CISMP - Certificate in Information Security Management Principles Training Course

This instructor-led live training in Norway (online or on-site) is designed for intermediate-level IT auditors who wish to effectively incorporate AI tools into their audit practices.

By the end of this training, participants will be able to:

• Understand the core concepts of artificial intelligence and its application in IT auditing.
• Utilize AI technologies such as machine learning, NLP, and RPA to enhance audit efficiency, accuracy, and scope.
• Perform risk assessments using AI tools, enabling continuous monitoring and proactive risk management.
• Integrate AI into audit planning, execution, and reporting, enhancing the overall effectiveness of IT audits.

This instructor-led, live training in Norway (online or onsite) targets advanced-level security analysts who wish to elevate their skills in utilizing advanced Micro Focus ArcSight ESM content to improve an organization's ability to detect, respond, and mitigate cyber threats with greater precision and speed.

By the end of this training, participants will be able to:

• Optimize the use of Micro Focus ArcSight ESM to enhance monitoring and threat detection capabilities.
• Construct and manage advanced ArcSight variables to refine event streams for more precise analysis.
• Develop and implement ArcSight lists and rules for effective event correlation and alerting.
• Apply advanced correlation techniques to identify complex threat patterns and reduce false positives.

Description:

Basel III represents a comprehensive global regulatory framework focused on bank capital adequacy, stress testing, and market liquidity risk. Initially established by the Basel Committee on Banking Supervision in 2010–11, the Accord’s implementation timeline has been extended to March 31, 2019. This framework enhances bank capital requirements by boosting liquidity reserves and reducing leverage ratios.
Unlike Basel I & II, Basel III introduces differentiated reserve requirements based on the specific types of deposits and borrowings, functioning alongside its predecessors rather than entirely replacing them. Navigating this intricate and evolving regulatory landscape can be challenging. Our course and training programs are designed to assist you in managing potential regulatory shifts and their implications for your institution. As an accredited training partner of the Basel Certification Institute, we guarantee that our materials and training quality remain current, relevant, and effective.

Objectives:

• Prepare participants for the Certified Basel Professional Examination.
• Develop practical strategies and techniques to define, measure, analyze, improve, and control operational risk within banking organizations.

Target Audience:

• Board members with risk oversight responsibilities
• Chief Risk Officers (CROs) and Heads of Risk Management
• Members of the Risk Management team
• Staff in compliance, legal, and IT support functions
• Equity and Credit Analysts
• Portfolio Managers
• Rating Agency Analysts

Overview:

• Introduction to Basel norms and amendments to the Basel Accord (III)
• Regulatory frameworks for market, credit, counterparty, and liquidity risk
• Stress testing methodologies for various risk measures, including formulation and delivery
• Projected effects of Basel III on the international banking industry, supported by practical demonstrations
• Rationale for adopting new Basel norms
• Overview of the Basel III Norms
• Objectives of The Basel III Norms
• Implementation Timeline for Basel III

This instructor-led, live training in Norway (online or onsite) is designed for security managers who wish to develop fundamental to intermediate-level skills in CCTV security surveillance and management.

By the end of this training, participants will be able to:

• Identify various types of CCTV systems and understand their benefits and features.
• Comprehend the cabling and setup requirements for CCTV systems.
• Install, configure, and manage CCTV systems.

This instructor-led, live training in Norway (online or onsite) is aimed at advanced-level professionals who wish to gain a comprehensive understanding of fraud examination concepts and prepare for the Certified Fraud Examiner (CFE) exam.

By the end of this training, participants will be able to:

• Gain comprehensive knowledge of fraud examination principles and the fraud examination process.
• Learn to identify, investigate, and prevent various types of financial fraud schemes.
• Understand the legal environment related to fraud, including the legal elements of fraud, relevant laws, and regulations.
• Acquire practical skills in conducting fraud investigations, including evidence collection, interviewing techniques, and data analysis.
• Learn to design and implement effective fraud prevention and deterrence programs within organizations.
• Gain confidence and knowledge to successfully pass the Certified Fraud Examiner (CFE) exam.

Description:

This intensive four-day course (CGEIT training) serves as the premier preparation for the examination, designed to equip you with the knowledge needed to successfully pass the challenging CGEIT exam on your first attempt.
The CGEIT qualification is an internationally recognized mark of excellence in IT governance, awarded by ISACA. It is tailored for professionals responsible for managing IT governance or those with significant advisory or assurance responsibilities in this domain.
Achieving CGEIT status will broaden your professional recognition in the marketplace and enhance your influence at the executive level.

Objectives:

This seminar aims to prepare delegates for the CGEIT examination by helping them supplement their existing knowledge and understanding, thereby better positioning them to pass the exam as defined by ISACA.

Target Audience:

This training course is intended for IT and business professionals who possess substantial IT governance experience and are undertaking the CGEIT exam.

This instructor-led, live training in Norway (online or onsite) is designed for compliance professionals in the payment services sector who aim to design, implement, and enforce a robust compliance program within their organizations.

Upon completion of this training, participants will be equipped to:

• Grasp the regulatory requirements imposed by government authorities on payment service providers.
• Develop internal policies and procedures that align with governmental regulations.
• Establish a compliance program that adheres to applicable laws.
• Ensure that all corporate processes and procedures remain consistent with the compliance framework.
• Protect the business's reputation and shield it from legal liabilities.

This instructor-led, live training in Norway (online or onsite) targets intermediate-level cybersecurity professionals who wish to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

By the end of this training, participants will be able to:

• Understand the key components of cybersecurity governance, risk, and compliance.
• Conduct risk assessments and develop risk mitigation strategies.
• Implement compliance measures and manage regulatory requirements.
• Develop and enforce security policies and procedures.

This course offers a comprehensive introduction to the recently enacted Accessibility Law, providing developers with the practical expertise needed to design, develop, and sustain fully accessible applications. Beginning with an analysis of the law's significance and broader implications, the curriculum rapidly transitions into practical coding techniques, essential tools, and testing methodologies to guarantee compliance and inclusivity for users with disabilities.

Course objective:

Equip participants with a solid grasp of GRC processes and capabilities, enabling them to effectively integrate governance, performance management, risk management, internal control, and compliance activities.

Course summary:

• Essential GRC terminology and definitions
• Core principles of GRC
• Key components, best practices, and operational activities
• How GRC intersects with other professional disciplines

This instructor-led, live training in Norway (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

The ISO/IEC 27002 Lead Manager training equips you with the essential expertise and knowledge to help an organization implement and manage Information Security controls as outlined in ISO/IEC 27002.

Upon completion of this course, you are eligible to sit for the exam and apply for the "PECB Certified ISO/IEC 27002 Lead Manager" credential. This PECB Lead Manager Certification demonstrates that you have mastered the principles and techniques required for implementing and managing Information Security controls in accordance with ISO/IEC 27002.

Who should attend?

• Managers or consultants aiming to implement an Information Security Management System (ISMS) based on ISO/IEC 27001 and ISO/IEC 27002
• Project managers or consultants seeking to master the process of implementing an Information Security Management System
• Individuals responsible for information security, compliance, risk, and governance within an organization
• Members of information security teams
• Expert advisors in information technology
• Information Security officers
• Privacy officers
• IT professionals
• CTOs, CIOs, and CISOs

Learning objectives

• Master the implementation of Information Security controls by adhering to the framework and principles of ISO/IEC 27002
• Gain a comprehensive understanding of the concepts, approaches, standards, methods, and techniques necessary for the effective implementation and management of Information Security controls
• Comprehend the interrelationships between the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behavior
• Understand the significance of information security to the organization's overall strategy
• Master the implementation of information security management processes
• Master the formulation and implementation of security requirements and objectives

Educational approach

• This training combines both theoretical knowledge and practical application
• Lecture sessions supplemented with examples from real-world cases
• Practical exercises based on case studies
• Review exercises designed to assist with exam preparation
• Practice tests that mirror the format of the certification exam

General Information

• Certification fees are included in the exam price
• Training material, comprising over 500 pages of information and practical examples, will be distributed to participants
• Participants will receive a certificate of participation awarding 31 CPD (Continuing Professional Development) credits
• In the event of an exam failure, you may retake the exam free of charge within 12 months

Audience

This course is designed for all staff members who need a practical grasp of Compliance and effective Risk Management.

Course Format

The training employs a blended methodology comprising:

• Facilitated discussions
• Slide-based presentations
• Case studies
• Real-world examples

Learning Objectives

Upon completion of the course, participants will be able to:

Gain a robust understanding of the fundamental aspects of Compliance, alongside national and international initiatives focused on managing associated risks.

Articulate how organizations and their teams can establish an effective Compliance Risk Management Framework.

Outline the responsibilities of the Compliance Officer and the Money Laundering Reporting Officer, and understand how these roles are integrated within a business structure.

Identify critical risk areas within Financial Crime, particularly concerning international operations, offshore centres, and high-net-worth clients.

Open Source Software (OSS) Management involves overseeing the entire lifecycle of open-source components within an organization to ensure their secure, compliant, and efficient utilization.

This instructor-led training, available online or onsite, targets intermediate-level IT professionals seeking to implement best practices for managing open-source software in enterprise and government settings.

Upon completion of this training, participants will be equipped to:

• Develop effective OSS policies and governance frameworks.
• Leverage SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Reduce risks related to licensing and security vulnerabilities.
• Streamline the adoption of OSS while maximizing innovation and cost efficiencies.

Course Format

• Interactive lectures and discussions.
• Case studies and scenario-based exercises.
• Hands-on demonstrations with OSS management tools.

Customization Options

• This course can be tailored to align with your organization's specific OSS policies and toolchains. Please contact us to arrange customization.

This instructor-led, live Payment Card Industry Professional training in Norway (online or onsite) provides an individual qualification for industry practitioners who wish to demonstrate their professional expertise and understanding of the PCI Data Security Standard (PCI DSS).

By the end of this training, participants will be able to:

• Understand the payment process and the PCI standards designed to protect it.
• Understand the roles and responsibilities for entities involved in the payment industry.
• Have deep insight into, and understanding of, the 12 PCI DSS requirements.
• Demonstrate knowledge of PCI DSS and how it applies to organizations that are involved in the transaction process.