PECB ISO 27001:2022 Transition Training Course

This instructor-led, live training in South Africa (online or onsite) is designed for payment services compliance professionals who wish to develop, implement, and enforce a compliance programme within their organisation.

Upon completion of this training, participants will be able to:

• Gain a clear understanding of the regulations imposed by government regulators on payment service providers.
• Develop the internal policies and procedures necessary to meet regulatory requirements.
• Implement a compliance programme that aligns with applicable laws.
• Ensure that all corporate processes and procedures adhere to the compliance programme.
• Protect the business's reputation and shield it from legal action.

This instructor-led, live training in South Africa (online or on-site) is aimed at intermediate-level cybersecurity professionals who wish to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

By the end of this training, participants will be able to:

• Understand the key components of cybersecurity governance, risk, and compliance.
• Conduct risk assessments and develop risk mitigation strategies.
• Implement compliance measures and manage regulatory requirements.
• Develop and enforce security policies and procedures.

This course offers an expert-led introduction to the newly enacted Accessibility Law, empowering developers with the practical skills needed to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the law's significance and implications, the course transitions rapidly to hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

This instructor-led, live training in South Africa (online or onsite) is designed for developers and administrators who wish to produce software and products that are HiTRUST compliant.

Upon completion of this training, participants will be able to:

• Grasp the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Gain insight into the various types of HiTrust assessments and scoring mechanisms.
• Understand the certification process and requirements for HiTrust compliance.
• Acquire best practices and tips for adopting the HiTrust approach.

Objectives

• Acquiring comprehensive knowledge of ISO 27001:2023
• Learning how to conduct audits in line with the standard
• Understanding industry best practices

Objectives

• Acquiring a thorough understanding of ISO 27001:2023
• Learning how to conduct audits in alignment with the standard
• Exploring industry best practices

Learning Outcomes

• Acquire insight into the updates introduced in the ISO 27001 2023 edition.
• Understand how to conduct audits in alignment with the standard.
• Discover industry best practices.

Why participate in this training?

Attending the ISO/IEC 27001 Foundation training equips you with the essential knowledge to implement and manage an Information Security Management System (ISMS) in accordance with ISO/IEC 27001. Throughout this course, you will gain a comprehensive understanding of ISMS components, including ISMS policies and procedures, performance metrics, management commitment, internal auditing, management reviews, and continuous improvement strategies.

Upon successful completion of this course, you will be eligible to take the examination and apply for the “PECB Certified ISO/IEC 27001 Foundation” credential. Holding a PECB Foundation Certificate demonstrates that you have grasped the core methodologies, requirements, framework, and management approach associated with the standard.

Who is this course for?

• Professionals involved in Information Security Management
• Individuals wishing to acquire knowledge about the primary processes of Information Security Management Systems (ISMS)
• Those interested in pursuing a career in Information Security Management

Learning methodology

• Lectures are supported by practical questions and real-world examples
• Practical exercises incorporate examples and group discussions
• Practice tests mirror the format of the Certification Exam

ISO/IEC 27002 Lead Manager training equips you with the essential expertise and knowledge to assist organisations in implementing and managing Information Security controls as outlined in ISO/IEC 27002.

Upon completing this course, you may sit for the exam and apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. Achieving a PECB Lead Manager Certification demonstrates that you have mastered the principles and techniques for implementing and managing Information Security Controls based on ISO/IEC 27002.

Who should attend?

• Managers or consultants aiming to implement an Information Security Management System (ISMS) based on ISO/IEC 27001 and ISO/IEC 27002
• Project managers or consultants seeking to master the implementation process of an Information Security Management System
• Individuals responsible for information security, compliance, risk, and governance within an organisation
• Members of information security teams
• Expert advisors in information technology
• Information Security officers
• Privacy officers
• IT professionals
• CTOs, CIOs, and CISOs

Learning objectives

• Master the implementation of Information Security controls in accordance with the framework and principles of ISO/IEC 27002
• Gain a comprehensive understanding of the concepts, approaches, standards, methods, and techniques required for the effective implementation and management of Information Security controls
• Comprehend the interrelationships between the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behaviour
• Understand the significance of information security for organisational strategy
• Master the implementation of information security management processes
• Master the formulation and implementation of security requirements and objectives

Educational approach

• This training is grounded in both theory and practice
• Lectures supplemented with examples based on real-world cases
• Practical exercises derived from case studies
• Review exercises designed to aid exam preparation
• Practice tests that mirror the certification exam

General Information

• Certification fees are included in the exam price
• Training materials comprising over 500 pages of information and practical examples will be distributed to participants
• A participation certificate awarding 31 CPD (Continuing Professional Development) credits will be issued to participants
• In the event of an exam failure, you may retake the exam within 12 months at no additional cost

Information security threats and attacks are constantly evolving and improving. The most effective defence against these risks is the proper implementation and management of information security controls and best practices. Furthermore, information security is a critical expectation and requirement for customers, legislators, and other interested parties.

This training course is designed to prepare participants for implementing an information security management system (ISMS) in accordance with ISO/IEC 27001. It aims to provide a comprehensive understanding of ISMS best practices and a framework for its ongoing management and improvement.

Upon completing the training course, you may sit for the exam. If you pass successfully, you can apply for the "PECB Certified ISO/IEC 27001 Lead Implementer" credential, which demonstrates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.

Who Can Attend?

• Project managers and consultants involved in and concerned with the implementation of an ISMS
• Expert advisors seeking to master the implementation of an ISMS
• Individuals responsible for ensuring conformity to information security requirements within an organisation
• Members of an ISMS implementation team

General information

• Certification fees are included in the exam price
• Training material containing over 450 pages of information and practical examples will be distributed
• A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued
• In case of exam failure, you can retake the exam within 12 months free of charge

Educational approach

• This training course contains essay-type exercises, multiple-choice quizzes, examples, and best practices used in the implementation of an ISMS.
• Participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
• The exercises are based on a case study.
• The structure of the quizzes is similar to that of the certification exam.

Learning objectives

This training course will help you:

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS
• Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand the operation of an information security management system and its processes based on ISO/IEC 27001
• Learn how to interpret and implement the requirements of ISO/IEC 27001 in the specific context of an organisation
• Acquire the necessary knowledge to support an organisation in effectively planning, implementing, managing, monitoring, and maintaining an ISMS

ISO 9001 and ISO 27001 are globally recognised standards governing quality management systems and information security management systems, respectively.

This instructor-led training, available both online and onsite, is tailored for intermediate-level professionals keen on interpreting these ISO standards and conducting effective internal audits.

Upon completion of this training, participants will be equipped to:

• Grasp the core principles and requirements of ISO 9001 and ISO 27001.
• Interpret specific clauses and controls within practical, real-world contexts.
• Plan and execute internal audits that align with ISO standards.
• Identify nonconformities and propose appropriate corrective actions.

Course Format

• Interactive lectures and group discussions.
• Simulated auditing exercises and case studies.
• Hands-on analysis of quality and security scenarios.

Customisation Options

• For bespoke training arrangements, please contact us to discuss your specific needs.

Audience

This programme is designed for all staff members seeking a practical grasp of Compliance principles and effective Risk Management strategies.

Course Format

The training employs a blended learning methodology comprising:

• Guided discussions led by facilitators
• Slide-based presentations
• Case study analysis
• Practical, real-world examples

Course Objectives

Upon completion of this course, participants will be equipped to:

Gain a comprehensive understanding of core Compliance concepts, alongside national and international frameworks designed to manage related risks.

Articulate how organisations and their teams can implement a robust Compliance Risk Management Framework.

Clarify the duties of Compliance Officers and Money Laundering Reporting Officers, and understand how these roles fit into the broader business structure.

Recognise key risk areas within Financial Crime, with a specific focus on international operations, offshore jurisdictions, and high-net-worth client interactions.

Open Source Software (OSS) Management involves supervising the entire lifecycle of open-source components within an organisation to ensure their use is secure, compliant, and efficient.

This instructor-led, live training (delivered online or onsite) is designed for intermediate-level IT professionals who wish to implement best practices for managing open-source software in enterprise and government environments.

By the end of this training, participants will be able to:

• Establish effective OSS policies and governance frameworks.
• Use SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Mitigate risks associated with licensing and security vulnerabilities.
• Streamline OSS adoption while maximising innovation and cost savings.

Format of the Course

• Interactive lecture and discussion.
• Case studies and scenario-based exercises.
• Hands-on demonstrations with OSS management tools.

Course Customization Options

• This course can be tailored to specific organisational OSS policies and toolchains. Please contact us to arrange.

This instructor-led, live Payment Card Industry Professional training in South Africa (online or onsite) offers a professional qualification for industry practitioners who wish to demonstrate their expertise and understanding of the PCI Data Security Standard (PCI DSS).

By the end of this training, participants will be able to:

• Grasp the payment process and the PCI standards designed to safeguard it.
• Comprehend the roles and responsibilities of entities within the payment industry.
• Gain deep insight into and understanding of the 12 PCI DSS requirements.
• Demonstrate knowledge of PCI DSS and its application to organizations involved in the transaction process.