Security Management Training in Varna

This instructor-led live training, delivered Varna (online or onsite), is targeted at intermediate-level IT auditors aiming to effectively integrate AI tools into their audit workflows.

By the conclusion of this training, participants will be able to:

• Grasp the core concepts of artificial intelligence and its relevance to IT auditing.
• Utilize AI technologies such as machine learning, NLP, and RPA to improve audit efficiency, accuracy, and scope.
• Perform risk assessments using AI tools, enabling continuous monitoring and proactive risk management.
• Integrate AI into audit planning, execution, and reporting, enhancing the overall effectiveness of IT audits.

Encryption Key Management involves the secure creation, storage, distribution, rotation, and retirement of cryptographic keys to safeguard sensitive information and meet regulatory requirements.

This instructor-led live training (available online or on-site) targets intermediate IT and security professionals aiming to implement strong encryption key management practices and systems within enterprise settings.

Upon completion of this training, participants will be capable of:

• Gaining insight into the encryption key lifecycle and best practices for their protection.
• Setting up and managing Key Management Systems (KMS) in both on-premises and cloud environments.
• Implementing access control and auditing for key usage.
• Ensuring compliance with regulations and standards concerning encryption key security.

Format of the Course

• Interactive lecture and discussion.
• Hands-on use of key management tools in lab environments.
• Guided exercises focused on secure key lifecycle implementation.

Course Customization Options

• To request a customized training for this course based on your infrastructure or compliance requirements, please contact us to arrange.

This instructor-led, live training in Varna (online or onsite) is targeted at advanced-level security analysts seeking to enhance their proficiency in leveraging advanced Micro Focus ArcSight ESM capabilities to improve an organization's ability to detect, respond, and mitigate cyber threats with greater precision and speed.

By the end of this training, participants will be able to:

• Optimize the use of Micro Focus ArcSight ESM to enhance monitoring and threat detection capabilities.
• Construct and manage advanced ArcSight variables to refine event streams for more precise analysis.
• Develop and implement ArcSight lists and rules for effective event correlation and alerting.
• Apply advanced correlation techniques to identify complex threat patterns and reduce false positives.

This instructor-led, live training in Varna (online or onsite) is aimed at beginner-level law enforcement officers who wish to gain a deeper understanding of human behavior, enhancing their skills in communication, empathy, conflict resolution, and overall effectiveness in their roles.

By the end of this training, participants will be able to:

• Have a deeper understanding of human psychology.
• Develop advanced communication and conflict resolution skills for more effective interaction with the public, colleagues, and in negotiation scenarios.
• Promote awareness and understanding of diverse cultural backgrounds, improving community policing and relations with various demographic groups.

This instructor-led, live training in Varna (online or onsite) is aimed at beginner-level security professionals who wish to gain the knowledge and skills necessary to adapt to the rapidly evolving digital landscape in the security industry.

By the end of this training, participants will be able to:

• Comprehend digital transformation within the context of security.
• Explore how digital solutions enhance security operations, efficiency, and effectiveness.
• Manage security-related data to support informed decision-making.

This instructor-led, live training in Varna (online or onsite) is aimed at beginner-level security managers who wish to effectively embrace and utilize technology in their field.

By the end of this training, participants will be able to:

• Understand the evolution of technology in security.
• Learn how to effectively blend traditional security methods with modern technological solutions.
• Understand the basics of cybersecurity, risks associated with digital systems, and how to protect against cyber threats in the security industry.

This instructor-led, live training in Varna (available online or onsite) is designed for beginner-level security managers and designers who aim to effectively plan, design, and implement integrated, technologically advanced security strategies that comply with legal and ethical standards.

By the end of this training, participants will be able to:

• Learn how to integrate security considerations into architectural and facility design.
• Assess threats and vulnerabilities to inform security planning.
• Develop comprehensive security plans that address a range of threats.
• Create effective emergency response and crisis management plans.

This instructor-led, live training in Varna (online or onsite) targets beginner-level security administrators who wish to deepen their understanding of security practices within an organization.

By the end of this training, participants will be able to:

• Understand the fundamentals of security operations and administration.
• Identify and mitigate various security threats and vulnerabilities.
• Implement and manage security solutions.
• Understand legal and ethical considerations in security operations.
• Prepare for incident response and disaster recovery.

This instructor-led, live training in Varna (online or onsite) is designed for advanced-level professionals who wish to gain a comprehensive understanding of fraud examination concepts and prepare for the Certified Fraud Examiner (CFE) exam.

Upon completion of this training, participants will be able to:

• Acquire in-depth knowledge of fraud examination principles and the overall fraud examination process.
• Learn to identify, investigate, and prevent various types of financial fraud schemes.
• Understand the legal framework surrounding fraud, including its legal elements, applicable laws, and regulations.
• Develop practical skills for conducting fraud investigations, such as evidence collection, interviewing techniques, and data analysis.
• Learn to design and implement effective fraud prevention and deterrence programs within organizations.
• Gain the confidence and expertise needed to successfully pass the Certified Fraud Examiner (CFE) exam.

This instructor-led, live training session in Varna (online or on-site) is aimed at advanced-level security managers who wish to be well-equipped with the knowledge and skills needed to excel in the exam and their roles as security management professionals.

By the end of this training, participants will be able to:

• Understand the five domains of ISSMP.
• Develop skills to manage an information security program.
• Learn to establish and maintain security governance.
• Gain insights into risk management, incident response, and continuity planning.
• Prepare effectively for the ISSMP certification exam.

This instructor-led, live training in Varna (online or onsite) is aimed at IT professionals who wish to understand how to use the CipherTrust Solution suite.

By the end of this training, participants will be able to:

• Understand the CipherTrust Solution and its basic functions.
• Evaluate device architecture and usage schemes.
• Manage CipherTrust product suite.

This instructor-led, live training in Varna (online or onsite) is designed for security managers who wish to learn basic to intermediate-level CCTV security surveillance and management skills.

By the end of this training, participants will be able to:

• Familiarize themselves with the types of CCTV systems and understand their benefits and features.
• Understand cabling and CCTV system setup requirements.
• Install, configure, and manage CCTV systems.

Description:

Note: Kindly note that this updated CISM exam content outline applies to exams beginning on 1 June 2022.

CISM® stands as the most prestigious and rigorous qualification for Information Security Managers worldwide today. This certification offers you a platform to join an exclusive peer network of professionals capable of continuously learning and adapting to the evolving opportunities and challenges in Information Security Management.

Our CISM training methodology provides comprehensive coverage of the content across the Four CISM domains, with a clear focus on building conceptual understanding and practicing with ISACA-published CISM exam questions. The course serves as intensive training and rigorous exam preparation for ISACA’s Certified Information Security Manager (CISM®) Examination.

Our instructors encourage all participating delegates to review the ISACA-published CISM QA&E (Questions, Answers, and Explanations) as part of their exam preparation. The QA&E is exceptional in helping delegates understand the style of ISACA questions, the approach to solving them, and facilitates rapid assimilation of CISM concepts during live classroom sessions.
All our trainers possess extensive experience in delivering CISM training. We will thoroughly prepare you for the CISM examination.

Goal:

The primary objective is to pass your CISM examination on the first attempt.

Objectives:

• Apply the knowledge gained in a practical manner that benefits your organization
• Establish and maintain an Information security governance framework to achieve your organization's goals and objectives
• Manage Information risk to an acceptable level to meet business and compliance requirements
• Establish and maintain information security architectures (people, process, technology)
• Integrate information security requirements into contracts and activities of third parties/ suppliers
• Plan, establish, and manage the capability to detect, investigate, respond to, and recover from information security incidents to minimize business impact

Target Audience:

• Security professionals with 3-5 years of front-line experience
• Information security managers or those with management responsibilities
• Information security staff, information security assurance providers who require an in-depth understanding of information security management including: CISO’s, CIO’s, CSO’s, privacy officers, risk managers, security auditors, compliance personnel, BCP / DR personnel, executive and operational managers responsible for assurance functions

This instructor-led, live training in Varna (online or on-site) is designed for security professionals who wish to learn and improve their approach to handling security threats and performing security risk assessments.

By the end of this training, participants will be able to:

• Manage security systems and navigate any hostile environment.
• Address and manage any security risks or threats.
• Learn how to conduct security risk assessments.

Open Source Software (OSS) Management involves overseeing the lifecycle of open-source components within an organization to ensure their secure, compliant, and efficient utilization.

This instructor-led live training (available online or onsite) is designed for intermediate-level IT professionals seeking to implement best practices for managing open-source software in enterprise and government settings.

Upon completion of this training, participants will be able to:

• Develop effective OSS policies and governance frameworks.
• Utilize SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Mitigate risks related to licensing and security vulnerabilities.
• Streamline OSS adoption to maximize innovation and cost savings.

Course Format

• Interactive lectures and discussions.
• Case studies and scenario-based exercises.
• Hands-on demonstrations with OSS management tools.

Customization Options

• This course can be tailored to specific organizational OSS policies and toolchains. Please contact us to arrange.

This instructor-led, live training in Bulgaria (online or onsite) is designed for intermediate-level cybersecurity professionals who aim to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

Upon completion of this training, participants will be equipped to:

• Grasp the fundamental elements of cybersecurity governance, risk, and compliance.
• Perform risk assessments and formulate strategies to mitigate identified risks.
• Execute compliance measures and handle regulatory obligations effectively.
• Create and enforce robust security policies and procedures.

This instructor-led, live training in Varna (online or onsite) is designed for developers and anyone wishing to learn and apply OAuth to provide applications with secure delegated access.

By the conclusion of this training, participants will be capable of:

• Gaining a solid understanding of OAuth fundamentals.
• Understanding native applications and the specific security challenges associated with using OAuth.
• Learning and comprehending common extensions to OAuth protocols.
• Integrating with any OAuth authorization server.

This instructor-led live training in Varna (online or onsite) is designed for intermediate-level system administrators who wish to learn how to use Siteminder to implement various authentication methods.

By the end of this training, participants will be able to:

• Understand the core concepts of Siteminder and its role in authentication and access management.
• Configure and manage user authentication with Siteminder.
• Implement various authentication methods supported by Siteminder.
• Troubleshoot common issues related to Siteminder authentication.
• Integrate Siteminder with other identity providers for federated authentication.

This instructor-led, live training in Varna (available online or onsite) is designed for compliance professionals in the payment services industry who wish to create, implement, and enforce a compliance program within their organizations.

By the end of this training, participants will be able to:

• Understand the rules set forth by government regulators for payment service providers.
• Create the internal policies and procedures needed to satisfy government regulations.
• Implement a compliance program that adheres to relevant laws.
• Ensure that all corporate processes and procedures comply with the compliance program.
• Uphold the business's reputation while protecting it from lawsuits.

Description:

Cybersecurity expertise is in high demand as global enterprises face persistent threats. A vast majority of professionals surveyed by ISACA acknowledge this trend and intend to pursue roles requiring cybersecurity knowledge. To address this need, ISACA has introduced the Cybersecurity Fundamentals Certificate, designed to educate and validate skills in this critical field.

Objectives:

Amidst rising cybersecurity threats and a growing global shortage of qualified professionals, ISACA's Cybersecurity Fundamentals Certificate programme offers an efficient solution for rapidly training entry-level staff. It ensures they possess the necessary skills and knowledge to succeed in the cybersecurity domain.

Target Audience:

This certificate program is an excellent way to acquire foundational cybersecurity knowledge and begin building your expertise in this essential area.

This instructor-led, live training (available online or onsite) is designed for enterprise leaders who wish to understand data sovereignty principles and develop compliant data management strategies.

By the end of this training, participants will be able to define data sovereignty, identify relevant laws, assess compliance risks, and implement governance frameworks for cross-border data management.

In this instructor-led live course in Varna, participants will learn to formulate a robust security strategy to tackle DevOps security challenges.

This course offers a professional introduction to the recently enacted Accessibility Law, providing developers with the practical skills necessary to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the significance and implications of the law, the course rapidly transitions into hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

This instructor-led live training in Varna (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

Why should you attend?

The ISO/IEC 27001 Foundation training empowers you to master the fundamental components necessary for implementing and managing an Information Security Management System (ISMS), as outlined in ISO/IEC 27001. Throughout this course, you will gain a comprehensive understanding of the various ISMS modules, including ISMS policies, procedures, performance metrics, management commitment, internal audits, management reviews, and continual improvement.

Upon successful completion of this course, you will be eligible to take the examination and apply for the "PECB Certified ISO/IEC 27001 Foundation" credential. Earning a PECB Foundation Certificate demonstrates your understanding of the core methodologies, requirements, frameworks, and management approaches essential to the standard.

Who should attend?

• Professionals involved in Information Security Management
• Individuals seeking to acquire knowledge about the key processes of Information Security Management Systems (ISMS)
• Those interested in pursuing a career in Information Security Management

Educational approach

• Lectures are reinforced with practical questions and examples
• Practical exercises incorporate examples and group discussions
• Practice tests mirror the format and difficulty of the Certification Exam

Information security threats and attacks are constantly evolving and improving. The most effective defense against these risks is the proper implementation and management of information security controls and best practices. Furthermore, robust information security is a key expectation and requirement for customers, legislators, and other interested parties.

This training course is designed to prepare participants for implementing an information security management system (ISMS) based on ISO/IEC 27001. It aims to provide a comprehensive understanding of ISMS best practices and establish a framework for its continual management and improvement.

Upon completing the training course, you will be eligible to take the exam. If you successfully pass it, you can apply for the “PECB Certified ISO/IEC 27001 Lead Implementer” credential, which demonstrates your ability and practical knowledge to implement an ISMS in accordance with the requirements of ISO/IEC 27001.

Who Can Attend?

• Project managers and consultants involved in or concerned with the implementation of an ISMS
• Expert advisors seeking to master the implementation of an ISMS
• Individuals responsible for ensuring conformity to information security requirements within an organization
• Members of an ISMS implementation team

General information

• Certification fees are included in the exam price
• Training material containing over 450 pages of information and practical examples will be distributed
• A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued
• In case of exam failure, you can retake the exam within 12 months free of charge

Educational approach

• This training course contains essay-type exercises, multiple-choice quizzes, examples, and best practices used in the implementation of an ISMS.
• Participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
• The exercises are based on a case study.
• The structure of the quizzes is similar to that of the certification exam.

Learning objectives

This training course will help you:

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS
• Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand the operation of an information security management system and its processes based on ISO/IEC 27001
• Learn how to interpret and implement the requirements of ISO/IEC 27001 in the specific context of an organization
• Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an ISMS

This instructor-led, live training in Varna (online or onsite) is aimed at public sector professionals who wish to apply information security management and IT service management practices to strengthen digital security strategies and protect institutional digital assets.

By the end of this training, participants will be able to explain core information security concepts, identify risks in information systems and services, apply practical security controls, and support secure IT service delivery.

Audience

This course is designed for all staff members who need a practical grasp of Compliance principles and effective Risk Management techniques.

Course Format

The training employs a blended learning methodology that incorporates:

• Guided group discussions
• Slide-driven presentations
• Case study analysis
• Practical real-world examples

Course Objectives

Upon completion, participants will be capable of:

Gaining a comprehensive understanding of the core elements of Compliance, as well as national and international initiatives designed to manage related risks.

Articulating how organizations and their teams can implement an effective Compliance Risk Management Framework.

Clarifying the roles and responsibilities of Compliance Officers and Money Laundering Reporting Officers, and understanding how these functions fit into the broader business structure.

Recognizing critical risk areas within Financial Crime, specifically in the context of international operations, offshore jurisdictions, and high-net-worth client interactions.

This instructor-led, live training (online or on-site) is intended for cloud professionals seeking to design and implement multi-cloud architectures that prevent vendor lock-in and uphold data sovereignty.

By the conclusion of this training, attendees will be able to identify vendor lock-in risks, design portable architectures, enforce data sovereignty controls, and utilize cloud-agnostic tools effectively.

This instructor-led, live training session (available online or onsite) is designed for security engineers and firmware developers aiming to strengthen OpenBMC deployments against unauthorized access and firmware tampering.

This instructor-led, live Payment Card Industry Professional training in Varna (online or onsite) offers a professional certification for practitioners aiming to demonstrate their expertise and understanding of the PCI Data Security Standard (PCI DSS).

Upon completion of this course, participants will be able to:

• Comprehend the payment processing workflow and the PCI standards established to safeguard it.
• Grasp the roles and responsibilities of entities operating within the payment industry.
• Gain a thorough insight into, and understanding of, the 12 PCI DSS requirements.
• Showcase knowledge of PCI DSS and its application to organizations involved in the transaction process.

This instructor-led, live training in Varna (available online or onsite) targets IT administrators, security coordinators, and compliance managers seeking to identify, evaluate, and implement security policy management methods within their organizations.

By the end of this training, participants will be able to develop, manage, and monitor security policies to protect their organization's information, network, and physical and software assets.

This capstone course guides participants through the design, deployment, and operation of a comprehensive sovereign digital infrastructure stack from scratch. Upon completion, learners will have constructed a functional micro-organization utilizing exclusively self-hosted, open-source solutions for identity, communication, productivity, development, security, artificial intelligence, and monitoring—all while maintaining complete independence from Google, Microsoft, AWS, or any proprietary SaaS providers.

Wazuh is an open-source security platform providing unified XDR and SIEM capabilities for threat detection, integrity monitoring, incident response, and compliance. It aggregates endpoint telemetry into a self-managed analysis engine, offering a credible alternative to Splunk Enterprise Security, Microsoft Sentinel, and other cloud-native SIEMs.