Business Continuity Practitioner (S-BCP) Training Course

Who is this programme for?

Designed for security professionals keen to grasp both the technical and business dimensions of the role, or for any individual aspiring to build a career in security architecture.

• System administrators who aspire to transition into the role of security architects.
• Technical architects seeking to pivot towards the domain of security architecture.

Additionally, this certificate grants a complimentary certification to those who have been awarded or are pursuing CCP status in Information Assurance.

What will you learn?

Upon completion, candidates will be able to:

• Elaborate on the business environment and the information risks pertinent to the systems.
• Articulate and implement security design principles.
• Spot information risks emerging from potential solution architectures.
• Formulate alternative architectures or countermeasures to mitigate identified information risks.
• Confirm that proposed architectures and countermeasures effectively address the identified information risks.
• Apply ‘standard’ security techniques and architectures to mitigate security risks.
• Develop novel architectures that address risks posed by emerging technologies and business practices.
• Offer consultancy and advice to elucidate Information Assurance and architectural challenges.
• Configure ICT systems in compliance with their approved security architectures.

Who is it for:

Intended for professionals engaged in the fields of information security and information assurance.

What will I learn:

Participants will demonstrate the ability to:

• Explain how effective information risk management delivers substantial business advantages.
• Articulate and utilise information risk management terminology accurately.
• Perform threat and vulnerability assessments, business impact analyses, and risk assessments.
• Understand the principles governing controls and risk treatment.
• Present findings in a format that serves as the foundation for a risk treatment plan.
• Apply information classification schemes effectively.

The Business Impact Analysis (BIA) employs a structured methodology to identify and evaluate the criticality of organisational processes during disruptions.

This consulting engagement is designed for operational and administrative leaders who aim to map, analyse, and document business processes to enhance continuity and resilience.

Upon completion of this engagement, the organisation will be able to:

• Identify critical processes within Finance, Supply Chain, and Quality domains.
• Evaluate the operational, financial, legal, and reputational impacts of potential disruptions.
• Establish recovery priorities (RTO and RPO) for critical processes.
• Develop a process criticality matrix and provide recommendations for continuity planning.

Engagement Format

• Kick-off and scoping sessions.
• Workshops with process owners.
• Analysis of real-life cases and data collection.
• Group sessions to construct causal and impact diagrams.
• Drafting and presentation of the BIA report.

Evaluation Criteria

• Active participation in workshops and data collection (20%).
• Contribution to impact analysis and scenario discussions (40%).
• Validation and feedback on the draft BIA report (40%).

Customisation Options

• To request adjustments to the scope of this engagement, please contact us to arrange.

EC-Council’s CCISO Programme has certified leading information security professionals worldwide. A core group of high-level information security executives, the CCISO Advisory Board, contributed by forming the foundation of the programme and outlining the content that would be covered by the exam, body of knowledge, and training. Some members of the Board contributed as authors, others as exam writers, others as quality assurance checks, and still others as trainers. Each segment of the programme was developed with the aspiring CISO in mind and looks to transfer the knowledge of seasoned professionals to the next generation in the areas that are most critical in the development and maintenance of a successful information security programme.

The Certified CISO (CCISO) programme is the first of its kind training and certification programme aimed at producing top-level information security executives. The CCISO does not focus solely on technical knowledge but on the application of information security management principles from an executive management point of view. The programme was developed by sitting CISOs for current and aspiring CISOs.

Description:

CISA® stands as the world's most recognised and widely adopted certification for professionals engaged in IS auditing and IT risk consulting.

Our CISA course delivers an intensive, highly competitive, and exam-centric training experience. With a proven track record of facilitating over 150 CISA training sessions across Europe and globally, and having trained more than 1,200 delegates, Net Security has developed its in-house CISA training materials with the primary objective of ensuring delegates pass the ISACA CISA® Examination. The training methodology emphasises a deep understanding of CISA IS auditing concepts and extensive practice with large volumes of ISACA-released question banks from the past three years. Over time, CISA holders have seen immense demand from renowned accounting firms, global banks, advisory and assurance divisions, and internal audit departments.

While delegates may possess years of experience in IT auditing, their approach to answering CISA questionnaires will depend entirely on their grasp of globally accepted IT assurance practices. The CISA examination is notoriously challenging due to the close proximity of possible answers, which tests the candidate's nuanced understanding of global IT auditing practices. To address these challenges, we consistently provide expert trainers with extensive international experience in delivering CISA training.

The Net Security CISA manual encompasses all exam-relevant concepts, case studies, and Q&A sessions across the five CISA domains. Additionally, trainers provide key supporting materials throughout the course, including relevant CISA notes, question banks, a CISA glossary, videos, revision documents, exam tips, and CISA mind maps.

Goal:

The ultimate objective is to pass your CISA examination on the first attempt.

Objectives:

• Apply the acquired knowledge in a practical manner that benefits your organisation.
• Deliver audit services in compliance with IT audit standards.
• Provide assurance regarding leadership, organisational structure, and processes.
• Provide assurance on the acquisition, development, testing, and implementation of IT assets.
• Provide assurance on IT operations, including service operations and third-party management.
• Provide assurance on the organisation’s security policies, standards, procedures, and controls to ensure the confidentiality, integrity, and availability of information assets.

Target Audience:

Finance and CPA professionals, IT professionals, internal and external auditors, as well as information security and risk consulting professionals.

This workshop provides comprehensive training supplemented with in-depth knowledge. The curriculum aligns with the official CISA certification framework. Case studies will be analysed to address specific issues during the sessions. Instruction is delivered in English (Polish available upon request), drawing from the ISACA handbook.
 

CISA Exam Content Breakdown:

• Information System Auditing Process (21%)
• Governance and Management of IT (17%)
• Information Systems Acquisition, Development and Implementation (12%)
• Information Systems Operation and Business Resilience (23%)
• Protection of Information Assets (27%)

Exam Duration: 4 hours
Format: Multiple-choice test
Number of Questions: 200

To claim the CISA qualification, you must meet the following requirements: 

1. Pass the CISA exam by achieving a score of 450 or higher.
2. Adhere to the ISACA Code of Professional Ethics.
3. Agree to comply with the CISA Continuing Professional Education Policy.
4. Acquire at least 5 years of professional experience in information systems auditing, control, or security.
5. Comply with Information Systems Auditing Standards.

Once you have passed the exam and believe you satisfy these requirements, you may submit your certification application: apply for certification here
An application fee of $50 applies.

A renewal fee is payable annually to maintain your certification. The cost is $40 per year for ISACA members and $75 for non-members.

This instructor-led, live training in Botswana (online or on-site) is aimed at beginner to intermediate-level system administrators and security professionals who wish to learn how to implement Cloudflare for content delivery and cloud security, as well as mitigate DDoS attacks.

By the end of this training, participants will be able to:

• Configure Cloudflare for their websites.
• Set up DNS records and SSL certificates.
• Implement Cloudflare for content delivery and caching.
• Protect their websites from DDoS attacks.
• Implement firewall rules to restrict traffic to their websites.

Description:

This course serves as an intensive and rigorous preparation for ISACA’s Certified Information Systems Auditor (CRISC) Examination. The curriculum covers the latest four (4) domains of ISACA’s CRISC syllabus, with a strong emphasis on exam readiness. Participants will receive the Official ISACA CRISC Review Manual and the Question, Answer and Explanation (Q,A&E) supplement. The Q,A&E material is particularly valuable, as it assists delegates in understanding the style of questions posed by ISACA, the specific types of answers sought, and facilitates rapid retention of the material.

The technical skills and practices promoted and evaluated by ISACA within the CRISC certification form the foundation of success in this profession. Holding the CRISC certification demonstrates your proficiency within the industry. As the demand for professionals with risk and control expertise continues to grow, ISACA’s CRISC has established itself as the preferred certification program for individuals and enterprises worldwide. The CRISC certification signifies a dedication to serving an enterprise and one’s chosen profession with distinction.

Objectives:

• To assist you in passing the CRISC examination on your first attempt.
• To signify your commitment to serving an enterprise with distinction through this certification.
• To enable holders of this certification to secure better positions and higher salaries, capitalising on the growing demand for professionals with risk and control skills.

You will learn:

• How to help enterprises achieve business objectives by designing, implementing, monitoring, and maintaining risk-based, efficient, and effective IS controls.
• The technical skills and practices advocated by CRISC, which serve as the building blocks for success in the field.

This instructor-led, live training in Botswana (online or onsite) is aimed at intermediate-level IT professionals who wish to enhance their skills in identifying and managing IT risk and implementing information systems controls, and prepare for the CRISC certification exam.

By the end of this training, participants will be able to:

• Understand the governance and risk management aspects of IT.
• Conduct IT risk assessments and implement risk responses.
• Design and implement information systems controls.
• Prepare effectively for the CRISC certification exam.

This instructor-led, live training in Botswana (online or on-site) is aimed at intermediate-level to advanced-level IT professionals and business leaders who wish to develop a structured approach to handling data breaches.

By the end of this training, participants will be able to:

• Understand the causes and consequences of data breaches.
• Develop and implement data breach prevention strategies.
• Establish an incident response plan to contain and mitigate breaches.
• Conduct forensic investigations and assess the impact of breaches.
• Comply with legal and regulatory requirements for breach notification.
• Recover from data breaches and strengthen security postures.

This instructor-led, live training in Botswana (online or on-site) is targeted at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

Description:

This course represents the non-certified variant of the "CISA - Certified Information Systems Auditor" programme. CISA® stands as the globally recognised and most widely adopted certification for professionals operating within the realms of IS audit and IT risk consulting.

Objectives:

• Apply the acquired knowledge to add value to your organisation
• Deliver audit services that align with established IT audit standards
• Assure leadership and organisational structures and processes
• Assure the acquisition, development, testing, and implementation of IT assets
• Assure IT operations, including service operations and third-party management
• Assure the organisation’s security policies, standards, procedures, and controls to safeguard the confidentiality, integrity, and availability of information assets.

Target Audience:

Finance and CPA professionals, IT professionals, Internal and External auditors, as well as information security and risk consulting specialists.

This instructor-led, live training in Botswana (online or on-site) is tailored for security engineers who want to leverage IBM QRadar SIEM to tackle urgent security use cases.

By the end of this training, participants will be able to:

• Gain visibility into enterprise data across on-premise and cloud environments.
• Automate security intelligence to hunt threats and contain risks.
• Detect, identify, and prioritize threats.

This class will assist you to:

• Deploy high-availability email protection against dynamic, rapidly evolving threats affecting your organisation
• Gain leading-edge career skills focused on enterprise security

Objectives

After completing this course, you should be able to:

• Describe and administer the Cisco Email Security Appliance (ESA)
• Control sender and recipient domains
• Control spam using Talos SenderBase and anti-spam technologies
• Utilise anti-virus and outbreak filters
• Configure mail policies
• Implement content filters
• Use message filters to enforce email policies
• Prevent data loss
• Perform LDAP queries
• Authenticate Simple Mail Transfer Protocol (SMTP) sessions
• Authenticate email
• Encrypt email
• Utilise system quarantines and delivery methods
• Perform centralized management using clusters
• Test and troubleshoot

This instructor-led live training in Botswana (online or on-site) is designed for developers who wish to incorporate Snyk into their development tools to identify and resolve security issues in their code.

Upon completion of this training, participants will be able to:

• Grasp the features and architecture of Snyk.
• Utilise Snyk to identify and fix code security problems.
• Integrate Snyk into the software development lifecycle.