Open Authentication (OAuth) Training Course

This instructor-led live training in Portugal (online or onsite) is designed for intermediate-level IT auditors who wish to effectively incorporate AI tools into their audit practices.

By the end of this training, participants will be able to:

• Understand the fundamental concepts of artificial intelligence and its application within IT auditing.
• Leverage AI technologies, including machine learning, NLP, and RPA, to enhance the efficiency, accuracy, and scope of audits.
• Conduct risk assessments using AI tools to facilitate continuous monitoring and proactive risk management.
• Incorporate AI into the planning, execution, and reporting phases of audits, thereby improving overall IT audit effectiveness.

This instructor-led, live training in Portugal (online or onsite) is tailored for advanced-level security analysts who wish to elevate their skills in utilizing advanced Micro Focus ArcSight ESM content to improve an organization's ability to detect, respond, and mitigate cyber threats with greater precision and speed.

By the end of this training, participants will be able to:

• Optimize the use of Micro Focus ArcSight ESM to enhance monitoring and threat detection capabilities.
• Construct and manage advanced ArcSight variables to refine event streams for more precise analysis.
• Develop and implement ArcSight lists and rules for effective event correlation and alerting.
• Apply advanced correlation techniques to identify complex threat patterns and reduce false positives.

Target Audience:

This certification is designed for professionals engaged in the fields of information security and information assurance.

Learning Outcomes:

Upon completion, candidates will demonstrate the ability to:

• Articulate how effective information risk management delivers significant business value.
• Utilize and explain information risk management terminology with clarity.
• Perform threat and vulnerability assessments, business impact analyses, and risk assessments.
• Apply the fundamental principles of controls and risk treatment.
• Present findings in a structured format suitable for developing a risk treatment plan.
• Implement information classification schemes effectively.

This instructor-led, live training in Portugal (online or onsite) is aimed at advanced-level professionals who wish to gain a comprehensive understanding of fraud examination concepts and prepare for the Certified Fraud Examiner (CFE) exam.

By the end of this training, participants will be able to:

• Gain comprehensive knowledge of fraud examination principles and the fraud examination process.
• Learn to identify, investigate, and prevent various types of financial fraud schemes.
• Understand the legal environment related to fraud, including the legal elements of fraud, relevant laws, and regulations.
• Acquire practical skills in conducting fraud investigations, including evidence collection, interviewing techniques, and data analysis.
• Learn to design and implement effective fraud prevention and deterrence programs within organizations.
• Gain confidence and knowledge to successfully pass the Certified Fraud Examiner (CFE) exam.

This instructor-led training, delivered in Portugal (online or onsite), is intended for IT professionals who want to learn how to utilize the CipherTrust Solution suite.

By the end of this training, participants will be able to:

• Understand the CipherTrust Solution and its core functionalities.
• Evaluate device architecture and usage patterns.
• Manage the CipherTrust product suite.

Description:

Note: Please note that this updated CISM exam content outline applies to examinations commencing from 1 June 2022.

CISM® stands as the most prestigious and rigorous qualification for Information Security Managers worldwide. This certification offers you a pathway to join an elite network of peers who continuously learn and adapt to the evolving opportunities and challenges within Information Security Management.

Our CISM training methodology delivers comprehensive coverage of the four CISM domains, focusing on building core concepts and mastering the resolution of CISM exam questions released by ISACA. This course serves as intensive training and rigorous exam preparation for ISACA’s Certified Information Security Manager (CISM®) Examination.

Our instructors recommend that all delegates thoroughly review the ISACA-released CISM QA&E (Questions, Answers, and Explanations) as part of their exam preparation. The QA&E is invaluable in helping delegates grasp the ISACA question style, the approach to solving these questions, and facilitating rapid assimilation of CISM concepts during live classroom sessions.
All our trainers possess extensive experience in delivering CISM training. We will ensure you are fully prepared for the CISM examination.

Goal:

The primary objective is to pass your CISM examination on the first attempt.

Objectives:

• Apply the knowledge acquired in a practical manner that benefits your organisation
• Establish and maintain an information security governance framework to achieve your organisation’s goals and objectives
• Manage information risk to an acceptable level to meet business and compliance requirements
• Establish and maintain information security architectures (people, process, technology)
• Integrate information security requirements into the contracts and activities of third parties/suppliers
• Plan, establish, and manage the capability to detect, investigate, respond to, and recover from information security incidents to minimise business impact

Target Audience:

• Security professionals with 3-5 years of front-line experience
• Information security managers or individuals with management responsibilities
• Information security staff and assurance providers requiring an in-depth understanding of information security management, including: CISOs, CIOs, CSOs, privacy officers, risk managers, security auditors, compliance personnel, BCP/DR personnel, and executive and operational managers responsible for assurance functions

This instructor-led, live training in Portugal (online or onsite) is targeted at intermediate-level cybersecurity professionals seeking to deepen their understanding of GRC frameworks and apply them to secure and compliant business operations.

Upon completion of this training, participants will be able to:

• Comprehend the core components of cybersecurity governance, risk, and compliance.
• Perform risk assessments and formulate risk mitigation strategies.
• Implement compliance measures and manage regulatory obligations.
• Develop and enforce security policies and procedures.

Description:

Cybersecurity expertise is in high demand as persistent threats continue to impact enterprises globally. A significant majority of professionals surveyed by ISACA acknowledge this trend and intend to pursue roles requiring cybersecurity knowledge.
To address this need, ISACA has launched the Cybersecurity Fundamentals Certificate, offering education and validation of skills in this critical field.

Objectives:

Amidst rising cybersecurity threats and a growing global shortage of qualified security professionals, ISACA's Cybersecurity Fundamentals Certificate programme provides an effective solution for rapidly training entry-level staff, ensuring they possess the necessary skills and knowledge to succeed in the cybersecurity landscape.

Target Audience:

This certificate programme is also one of the most effective ways to acquire foundational cybersecurity knowledge and begin building your skills and expertise in this essential area.

This course offers an expert introduction to the newly enacted Accessibility Law, equipping developers with the practical skills needed to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the law's significance and implications, the curriculum rapidly transitions into hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

This instructor-led live training in Portugal (online or onsite) is targeted at developers and administrators seeking to develop software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the core concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

The ISO/IEC 27002 Lead Manager training equips you with the essential expertise and knowledge required to assist organisations in implementing and managing Information Security controls, as outlined in ISO/IEC 27002.

Upon completing this course, you will be eligible to take the exam and apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. This PECB Lead Manager Certification demonstrates that you have mastered the principles and techniques for implementing and managing Information Security Controls in accordance with ISO/IEC 27002.

Who should attend?

• Managers or consultants aiming to implement an Information Security Management System (ISMS) based on ISO/IEC 27001 and ISO/IEC 27002
• Project managers or consultants looking to master the Information Security Management System implementation process
• Professionals responsible for information security, compliance, risk, and governance within an organisation
• Members of information security teams
• Expert advisors in information technology
• Information Security officers
• Privacy officers
• IT professionals
• CTOs, CIOs and CISOs

Learning objectives

• Gain mastery in implementing Information Security controls by adhering to the framework and principles of ISO/IEC 27002
• Develop a comprehensive understanding of the concepts, approaches, standards, methods, and techniques necessary for the effective implementation and management of Information Security controls
• Comprehend the interrelationships between components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behaviour
• Appreciate the significance of information security within the broader strategy of an organisation
• Mastery of implementing information security management processes
• Expertise in formulating and implementing security requirements and objectives

Educational approach

• This training integrates both theoretical and practical components
• Lecture sessions supplemented with examples derived from real-life cases
• Practical exercises based on case studies
• Review exercises designed to aid exam preparation
• Practice tests that mirror the format of the certification exam

General Information

• Certification fees are included in the exam price
• Training material comprising over 500 pages of information and practical examples will be provided to participants
• Participants will receive a certificate of participation awarding 31 CPD (Continuing Professional Development) credits
• In the event of an unsuccessful exam result, you may retake the exam free of charge within 12 months

Information security threats and attacks are constantly evolving and becoming more sophisticated. The most effective defence against these risks is the proper implementation and management of information security controls and best practices. Furthermore, robust information security is a key expectation and requirement for customers, legislators, and other interested parties.

This training course is designed to prepare participants to implement an Information Security Management System (ISMS) in accordance with ISO/IEC 27001. It aims to provide a comprehensive understanding of ISMS best practices and establish a framework for its ongoing management and improvement.

Upon completing the training course, you may sit for the exam. If you pass successfully, you can apply for the 'PECB Certified ISO/IEC 27001 Lead Implementer' credential, which validates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.

Who Should Attend?

• Project managers and consultants involved in or concerned with the implementation of an ISMS
• Expert advisors seeking to master the implementation of an ISMS
• Individuals responsible for ensuring conformity to information security requirements within an organisation
• Members of an ISMS implementation team

General Information

• Certification fees are included in the exam price
• Training material containing over 450 pages of information and practical examples will be distributed
• A participation certificate granting 31 CPD (Continuing Professional Development) credits will be issued
• If the exam is not passed, you may retake it within 12 months free of charge

Educational Approach

• This training course includes essay-type exercises, multiple-choice quizzes, examples, and best practices utilised in the implementation of an ISMS.
• Participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
• The exercises are based on a case study.
• The structure of the quizzes mirrors that of the certification exam.

Learning Objectives

This training course will help you:

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS
• Recognise the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand the operation of an information security management system and its processes based on ISO/IEC 27001
• Learn how to interpret and implement the requirements of ISO/IEC 27001 within the specific context of an organisation
• Acquire the necessary knowledge to support an organisation in effectively planning, implementing, managing, monitoring, and maintaining an ISMS

Target Audience

This course is designed for all staff members who need a practical grasp of Compliance principles and effective Risk Management strategies.

Course Format

The training employs a blended learning methodology that incorporates:

• Guided discussions
• Slide-based presentations
• Case studies
• Real-world examples

Course Objectives

Upon completion of this course, participants will be able to:

Gain a comprehensive understanding of the fundamental aspects of Compliance, alongside national and international initiatives focused on managing associated risks.

Articulate how organizations and their teams can establish a robust Compliance Risk Management Framework.

Outline the responsibilities of the Compliance Officer and the Money Laundering Reporting Officer, and comprehend how these roles fit within the broader business structure.

Identify key risk areas within Financial Crime, particularly regarding international operations, offshore centres, and high-net-worth clients.

Open Source Software (OSS) Management involves supervising the entire lifecycle of open-source components within an organization to guarantee secure, compliant, and efficient utilization.

This instructor-led training, available online or on-site, targets intermediate IT professionals looking to implement best practices for managing open-source software in corporate and government settings.

Upon completing this course, participants will be equipped to:

• Develop robust OSS policies and governance structures.
• Utilize SBOM and SCA tools to identify, monitor, and manage open-source dependencies.
• Reduce risks linked to licensing issues and security vulnerabilities.
• Optimize OSS adoption to boost innovation and achieve cost efficiencies.

Course Format

• Engaging lectures and group discussions.
• Case studies and scenario-based activities.
• Practical demonstrations using OSS management tools.

Customization Options

• The course can be customized to align with specific organizational OSS policies and toolchains. Please get in touch to arrange.

This instructor-led, live Payment Card Industry Professional training in Portugal (online or onsite) offers a professional qualification for industry practitioners seeking to demonstrate their expertise and comprehension of the PCI Data Security Standard (PCI DSS).

Upon completion of this training, participants will be able to:

• Grasp the payment process and the PCI standards established to safeguard it.
• Comprehend the roles and responsibilities of entities within the payment industry.
• Gain a thorough insight into and understanding of the 12 PCI DSS requirements.
• Showcase knowledge of PCI DSS and its application to organizations involved in the transaction process.