensive understanding of the essential components of business continuity management, enabling them to return to their roles and make substantial contributions to their organization's continuity efforts.

This instructor-led, live training in Norway (online or onsite) is aimed at security engineers who wish to use IBM Qradar SIEM to address pressing security use cases.

By the end of this training, participants will be able to:

• Gain visibility into enterprise data across on-premise and cloud environments.
• Automate security intelligence to hunt threats and to contain risks.
• Detect, identify, and prioritize threats.

This instructor-led, live training in Norway (online or onsite) is aimed at developers who wish to integrate Snyk into their development tools to find and fix security issues in their code.

By the end of this training, participants will be able to:

• Understand the features and structure of Snyk.
• Use Snyk to find and fix code security issues.
• Integrate Snyk in a software development lifecycle.

This course explores the fundamental principles of IT security, with a primary focus on defending against network-based threats. Participants will develop a solid grasp of key security protocols and the core security concepts underlying web services. The curriculum also references recent attacks targeting cryptosystems and highlights associated vulnerabilities.