Open Authentication (OAuth) Training Course

This instructor-led, live training in South Africa (online or onsite) is designed for intermediate-level IT auditors who wish to effectively incorporate AI tools into their auditing practices.

Upon completion of this training, participants will be able to:

• Understand the fundamental concepts of artificial intelligence and its application within the context of IT auditing.
• Leverage AI technologies, including machine learning, natural language processing (NLP), and robotic process automation (RPA), to enhance audit efficiency, accuracy, and scope.
• Conduct risk assessments using AI tools, facilitating continuous monitoring and proactive risk management.
• Integrate AI into audit planning, execution, and reporting, thereby improving the overall effectiveness of IT audits.

This instructor-led, live training in South Africa (online or onsite) is aimed at advanced-level security analysts who wish to elevate their skills in utilizing advanced Micro Focus ArcSight ESM content to improve an organization's ability to detect, respond, and mitigate cyber threats with greater precision and speed.

By the end of this training, participants will be able to:

• Optimize the use of Micro Focus ArcSight ESM to enhance monitoring and threat detection capabilities.
• Construct and manage advanced ArcSight variables to refine event streams for more precise analysis.
• Develop and implement ArcSight lists and rules for effective event correlation and alerting.
• Apply advanced correlation techniques to identify complex threat patterns and reduce false positives.

Description:

Please note that the updated CISM exam content outline applies to examinations commencing on 1 June 2022.

CISM® stands as the most prestigious and rigorous qualification for Information Security Managers worldwide. This credential offers a pathway to join an elite network of peers who are equipped to continuously learn and adapt to the expanding opportunities and challenges within Information Security Management.

Our CISM training methodology delivers comprehensive coverage of the four CISM domains, with a clear emphasis on building conceptual understanding and solving ISACA-published CISM exam questions. This course serves as intensive training and rigorous exam preparation for ISACA’s Certified Information Security Manager (CISM®) Examination.

Our instructors strongly recommend that all participants review the ISACA-published CISM QA&E (Questions, Answers and Explanations) as part of their exam preparation. The QA&E is invaluable in helping participants grasp the style of ISACA questions, understand the approach to solving them, and rapidly assimilate CISM concepts during live classroom sessions.
All our trainers possess extensive experience in delivering CISM training. We will thoroughly prepare you for the CISM examination.

Goal:

The primary objective is to help you pass your CISM examination on your first attempt.

Objectives:

• Apply gained knowledge in a practical manner that benefits your organisation
• Establish and maintain an information security governance framework to achieve your organization’s goals and objectives
• Manage information risk to an acceptable level to meet business and compliance requirements
• Establish and maintain information security architectures (people, process, technology)
• Integrate information security requirements into contracts and activities of third parties/ suppliers
• Plan, establish and manage the capability to detect, investigate, respond to, and recover from information security incidents to minimise business impact

Target Audience:

• Security professionals with 3-5 years of front-line experience
• Information security managers or individuals with management responsibilities
• Information security staff and assurance providers requiring an in-depth understanding of information security management, including: CISOs, CIOs, CSOs, privacy officers, risk managers, security auditors, compliance personnel, BCP/DR personnel, and executive and operational managers responsible for assurance functions

This instructor-led, live training in South Africa (online or onsite) is designed for payment services compliance professionals who wish to develop, implement, and enforce a compliance programme within their organisation.

Upon completion of this training, participants will be able to:

• Gain a clear understanding of the regulations imposed by government regulators on payment service providers.
• Develop the internal policies and procedures necessary to meet regulatory requirements.
• Implement a compliance programme that aligns with applicable laws.
• Ensure that all corporate processes and procedures adhere to the compliance programme.
• Protect the business's reputation and shield it from legal action.

This instructor-led, live training in South Africa (online or on-site) is aimed at intermediate-level cybersecurity professionals who wish to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

By the end of this training, participants will be able to:

• Understand the key components of cybersecurity governance, risk, and compliance.
• Conduct risk assessments and develop risk mitigation strategies.
• Implement compliance measures and manage regulatory requirements.
• Develop and enforce security policies and procedures.

Overview:

Cybersecurity expertise is currently in high demand, as organisations worldwide continue to face persistent digital threats. A significant majority of professionals surveyed by ISACA acknowledge this trend and intend to pursue roles that require cybersecurity proficiency.
To address this industry need, ISACA has introduced the Cybersecurity Fundamentals Certificate, which offers both education and formal verification of skills in this critical domain.

Key Objectives:

With cyber threats escalating and a global shortage of skilled security professionals intensifying, ISACA's Cybersecurity Fundamentals Certificate programme provides an efficient pathway to train entry-level staff. It ensures they acquire the necessary skills and knowledge to operate effectively within the cybersecurity landscape.

Target Audience:

This certificate programme is one of the most effective ways to acquire foundational cybersecurity knowledge and begin building your expertise in this essential field.

This instructor-led, live training (available online or onsite) is tailored for enterprise leaders aiming to understand data sovereignty principles and develop compliant data management strategies.

By the end of this training, participants will be capable of defining data sovereignty, identifying relevant laws, assessing compliance risks, and implementing governance frameworks for cross-border data management.

In this instructor-led, live course in South Africa, participants will learn how to formulate the proper security strategy to face the DevOps security challenge.

This course offers an expert-led introduction to the newly enacted Accessibility Law, empowering developers with the practical skills needed to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the law's significance and implications, the course transitions rapidly to hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

This instructor-led, live training in South Africa (online or onsite) is designed for developers and administrators who wish to produce software and products that are HiTRUST compliant.

Upon completion of this training, participants will be able to:

• Grasp the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Gain insight into the various types of HiTrust assessments and scoring mechanisms.
• Understand the certification process and requirements for HiTrust compliance.
• Acquire best practices and tips for adopting the HiTrust approach.

ISO/IEC 27002 Lead Manager training equips you with the essential expertise and knowledge to assist organisations in implementing and managing Information Security controls as outlined in ISO/IEC 27002.

Upon completing this course, you may sit for the exam and apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. Achieving a PECB Lead Manager Certification demonstrates that you have mastered the principles and techniques for implementing and managing Information Security Controls based on ISO/IEC 27002.

Who should attend?

• Managers or consultants aiming to implement an Information Security Management System (ISMS) based on ISO/IEC 27001 and ISO/IEC 27002
• Project managers or consultants seeking to master the implementation process of an Information Security Management System
• Individuals responsible for information security, compliance, risk, and governance within an organisation
• Members of information security teams
• Expert advisors in information technology
• Information Security officers
• Privacy officers
• IT professionals
• CTOs, CIOs, and CISOs

Learning objectives

• Master the implementation of Information Security controls in accordance with the framework and principles of ISO/IEC 27002
• Gain a comprehensive understanding of the concepts, approaches, standards, methods, and techniques required for the effective implementation and management of Information Security controls
• Comprehend the interrelationships between the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behaviour
• Understand the significance of information security for organisational strategy
• Master the implementation of information security management processes
• Master the formulation and implementation of security requirements and objectives

Educational approach

• This training is grounded in both theory and practice
• Lectures supplemented with examples based on real-world cases
• Practical exercises derived from case studies
• Review exercises designed to aid exam preparation
• Practice tests that mirror the certification exam

General Information

• Certification fees are included in the exam price
• Training materials comprising over 500 pages of information and practical examples will be distributed to participants
• A participation certificate awarding 31 CPD (Continuing Professional Development) credits will be issued to participants
• In the event of an exam failure, you may retake the exam within 12 months at no additional cost

Information security threats and attacks are constantly evolving and improving. The most effective defence against these risks is the proper implementation and management of information security controls and best practices. Furthermore, information security is a critical expectation and requirement for customers, legislators, and other interested parties.

This training course is designed to prepare participants for implementing an information security management system (ISMS) in accordance with ISO/IEC 27001. It aims to provide a comprehensive understanding of ISMS best practices and a framework for its ongoing management and improvement.

Upon completing the training course, you may sit for the exam. If you pass successfully, you can apply for the "PECB Certified ISO/IEC 27001 Lead Implementer" credential, which demonstrates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.

Who Can Attend?

• Project managers and consultants involved in and concerned with the implementation of an ISMS
• Expert advisors seeking to master the implementation of an ISMS
• Individuals responsible for ensuring conformity to information security requirements within an organisation
• Members of an ISMS implementation team

General information

• Certification fees are included in the exam price
• Training material containing over 450 pages of information and practical examples will be distributed
• A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued
• In case of exam failure, you can retake the exam within 12 months free of charge

Educational approach

• This training course contains essay-type exercises, multiple-choice quizzes, examples, and best practices used in the implementation of an ISMS.
• Participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
• The exercises are based on a case study.
• The structure of the quizzes is similar to that of the certification exam.

Learning objectives

This training course will help you:

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS
• Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand the operation of an information security management system and its processes based on ISO/IEC 27001
• Learn how to interpret and implement the requirements of ISO/IEC 27001 in the specific context of an organisation
• Acquire the necessary knowledge to support an organisation in effectively planning, implementing, managing, monitoring, and maintaining an ISMS

Audience

This programme is designed for all staff members seeking a practical grasp of Compliance principles and effective Risk Management strategies.

Course Format

The training employs a blended learning methodology comprising:

• Guided discussions led by facilitators
• Slide-based presentations
• Case study analysis
• Practical, real-world examples

Course Objectives

Upon completion of this course, participants will be equipped to:

Gain a comprehensive understanding of core Compliance concepts, alongside national and international frameworks designed to manage related risks.

Articulate how organisations and their teams can implement a robust Compliance Risk Management Framework.

Clarify the duties of Compliance Officers and Money Laundering Reporting Officers, and understand how these roles fit into the broader business structure.

Recognise key risk areas within Financial Crime, with a specific focus on international operations, offshore jurisdictions, and high-net-worth client interactions.

Open Source Software (OSS) Management involves supervising the entire lifecycle of open-source components within an organisation to ensure their use is secure, compliant, and efficient.

This instructor-led, live training (delivered online or onsite) is designed for intermediate-level IT professionals who wish to implement best practices for managing open-source software in enterprise and government environments.

By the end of this training, participants will be able to:

• Establish effective OSS policies and governance frameworks.
• Use SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Mitigate risks associated with licensing and security vulnerabilities.
• Streamline OSS adoption while maximising innovation and cost savings.

Format of the Course

• Interactive lecture and discussion.
• Case studies and scenario-based exercises.
• Hands-on demonstrations with OSS management tools.

Course Customization Options

• This course can be tailored to specific organisational OSS policies and toolchains. Please contact us to arrange.

This instructor-led, live Payment Card Industry Professional training in South Africa (online or onsite) offers a professional qualification for industry practitioners who wish to demonstrate their expertise and understanding of the PCI Data Security Standard (PCI DSS).

By the end of this training, participants will be able to:

• Grasp the payment process and the PCI standards designed to safeguard it.
• Comprehend the roles and responsibilities of entities within the payment industry.
• Gain deep insight into and understanding of the 12 PCI DSS requirements.
• Demonstrate knowledge of PCI DSS and its application to organizations involved in the transaction process.