Security Risk and Compliance FastTrack Course

Security Risk and Compliance FastTrack Course 

Since the advent of mankind, there has been need to secure things that are valuable (homes, vehicles, land, sea, water, etc) to us.

No doubt information cum data has become increasingly valuable in this digital age. It is now easy for hackers and malicious actors to circumvent the security of information and data. Organisations are finding it difficult to protect the security of information/data and to keep pace with the compliance landscape from governmental agencies and regulatory bodies.

Any organisation that experiences the data breach suffers significant negative consequences such as but not limited to: loss of customers trust, loss of regulators trust, reputational loss, financial losses, fines, etc. In order to prevent these negative occurrences, and prevent hackers from attacking your organisation, there is an ever compelling need to hire Cyber security professionals that will implement the right security controls that will mitigate cyber threats.

This course will impart and teach practical knowledge and skills required for Cyber Security professionals to hit the ground running from day 1.

Facilitator:

The lead trainer has 15 years post CISSP and have 15 years training experience.

The 2nd trainer has over 15 years post CISSP, multiple InfoSec certifications, extensive experience delivering career oriented Infosec courses.

Course Outline: 

Day 1 

· Introduction to Information Security and fundamental Information Security Concepts

· Introduction of common Governance, Risk and Compliance (GRC) frameworks: ISO 27001/ISO 27002, PCI DSS, Cyber Essentials, 10 Steps to Cyber Security, ISF SoGP, CIS CSC Top 20, NIST 800-53, NIST Cyber Security Framework, COBIT, GDPR/DPA, NHS DSP, ISA 62441, CSA CCM, CSA CAIQ, ISO 27017 etc

Day 2 

· Information Security Risk Assessments

· ISO 27001: ISMS

· ISO 27002: Code of Practice

Day 3 

· Cyber Essentials, PCI DSS, NIST Cyber Security Framework, CIS Controls

Day 4 

· Information Security Policies, Standards and Procedures

· Conducting Information Security Audits

· Review of Business Continuity Planning and Disaster Recovery Planning

· Review of Security Awareness

Day 5 

· Conducting Third Parties/Suppliers/Vendors Security Assessments

· Conducting Projects Security Assurance

· Data Protection (GDPR/DPA 2018)/Data Privacy Audits

· Review of SOC2

· Review of frequently asked interview questions and job specifications

Time: 6pm to 10pm

Who should attend?

This is an introductory course to the field of Information Security Governance, Risk and Compliance (GRC).

Anyone that desire a career change into Information Security such as but not limited to: Software Testers, Business Analysts, PMOs, KYC/AML Analysts, Complaints Handling/PPI Analysts, Accounting/ Law/Business Management graduates, etc that want to expand their skill sets and marketability. Anyone that wants to raise their awareness and knowledge of Information Security.

This course will teach, impart and provide delegates with practical, interactive, expository and real-life examples, case studies, and exercises of Information Security GRC.

Key Take Away(s)

Training slides in pdf, latest book in pdf, flash cards, mind maps, practice tests question banks, video links.

Recommended certifications:

· ISO 27001 Lead Implementer

·  ISO 27001 Lead Auditor

· CISM (ISACA.org Certified Information Security Manager)

Course Requirements:

Delegates require an Internet access enabled laptop or PC or Apple MAC and earpiece to join the online sessions.

Follow-up details:

After the training, delegates will be provided with CV templates, job description points, frequently asked interview questions and 1 year post training mentoring support

Training Costs  £600 excl VAT = £720 total