HiTrust Common Security Framework Compliance Training Course

Combating money laundering is a priority on the global stage. Compliance officers, AML Officers, MLROs, KYC analysts, auditors, and managers must understand how to ensure adherence to Subsidiary 373.01, the Prevention of Money Laundering and Funding of Terrorism Regulations (PMLFTR).

Under the PMLFTR, all Subject Persons, including those within the regulated financial services sector, are mandated to appoint a Money Laundering Reporting Officer (MLRO).

This practical course provides you with the knowledge and essential guidance on how to approach AML compliance within your organisation, with specific attention to the regulatory environment in Malta.

Who is it for:

Intended for professionals engaged in the fields of information security and information assurance.

What will I learn:

Participants will demonstrate the ability to:

• Explain how effective information risk management delivers substantial business advantages.
• Articulate and utilise information risk management terminology accurately.
• Perform threat and vulnerability assessments, business impact analyses, and risk assessments.
• Understand the principles governing controls and risk treatment.
• Present findings in a format that serves as the foundation for a risk treatment plan.
• Apply information classification schemes effectively.

EC-Council’s CCISO Programme has certified leading information security professionals worldwide. A core group of high-level information security executives, the CCISO Advisory Board, contributed by forming the foundation of the programme and outlining the content that would be covered by the exam, body of knowledge, and training. Some members of the Board contributed as authors, others as exam writers, others as quality assurance checks, and still others as trainers. Each segment of the programme was developed with the aspiring CISO in mind and looks to transfer the knowledge of seasoned professionals to the next generation in the areas that are most critical in the development and maintenance of a successful information security programme.

The Certified CISO (CCISO) programme is the first of its kind training and certification programme aimed at producing top-level information security executives. The CCISO does not focus solely on technical knowledge but on the application of information security management principles from an executive management point of view. The programme was developed by sitting CISOs for current and aspiring CISOs.

This instructor-led, live training in Botswana (online or on-site) is aimed at beginner to intermediate-level system administrators and security professionals who wish to learn how to implement Cloudflare for content delivery and cloud security, as well as mitigate DDoS attacks.

By the end of this training, participants will be able to:

• Configure Cloudflare for their websites.
• Set up DNS records and SSL certificates.
• Implement Cloudflare for content delivery and caching.
• Protect their websites from DDoS attacks.
• Implement firewall rules to restrict traffic to their websites.

This instructor-led, live training in Botswana (online or onsite) is designed for compliance professionals in the payment services sector who aim to establish, implement, and enforce a robust compliance programme within their organisation.

Upon completion of this training, participants will be able to:

• Grasp the regulatory requirements set by government authorities for payment service providers.
• Develop the internal policies and procedures necessary to meet regulatory obligations.
• Implement a compliance programme that aligns with applicable laws.
• Ensure that all corporate processes and procedures adhere to the established compliance programme.
• Safeguard the business's reputation while protecting it against legal action.

This instructor-led, live training in Botswana (online or onsite) is aimed at intermediate-level cybersecurity professionals who wish to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

By the end of this training, participants will be able to:

• Understand the key components of cybersecurity governance, risk, and compliance.
• Conduct risk assessments and develop risk mitigation strategies.
• Implement compliance measures and manage regulatory requirements.
• Develop and enforce security policies and procedures.

This instructor-led, live training in Botswana (online or on-site) is aimed at intermediate-level to advanced-level IT professionals and business leaders who wish to develop a structured approach to handling data breaches.

By the end of this training, participants will be able to:

• Understand the causes and consequences of data breaches.
• Develop and implement data breach prevention strategies.
• Establish an incident response plan to contain and mitigate breaches.
• Conduct forensic investigations and assess the impact of breaches.
• Comply with legal and regulatory requirements for breach notification.
• Recover from data breaches and strengthen security postures.

This course offers an expert introduction to the newly enacted Accessibility Law, equipping developers with the practical skills necessary to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the law's importance and implications, the course quickly transitions to hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

The ISO/IEC 27002 Lead Manager training equips you with the essential expertise and knowledge to assist an organisation in implementing and managing Information Security controls as outlined in ISO/IEC 27002.

Upon completing this course, you may sit for the examination and apply for the "PECB Certified ISO/IEC 27002 Lead Manager" credential. A PECB Lead Manager Certification confirms that you have mastered the principles and techniques for implementing and managing Information Security Controls in line with ISO/IEC 27002.

Who should attend?

• Managers or consultants aiming to implement an Information Security Management System (ISMS) based on ISO/IEC 27001 and ISO/IEC 27002
• Project managers or consultants seeking to master the ISMS implementation process
• Individuals responsible for information security, compliance, risk, and governance within an organisation
• Members of information security teams
• Expert advisors in information technology
• Information Security officers
• Privacy officers
• IT professionals
• CTOs, CIOs and CISOs

Learning objectives

• Master the implementation of Information Security controls by adhering to the framework and principles of ISO/IEC 27002
• Gain a comprehensive understanding of the concepts, approaches, standards, methods, and techniques required for the effective implementation and management of Information Security controls
• Comprehend the relationships between the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behaviour
• Understand the significance of information security for the organisation's strategy
• Master the implementation of information security management processes
• Master the formulation and implementation of security requirements and objectives

Educational approach

• This training is grounded in both theory and practice
• Sessions feature lectures illustrated with examples from real-life cases
• Practical exercises based on case studies
• Review exercises to aid exam preparation
• Practice tests similar to the certification examination

General Information

• Certification fees are included in the exam price
• Training material comprising over 500 pages of information and practical examples will be provided to participants
• A participation certificate awarding 31 CPD (Continuing Professional Development) credits will be issued to participants
• In the event of an exam failure, you may retake the exam within 12 months at no additional cost

Information security threats and attacks are escalating and becoming more sophisticated. The most effective defence against these risks is the proper implementation and management of information security controls and best practices. Furthermore, information security is a critical expectation and requirement for customers, legislators, and other interested parties.

This training course is designed to equip participants with the skills to implement an Information Security Management System (ISMS) in accordance with ISO/IEC 27001. It aims to provide a comprehensive understanding of ISMS best practices and establish a framework for its ongoing management and improvement.

Upon completing the training course, you will be eligible to take the exam. If you successfully pass, you can apply for the “PECB Certified ISO/IEC 27001 Lead Implementer” credential, which demonstrates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.

Who Can Attend?

• Project managers and consultants involved in and concerned with the implementation of an ISMS
• Expert advisors seeking to master the implementation of an ISMS
• Individuals responsible for ensuring conformity to information security requirements within an organization
• Members of an ISMS implementation team

General information

• Certification fees are included in the exam price
• Training material containing over 450 pages of information and practical examples will be distributed
• A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued
• In case of exam failure, you can retake the exam within 12 months free of charge

Educational approach

• This training course contains essay-type exercises, multiple-choice quizzes, examples, and best practices used in the implementation of an ISMS.
• The participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
• The exercises are based on a case study.
• The structure of the quizzes is similar to that of the certification exam.

Learning objectives

This training course will help you:

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS
• Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand the operation of an information security management system and its processes based on ISO/IEC 27001
• Learn how to interpret and implement the requirements of ISO/IEC 27001 in the specific context of an organization
• Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an ISMS

Target Audience

This programme is designed for all staff members who need a practical grasp of Compliance and effective Risk Management.

Training Format

The training employs a blended learning strategy that comprises:

• Guided group discussions
• Presentations supported by slides
• Analysis of case studies
• Practical real-world examples

Course Objectives

Upon completion of this course, participants will be capable of:

Gaining a comprehensive understanding of the core elements of Compliance, as well as national and global initiatives focused on managing related risks.

Articulating how organisations and their teams can build an effective Compliance Risk Management Framework.

Outlining the duties of the Compliance Officer and the Money Laundering Reporting Officer, and understanding how these roles fit into the broader business structure.

Pinpointing key risk areas within Financial Crime, especially concerning international operations, offshore centres, and high-net-worth clients.

Open Source Software (OSS) Management entails the oversight of the lifecycle for open-source components within an organization, ensuring their secure, compliant, and efficient utilisation.

This instructor-led, live training (available online or onsite) is designed for intermediate-level IT professionals seeking to implement best practices for managing open-source software in enterprise and government settings.

Upon completion of this training, participants will be capable of:

• Establishing effective OSS policies and governance frameworks.
• Utilising SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Mitigating risks associated with licensing and security vulnerabilities.
• Streamlining OSS adoption while maximising innovation and cost savings.

Course Format

• Interactive lectures and discussions.
• Case studies and scenario-based exercises.
• Hands-on demonstrations using OSS management tools.

Customisation Options

• This course can be tailored to align with specific organisational OSS policies and toolchains. Please contact us to arrange.

This instructor-led, live Payment Card Industry Professional training in Botswana (online or onsite) offers a personal qualification for industry practitioners aiming to showcase their professional expertise and grasp of the PCI Data Security Standard (PCI DSS).

Upon completion of this training, participants will be capable of:

• Grasping the payment process and the PCI standards established to safeguard it.
• Understanding the roles and responsibilities of entities within the payment industry.
• Gaining profound insight into and understanding the 12 PCI DSS requirements.
• Showing knowledge of PCI DSS and its application to organisations involved in the transaction process.

The governance of any organisation is only as strong as its board of directors… and that board is only as effective as its chairman. The role of board leadership is not only critical to board effectiveness but is also the one receiving the least training and support. Board leaders and chief executives frequently clash over power. This course reveals the secrets of the world’s top board leaders, sharing the practical leadership techniques of seasoned board professionals.

Whether you are pursuing your inaugural board position, have recently accepted a board role and need to prepare for that initial meeting, or are part of a company aiming to align rising managers and diverse talent with the essential knowledge required for boardroom inclusion and success, this program is for you. This intensive one-day course equips you with everything necessary to be informed, effective, and fully prepared from the moment you step into the boardroom.