ISO/IEC 27002 Introduction Training Course

Combating money laundering is a priority on the global stage. Compliance officers, AML Officers, MLROs, KYC analysts, auditors, and managers must understand how to ensure adherence to Subsidiary 373.01, the Prevention of Money Laundering and Funding of Terrorism Regulations (PMLFTR).

Under the PMLFTR, all Subject Persons, including those within the regulated financial services sector, are mandated to appoint a Money Laundering Reporting Officer (MLRO).

This practical course provides you with the knowledge and essential guidance on how to approach AML compliance within your organisation, with specific attention to the regulatory environment in Malta.

Description:

This four-day intensive programme (CGEIT training) serves as the definitive preparation for the examination period. It is meticulously crafted to ensure that delegates achieve a successful pass on the challenging CGEIT exam during their first attempt.
The CGEIT qualification stands as an internationally recognised hallmark of excellence in IT governance, awarded by ISACA. It is tailored for professionals who bear responsibility for managing IT governance or who hold significant advisory or assurance roles within IT governance.
Earning CGEIT status will grant you broader recognition in the marketplace and enhance your influence at the executive level.

Objectives:

This seminar has been designed to equip delegates for the CGEIT examination by enabling them to augment their existing knowledge and understanding, thereby better positioning them to pass the exam as defined by ISACA.

Target Audience:

Our training course is intended for IT and business professionals who possess significant IT governance experience and are undertaking the CGEIT exam.

This instructor-led, live training in Botswana (online or onsite) is designed for compliance professionals in the payment services sector who aim to establish, implement, and enforce a robust compliance programme within their organisation.

Upon completion of this training, participants will be able to:

• Grasp the regulatory requirements set by government authorities for payment service providers.
• Develop the internal policies and procedures necessary to meet regulatory obligations.
• Implement a compliance programme that aligns with applicable laws.
• Ensure that all corporate processes and procedures adhere to the established compliance programme.
• Safeguard the business's reputation while protecting it against legal action.

This instructor-led, live training in Botswana (online or onsite) is aimed at intermediate-level cybersecurity professionals who wish to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

By the end of this training, participants will be able to:

• Understand the key components of cybersecurity governance, risk, and compliance.
• Conduct risk assessments and develop risk mitigation strategies.
• Implement compliance measures and manage regulatory requirements.
• Develop and enforce security policies and procedures.

This course offers an expert introduction to the newly enacted Accessibility Law, equipping developers with the practical skills necessary to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the law's importance and implications, the course quickly transitions to hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

This instructor-led, live training in Botswana (online or on-site) is targeted at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

Objectives

• Acquire comprehensive knowledge of ISO 27001:2023
• Understand how to conduct audits in alignment with the standard
• Familiarise yourself with established best practices

Objectives

• Acquiring comprehensive knowledge of ISO 27001:2023
• Understanding the procedures for conducting audits in compliance with the standard
• Learning industry best practices

Objectives

• Gaining knowledge about changes to ISO 27001 2023 edition
• Gaining knowledge on how to audit in accordance with the standard
• Getting to know good practices

Why should you attend?

The ISO/IEC 27001 Foundation training equips you with the essential knowledge to implement and manage an Information Security Management System (ISMS) in accordance with the ISO/IEC 27001 standard. Throughout this course, you will gain a comprehensive understanding of the various ISMS components, such as ISMS policies, procedures, performance metrics, management commitment, internal audits, management reviews, and continual improvement processes.

Upon completing this course, you will be eligible to sit for the examination and apply for the “PECB Certified ISO/IEC 27001 Foundation” certification. Earning a PECB Foundation Certificate demonstrates that you have grasped the fundamental methodologies, requirements, framework, and management approaches associated with the standard.

Who should attend?

• Professionals involved in Information Security Management
• Individuals wishing to acquire knowledge about the core processes of Information Security Management Systems (ISMS)
• Those interested in pursuing a career in Information Security Management

Educational approach

• Lecture sessions are reinforced with practical questions and examples
• Practical exercises incorporate examples and group discussions
• Practice tests mirror the format of the actual Certification Exam

The ISO/IEC 27002 Lead Manager training equips you with the essential expertise and knowledge to assist an organisation in implementing and managing Information Security controls as outlined in ISO/IEC 27002.

Upon completing this course, you may sit for the examination and apply for the "PECB Certified ISO/IEC 27002 Lead Manager" credential. A PECB Lead Manager Certification confirms that you have mastered the principles and techniques for implementing and managing Information Security Controls in line with ISO/IEC 27002.

Who should attend?

• Managers or consultants aiming to implement an Information Security Management System (ISMS) based on ISO/IEC 27001 and ISO/IEC 27002
• Project managers or consultants seeking to master the ISMS implementation process
• Individuals responsible for information security, compliance, risk, and governance within an organisation
• Members of information security teams
• Expert advisors in information technology
• Information Security officers
• Privacy officers
• IT professionals
• CTOs, CIOs and CISOs

Learning objectives

• Master the implementation of Information Security controls by adhering to the framework and principles of ISO/IEC 27002
• Gain a comprehensive understanding of the concepts, approaches, standards, methods, and techniques required for the effective implementation and management of Information Security controls
• Comprehend the relationships between the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behaviour
• Understand the significance of information security for the organisation's strategy
• Master the implementation of information security management processes
• Master the formulation and implementation of security requirements and objectives

Educational approach

• This training is grounded in both theory and practice
• Sessions feature lectures illustrated with examples from real-life cases
• Practical exercises based on case studies
• Review exercises to aid exam preparation
• Practice tests similar to the certification examination

General Information

• Certification fees are included in the exam price
• Training material comprising over 500 pages of information and practical examples will be provided to participants
• A participation certificate awarding 31 CPD (Continuing Professional Development) credits will be issued to participants
• In the event of an exam failure, you may retake the exam within 12 months at no additional cost

Information security threats and attacks are escalating and becoming more sophisticated. The most effective defence against these risks is the proper implementation and management of information security controls and best practices. Furthermore, information security is a critical expectation and requirement for customers, legislators, and other interested parties.

This training course is designed to equip participants with the skills to implement an Information Security Management System (ISMS) in accordance with ISO/IEC 27001. It aims to provide a comprehensive understanding of ISMS best practices and establish a framework for its ongoing management and improvement.

Upon completing the training course, you will be eligible to take the exam. If you successfully pass, you can apply for the “PECB Certified ISO/IEC 27001 Lead Implementer” credential, which demonstrates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.

Who Can Attend?

• Project managers and consultants involved in and concerned with the implementation of an ISMS
• Expert advisors seeking to master the implementation of an ISMS
• Individuals responsible for ensuring conformity to information security requirements within an organization
• Members of an ISMS implementation team

General information

• Certification fees are included in the exam price
• Training material containing over 450 pages of information and practical examples will be distributed
• A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued
• In case of exam failure, you can retake the exam within 12 months free of charge

Educational approach

• This training course contains essay-type exercises, multiple-choice quizzes, examples, and best practices used in the implementation of an ISMS.
• The participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
• The exercises are based on a case study.
• The structure of the quizzes is similar to that of the certification exam.

Learning objectives

This training course will help you:

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS
• Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand the operation of an information security management system and its processes based on ISO/IEC 27001
• Learn how to interpret and implement the requirements of ISO/IEC 27001 in the specific context of an organization
• Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an ISMS

ISO 9001 and ISO 27001 are internationally recognized standards for quality and information security management systems, respectively.

This instructor-led, live training (online or onsite) is aimed at intermediate-level professionals who wish to interpret ISO 9001 and ISO 27001 standards and perform internal audits effectively.

By the end of this training, participants will be able to:

• Grasp the principles and requirements of ISO 9001 and ISO 27001.
• Interpret the clauses and controls in real-world contexts.
• Plan and conduct internal audits aligned with ISO standards.
• Identify nonconformities and recommend corrective actions.

Format of the Course

• Interactive lecture and discussion.
• Simulated auditing exercises and case studies.
• Hands-on analysis of quality and security scenarios.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

This instructor-led, live training in Botswana (available online or onsite) is targeted at intermediate to expert-level IT professionals seeking to advance their skills and qualifications in information security or related areas.

By the end of this training, participants will be able to:

• Understand the differences between ISO/IEC 27001:2013 and ISO/IEC 27001:2022.
• Gain the knowledge and skills to plan and implement the transition from the 2013 to the 2022 version of the standard efficiently.
• Apply the knowledge in real-world scenarios, facilitating a smooth transition in their respective organizations.