Security Policy Management Training Course

This instructor-led live training, delivered Bulgaria (online or onsite), is targeted at intermediate-level IT auditors aiming to effectively integrate AI tools into their audit workflows.

By the conclusion of this training, participants will be able to:

• Grasp the core concepts of artificial intelligence and its relevance to IT auditing.
• Utilize AI technologies such as machine learning, NLP, and RPA to improve audit efficiency, accuracy, and scope.
• Perform risk assessments using AI tools, enabling continuous monitoring and proactive risk management.
• Integrate AI into audit planning, execution, and reporting, enhancing the overall effectiveness of IT audits.

This instructor-led, live training in Bulgaria (online or onsite) is targeted at advanced-level security analysts seeking to enhance their proficiency in leveraging advanced Micro Focus ArcSight ESM capabilities to improve an organization's ability to detect, respond, and mitigate cyber threats with greater precision and speed.

By the end of this training, participants will be able to:

• Optimize the use of Micro Focus ArcSight ESM to enhance monitoring and threat detection capabilities.
• Construct and manage advanced ArcSight variables to refine event streams for more precise analysis.
• Develop and implement ArcSight lists and rules for effective event correlation and alerting.
• Apply advanced correlation techniques to identify complex threat patterns and reduce false positives.

This instructor-led, live training in Bulgaria (online or onsite) is designed for security managers who wish to learn basic to intermediate-level CCTV security surveillance and management skills.

By the end of this training, participants will be able to:

• Familiarize themselves with the types of CCTV systems and understand their benefits and features.
• Understand cabling and CCTV system setup requirements.
• Install, configure, and manage CCTV systems.

This instructor-led, live training in Bulgaria (online or onsite) is designed for advanced-level professionals who wish to gain a comprehensive understanding of fraud examination concepts and prepare for the Certified Fraud Examiner (CFE) exam.

Upon completion of this training, participants will be able to:

• Acquire in-depth knowledge of fraud examination principles and the overall fraud examination process.
• Learn to identify, investigate, and prevent various types of financial fraud schemes.
• Understand the legal framework surrounding fraud, including its legal elements, applicable laws, and regulations.
• Develop practical skills for conducting fraud investigations, such as evidence collection, interviewing techniques, and data analysis.
• Learn to design and implement effective fraud prevention and deterrence programs within organizations.
• Gain the confidence and expertise needed to successfully pass the Certified Fraud Examiner (CFE) exam.

This instructor-led, live training in Bulgaria (online or onsite) is aimed at IT professionals who wish to understand how to use the CipherTrust Solution suite.

By the end of this training, participants will be able to:

• Understand the CipherTrust Solution and its basic functions.
• Evaluate device architecture and usage schemes.
• Manage CipherTrust product suite.

Description:

Note: Kindly note that this updated CISM exam content outline applies to exams beginning on 1 June 2022.

CISM® stands as the most prestigious and rigorous qualification for Information Security Managers worldwide today. This certification offers you a platform to join an exclusive peer network of professionals capable of continuously learning and adapting to the evolving opportunities and challenges in Information Security Management.

Our CISM training methodology provides comprehensive coverage of the content across the Four CISM domains, with a clear focus on building conceptual understanding and practicing with ISACA-published CISM exam questions. The course serves as intensive training and rigorous exam preparation for ISACA’s Certified Information Security Manager (CISM®) Examination.

Our instructors encourage all participating delegates to review the ISACA-published CISM QA&E (Questions, Answers, and Explanations) as part of their exam preparation. The QA&E is exceptional in helping delegates understand the style of ISACA questions, the approach to solving them, and facilitates rapid assimilation of CISM concepts during live classroom sessions.
All our trainers possess extensive experience in delivering CISM training. We will thoroughly prepare you for the CISM examination.

Goal:

The primary objective is to pass your CISM examination on the first attempt.

Objectives:

• Apply the knowledge gained in a practical manner that benefits your organization
• Establish and maintain an Information security governance framework to achieve your organization's goals and objectives
• Manage Information risk to an acceptable level to meet business and compliance requirements
• Establish and maintain information security architectures (people, process, technology)
• Integrate information security requirements into contracts and activities of third parties/ suppliers
• Plan, establish, and manage the capability to detect, investigate, respond to, and recover from information security incidents to minimize business impact

Target Audience:

• Security professionals with 3-5 years of front-line experience
• Information security managers or those with management responsibilities
• Information security staff, information security assurance providers who require an in-depth understanding of information security management including: CISO’s, CIO’s, CSO’s, privacy officers, risk managers, security auditors, compliance personnel, BCP / DR personnel, executive and operational managers responsible for assurance functions

This instructor-led, live training in Bulgaria (available online or onsite) is designed for compliance professionals in the payment services industry who wish to create, implement, and enforce a compliance program within their organizations.

By the end of this training, participants will be able to:

• Understand the rules set forth by government regulators for payment service providers.
• Create the internal policies and procedures needed to satisfy government regulations.
• Implement a compliance program that adheres to relevant laws.
• Ensure that all corporate processes and procedures comply with the compliance program.
• Uphold the business's reputation while protecting it from lawsuits.

This instructor-led, live training in Bulgaria (online or onsite) is designed for intermediate-level cybersecurity professionals who aim to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

Upon completion of this training, participants will be equipped to:

• Grasp the fundamental elements of cybersecurity governance, risk, and compliance.
• Perform risk assessments and formulate strategies to mitigate identified risks.
• Execute compliance measures and handle regulatory obligations effectively.
• Create and enforce robust security policies and procedures.

Description:

Cybersecurity expertise is in high demand as global enterprises face persistent threats. A vast majority of professionals surveyed by ISACA acknowledge this trend and intend to pursue roles requiring cybersecurity knowledge. To address this need, ISACA has introduced the Cybersecurity Fundamentals Certificate, designed to educate and validate skills in this critical field.

Objectives:

Amidst rising cybersecurity threats and a growing global shortage of qualified professionals, ISACA's Cybersecurity Fundamentals Certificate programme offers an efficient solution for rapidly training entry-level staff. It ensures they possess the necessary skills and knowledge to succeed in the cybersecurity domain.

Target Audience:

This certificate program is an excellent way to acquire foundational cybersecurity knowledge and begin building your expertise in this essential area.

This course offers a professional introduction to the recently enacted Accessibility Law, providing developers with the practical skills necessary to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the significance and implications of the law, the course rapidly transitions into hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

This instructor-led live training in Bulgaria (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

Information security threats and attacks are constantly evolving and improving. The most effective defense against these risks is the proper implementation and management of information security controls and best practices. Furthermore, robust information security is a key expectation and requirement for customers, legislators, and other interested parties.

This training course is designed to prepare participants for implementing an information security management system (ISMS) based on ISO/IEC 27001. It aims to provide a comprehensive understanding of ISMS best practices and establish a framework for its continual management and improvement.

Upon completing the training course, you will be eligible to take the exam. If you successfully pass it, you can apply for the “PECB Certified ISO/IEC 27001 Lead Implementer” credential, which demonstrates your ability and practical knowledge to implement an ISMS in accordance with the requirements of ISO/IEC 27001.

Who Can Attend?

• Project managers and consultants involved in or concerned with the implementation of an ISMS
• Expert advisors seeking to master the implementation of an ISMS
• Individuals responsible for ensuring conformity to information security requirements within an organization
• Members of an ISMS implementation team

General information

• Certification fees are included in the exam price
• Training material containing over 450 pages of information and practical examples will be distributed
• A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued
• In case of exam failure, you can retake the exam within 12 months free of charge

Educational approach

• This training course contains essay-type exercises, multiple-choice quizzes, examples, and best practices used in the implementation of an ISMS.
• Participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
• The exercises are based on a case study.
• The structure of the quizzes is similar to that of the certification exam.

Learning objectives

This training course will help you:

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS
• Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand the operation of an information security management system and its processes based on ISO/IEC 27001
• Learn how to interpret and implement the requirements of ISO/IEC 27001 in the specific context of an organization
• Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an ISMS

Audience

This course is designed for all staff members who need a practical grasp of Compliance principles and effective Risk Management techniques.

Course Format

The training employs a blended learning methodology that incorporates:

• Guided group discussions
• Slide-driven presentations
• Case study analysis
• Practical real-world examples

Course Objectives

Upon completion, participants will be capable of:

Gaining a comprehensive understanding of the core elements of Compliance, as well as national and international initiatives designed to manage related risks.

Articulating how organizations and their teams can implement an effective Compliance Risk Management Framework.

Clarifying the roles and responsibilities of Compliance Officers and Money Laundering Reporting Officers, and understanding how these functions fit into the broader business structure.

Recognizing critical risk areas within Financial Crime, specifically in the context of international operations, offshore jurisdictions, and high-net-worth client interactions.

Open Source Software (OSS) Management involves overseeing the lifecycle of open-source components within an organization to ensure their secure, compliant, and efficient utilization.

This instructor-led live training (available online or onsite) is designed for intermediate-level IT professionals seeking to implement best practices for managing open-source software in enterprise and government settings.

Upon completion of this training, participants will be able to:

• Develop effective OSS policies and governance frameworks.
• Utilize SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Mitigate risks related to licensing and security vulnerabilities.
• Streamline OSS adoption to maximize innovation and cost savings.

Course Format

• Interactive lectures and discussions.
• Case studies and scenario-based exercises.
• Hands-on demonstrations with OSS management tools.

Customization Options

• This course can be tailored to specific organizational OSS policies and toolchains. Please contact us to arrange.

This instructor-led, live Payment Card Industry Professional training in Bulgaria (online or onsite) offers a professional certification for practitioners aiming to demonstrate their expertise and understanding of the PCI Data Security Standard (PCI DSS).

Upon completion of this course, participants will be able to:

• Comprehend the payment processing workflow and the PCI standards established to safeguard it.
• Grasp the roles and responsibilities of entities operating within the payment industry.
• Gain a thorough insight into, and understanding of, the 12 PCI DSS requirements.
• Showcase knowledge of PCI DSS and its application to organizations involved in the transaction process.