Cyber Security Training in Matosinhos

This instructor-led, live training in Matosinhos (online or onsite) is designed for advanced-level cybersecurity professionals, AI engineers, and IoT developers who aim to implement robust security measures and resilience strategies for Edge AI systems.

Upon completion of this training, participants will be able to:

• Identify security risks and vulnerabilities in Edge AI deployments.
• Deploy encryption and authentication techniques to protect data.
• Design resilient Edge AI architectures capable of withstanding cyber threats.
• Apply secure AI model deployment strategies within edge environments.

This instructor-led, live training in Matosinhos (online or onsite) is designed for cybersecurity professionals and data scientists at an intermediate level who wish to leverage LLMs to strengthen cybersecurity measures and threat intelligence.

Upon completing this training, participants will be able to:

• Grasp the role of LLMs in cybersecurity.
• Implement LLMs for threat detection and analysis.
• Utilize LLMs for security automation and response.
• Integrate LLMs with existing security infrastructure.

This instructor-led live training in Matosinhos (online or onsite) is designed for intermediate to advanced cybersecurity professionals and technical leads who wish to learn how to deploy AI models to strengthen security workflows, automate threat detection and response, and conduct predictive analysis.

Upon completion of this training, participants will be able to:

• Grasp the role of AI in modern cyber security.
• Construct machine learning models for anomaly and threat detection.
• Deploy AI to automate incident response and security operations.
• Assess the ethical and operational implications of AI in cybersecurity.

OpenEDR is an open-source Endpoint Detection and Response (EDR) platform designed to deliver continuous telemetry, detection, and analysis of adversarial activities on endpoints.

This instructor-led live training (available online or onsite) is tailored for IT and security professionals at the beginner to intermediate levels who wish to deploy, configure, and operate OpenEDR to detect and respond to cyber threats.

Upon completion of this training, participants will be able to:

• Deploy and configure OpenEDR agents and server components to collect telemetry.
• Execute basic detection and monitoring tasks using OpenEDR dashboards and event views.
• Analyze endpoint events to identify suspicious activities and potential threats.
• Integrate OpenEDR alerts into incident response workflows and reporting processes.

Course Format

• Interactive lectures and discussions.
• Numerous exercises and practical practice sessions.
• Hands-on implementation within a live laboratory environment.

Customization Options

• To request a customized training session for this course, please contact us to make arrangements.

This instructor-led live training in Matosinhos (available online or onsite) targets intermediate-level analysts aiming to effectively analyze, secure, and protect their organization's data and networks from cyber threats.

By the conclusion of this training, participants will be able to:

• Gain a comprehensive understanding of the current cybersecurity landscape.
• Learn and apply industry-standard cybersecurity frameworks (e.g., NIST, ISO/IEC 27001) and best practices to enhance their organization's security posture.
• Implement effective network security measures, including configuring firewalls, VPNs, IDS/IPS systems, and applying encryption techniques to protect data at rest and in transit.
• Identify, analyze, and respond to cybersecurity incidents using threat intelligence, SIEM tools, and incident response plans.

Ransomware constitutes a type of malicious software engineered to encrypt data and extort financial gain from organizations.

This instructor-led, live training session (available online or onsite) targets intermediate-level security professionals looking to refine their negotiation tactics and enhance their intelligence-gathering capabilities during ransomware crises.

Upon completion of this training, participants will be equipped to:

• Evaluate the structure, behavioural patterns, and lifecycle of contemporary ransomware campaigns
• Implement established negotiation frameworks within real-world ransomware contexts
• Collect, analyse, and operationalize threat intelligence to bolster ransomware defence efforts
• Coordinate seamlessly with stakeholders, law enforcement agencies, and external partners during an attack

Course Format:

• Expert-led presentations augmented by real-world case studies
• Interactive exercises that simulate ransomware negotiation scenarios
• Practical application of intelligence tools within a secure, controlled lab environment

Customization Options:

• Should your organization require a bespoke version of this training, please reach out to us for customization details.

This instructor-led, live training in Matosinhos (online or on-site) is designed for senior security managers who wish to be well-equipped with the knowledge and skills needed to excel in the exam and their roles as security management professionals.

By the end of this training, participants will be able to:

• Understand the five domains of ISSMP.
• Develop skills to manage an information security program.
• Learn to establish and maintain security governance.
• Gain insights into risk management, incident response, and continuity planning.
• Prepare effectively for the ISSMP certification exam.

This instructor-led, live training in Matosinhos (online or onsite) is aimed at experienced developers who wish to gain a comprehensive understanding of Python programming and its applications in cybersecurity.

By the end of this training, participants will be able to:

• Use Python programming for defensive cybersecurity.
• Understand and use Python for ethical offensive techniques and digital forensics tasks.
• Recognize legal and ethical considerations surrounding offensive cybersecurity and vulnerability disclosure.

This instructor-led, live training in Matosinhos (online or onsite) targets security professionals eager to learn how to manage firewalls at scale.

By the conclusion of this training, participants will be able to:

• Design, configure, and manage the Panorama Firewall management server.
• Manage policies using device groups.
• Roll out network configurations to different firewalls.

The EC-Council Certified DevSecOps Engineer (ECDE) is a practical course designed to empower professionals with the expertise needed to embed security throughout the DevOps lifecycle, thereby facilitating secure software development from the initial planning stages through to deployment.

This instructor-led live training, available both online and onsite, is tailored for intermediate-level software and DevOps professionals who aim to integrate robust security practices into their CI/CD pipelines, ensuring that code delivery is both secure and compliant.

Upon completion of this training, participants will be capable of:

• Grasping the core principles and practices of DevSecOps.
• Securing all stages of the CI/CD pipeline using automated tools.
• Implementing secure coding standards and vulnerability scanning techniques.
• Preparing for the ECDE certification through practical labs and comprehensive reviews.

Course Format

• Interactive lectures and discussions.
• Practical application of DevSecOps tools within simulated pipelines.
• Guided exercises focused on secure development and deployment strategies.

Customization Options

• To arrange a customized training session tailored to your team’s specific workflows or toolchain, please contact us to coordinate.

User session recording technology captures, monitors, and audits user activity on IT systems, providing insights for security, compliance, and forensic investigations.

This instructor-led, live training (online or onsite) is aimed at beginner-level to intermediate-level IT and security professionals who wish to implement user session recording solutions to enhance monitoring, compliance, and accountability.

By the end of this training, participants will be able to:

• Understand the principles of user session recording.
• Deploy and configure session recording solutions.
• Analyze and audit recorded sessions for compliance.
• Integrate session recording with security monitoring systems.

Format of the Course

• Interactive lecture and discussion.
• Lots of exercises and practice.
• Hands-on implementation in a live-lab environment.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

Description:

Basel III represents a global regulatory framework governing bank capital adequacy, stress testing, and liquidity risk. Initially established by the Basel Committee on Banking Supervision in 2010–11, the implementation timeline for the Accord has been extended to 31st March 2019. Basel III enhances banking resilience by boosting liquidity requirements and reducing leverage.
Unlike its predecessors, Basel III introduces differentiated reserve requirements for various deposit types and borrowings, functioning alongside rather than replacing Basel I and Basel II. Navigating this complex and evolving regulatory landscape can be challenging; our training program is designed to equip you with the tools to manage potential changes and their impact on your institution. As an accredited training partner of the Basel Certification Institute, we guarantee that our materials and instruction are current, effective, and of the highest quality.

Objectives:

• Prepare participants for the Certified Basel Professional Examination.
• Provide practical strategies and techniques for defining, measuring, analyzing, improving, and controlling operational risk within banking organizations.

Target Audience:

• Board members with risk oversight responsibilities
• Chief Risk Officers (CROs) and Heads of Risk Management
• Members of Risk Management teams
• Compliance, legal, and IT support staff
• Equity and Credit Analysts
• Portfolio Managers
• Rating Agency Analysts

Overview:

• Introduction to Basel norms and amendments to the Basel Accord (III)
• Regulations governing market, credit, counterparty, and liquidity risk
• Stress testing methodologies for various risk measures, including formulation and delivery
• The anticipated impact of Basel III on the international banking sector, with practical application demonstrations
• Rationale for the New Basel Norms
• Key features of the Basel III Norms
• Objectives of The Basel III Norms
• Basel III – Timeline

Even seasoned Java developers do not necessarily master every security service provided by Java, nor are they always fully aware of the various vulnerabilities relevant to Java-based web applications.

Beyond introducing the security components of Standard Java Edition, this course addresses security challenges in Java Enterprise Edition (JEE) and web services. The discussion of specific services is preceded by an exploration of the foundations of cryptography and secure communication. Practical exercises cover both declarative and programmatic security techniques in JEE, while the course examines transport-layer and end-to-end security for web services. Participants will engage in hands-on exercises to explore the discussed APIs and tools firsthand.

The course also examines and explains the most common and severe programming flaws in the Java language and platform, along with web-related vulnerabilities. In addition to typical errors made by Java developers, the introduced security vulnerabilities encompass both language-specific issues and problems arising from the runtime environment. All vulnerabilities and their associated attacks are demonstrated through clear, practical exercises, followed by recommended coding guidelines and potential mitigation strategies.

Participants attending this course will

• Grasp the fundamental concepts of security, IT security, and secure coding
• Learn about web vulnerabilities beyond the OWASP Top Ten and understand how to avoid them
• Comprehend the security concepts underpinning web services
• Gain proficiency in utilizing various security features within the Java development environment
• Develop a practical understanding of cryptography
• Understand the security solutions offered by Java EE
• Identify typical coding mistakes and learn how to prevent them
• Gain insight into recent vulnerabilities within the Java framework
• Acquire practical knowledge of security testing tools
• Receive resources and further reading materials on secure coding practices

Audience

Developers

As a developer, your responsibility is to write robust, error-free code.

Imagine if, despite your best efforts, the code you have written throughout your career contained hidden vulnerabilities you were unaware of. Consider this: as you read this, attackers may be attempting to breach your systems. How likely are they to succeed? What if they managed to exfiltrate your database and sell it on the black market?

This web application security course will transform your perspective on coding. Through hands-on training, we will expose you to every tactic attackers use and teach you how to counter them, leaving you with an insatiable desire to learn more.

It is up to you to stay ahead of the curve and establish yourself as a pivotal figure in the battle against cybercrime.

Participants will:

• Grasp fundamental concepts of security, IT security, and secure coding
• Identify web vulnerabilities beyond the OWASP Top Ten and learn how to prevent them
• Explore client-side vulnerabilities and secure coding practices
• Understand Node.js security principles
• Gain insights into MongoDB security
• Develop a practical understanding of cryptography
• Comprehend essential security protocols
• Understand the security concepts underpinning web services
• Learn about JSON security
• Acquire practical knowledge of security testing techniques and tools
• Learn how to manage vulnerabilities in the platforms, frameworks, and libraries you use
• Access resources and further reading on secure coding practices

This instructor-led, live training (available online or onsite) is aimed at technical professionals who wish to deploy and manage open source collaboration platforms that maintain data sovereignty while providing modern team communication capabilities.

By the end of this training, participants will be able to evaluate platforms, deploy self-hosted solutions, configure security and integrations, migrate from existing platforms, and establish operational procedures.

Cyber Security involves the application of technologies, controls, and processes to safeguard computer systems, servers, networks, devices, applications, and data against malicious cyber attacks.

This instructor-led, live training (available online or onsite) is designed for individuals who wish to learn how to protect internet-connected systems from various cyber threats.

By the end of this training, participants will be able to:

• Understand the core concepts of Cyber Security.
• Identify and comprehend different types of Cyber Security threats.
• Learn the processes and best practices for protecting internet-connected systems from cyber attacks.

Course Format

• Interactive lectures and discussions.
• Extensive exercises and practice sessions.
• Hands-on implementation in a live-lab environment.

Course Customization Options

• To request customized training for this course, please contact us to arrange.

This instructor-led, live training in Matosinhos (online or onsite) is designed for IT professionals seeking to learn and apply the fundamentals of cybersecurity practices, processes, and tools within their organizations.

By the end of this training, participants will be able to:

• Grasp cybersecurity concepts, definitions, architecture, and principles.
• Acquire skills to secure and protect digital assets (networks, systems, applications, and data).
• Deploy security models, frameworks, operational techniques, and incident handling procedures.
• Assess and mitigate the impact of cyber attacks, risks, threats, and vulnerabilities.
• Gain insights into cybersecurity challenges associated with emerging technologies.

This instructor-led, live training in Matosinhos (online or on-site) is designed for software engineers and IT professionals who wish to deepen their knowledge of CyBOK and strengthen their theoretical and practical cyber security skills.

Upon completion of this training, participants will be able to:

• Grasp the core concepts, definitions, and principles of cyber security.
• Develop in-depth cyber security expertise by applying the CyBOK knowledge areas.
• Acquire comprehensive foundational knowledge to effectively implement the CyBOK framework.
• Support community and organizational initiatives to prioritize data security and privacy.
• Explore opportunities to obtain specializations and credentials relevant to cyber security roles.

This course is designed for individuals who need to gather intelligence or evidence from the Dark Web. This typically includes those employed in government or law enforcement, but it may also be relevant to the private sector.

This instructor-led, live training in Matosinhos explores the system architectures, operating systems, networking, storage, and cryptographic issues that need to be considered when designing secure embedded systems.

By the end of this course, participants will have a solid understanding of security principles, concerns, and technologies. More importantly, they will be equipped with the techniques needed for developing safe and secure embedded software.

This course immerses participants in an interactive environment where they learn to scan, test, hack, and secure their own systems. The lab-intensive setting provides each student with in-depth knowledge and practical experience using essential, modern security tools. Students start by understanding how perimeter defenses function before moving on to scan and attack their own networks—all in a safe, controlled manner with no real networks affected. They then explore how intruders escalate privileges and discover the steps necessary to secure a system. Additional topics include Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows, and Virus Creation. Upon completing this intensive five-day class, students will possess hands-on understanding and experience in Ethical Hacking.

The purpose of the Ethical Hacking Training is to:

• Establish and govern minimum standards for credentialing professional information security specialists in ethical hacking measures.
• Inform the public that credentialed individuals meet or exceed the minimum standards.
• Reinforce ethical hacking as a unique and self-regulating profession.

Audience:

This course is ideal for professionals working in roles such as, but not limited to:

• Security Engineers
• Security Consultants
• Security Managers
• IT Directors/Managers
• Security Auditors
• IT Systems Administrators
• IT Network Administrators
• Network Architects
• Developers

Designed for leaders and managers, this course offers a comprehensive overview of the critical issues and activities within cybersecurity.

Participants will gain insights into various topics that expand their understanding and refine their executive decision-making capabilities concerning cybersecurity threats.
 

Upon completion of this training, participants will be able to:

• Understand the implications of internet and social network privacy
• Recognise Personally Identifiable Information (PII) and its significance
• Learn methods to secure online assets
• Understand how to safeguard the privacy of business users
• Gain knowledge of cyber laws that protect privacy

Format of the Course

• Interactive lectures and discussions
• Extensive exercises and practice sessions
• Hands-on implementation in a live-lab environment

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

This instructor-led, live training in Matosinhos (online or onsite) is aimed at security engineers and system administrators who wish to use FortiGate NGFW's advanced security-driven network systems to protect their organization from internal and external threats.

By the end of this training, participants will be able to:

• Install and configure the preferred FortiGate NGFW software and hardware model.
• Operate and employ FortiGate NGFW to improve the efficiency of system administration tasks.
• Manage various forms of external and internal threats using FortiGate features.
• Integrate FortiGate security fabric with the entire IT infrastructure to provide quick automated protection.
• Ensure long-term protection from attacks with independent and continuous FortiGate threat intelligence.
• Troubleshoot the most common firewall system setup errors relevant to FortiGate NGFWs.
• Implement Fortinet security solutions in other enterprise applications.

This training course demonstrates how risk assessment for information security is conducted by integrating information from ISO/IEC 27005:2022 and ISO/IEC 27001. Alongside theoretical knowledge, the course includes practical exercises, quizzes, and case studies, making it a highly engaging learning experience.

Information security threats and attacks are constantly evolving and becoming more sophisticated. The most effective defence against these risks is the proper implementation and management of information security controls and best practices. Furthermore, robust information security is a key expectation and requirement for customers, legislators, and other interested parties.

This training course is designed to prepare participants to implement an Information Security Management System (ISMS) in accordance with ISO/IEC 27001. It aims to provide a comprehensive understanding of ISMS best practices and establish a framework for its ongoing management and improvement.

Upon completing the training course, you may sit for the exam. If you pass successfully, you can apply for the 'PECB Certified ISO/IEC 27001 Lead Implementer' credential, which validates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.

Who Should Attend?

• Project managers and consultants involved in or concerned with the implementation of an ISMS
• Expert advisors seeking to master the implementation of an ISMS
• Individuals responsible for ensuring conformity to information security requirements within an organisation
• Members of an ISMS implementation team

General Information

• Certification fees are included in the exam price
• Training material containing over 450 pages of information and practical examples will be distributed
• A participation certificate granting 31 CPD (Continuing Professional Development) credits will be issued
• If the exam is not passed, you may retake it within 12 months free of charge

Educational Approach

• This training course includes essay-type exercises, multiple-choice quizzes, examples, and best practices utilised in the implementation of an ISMS.
• Participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
• The exercises are based on a case study.
• The structure of the quizzes mirrors that of the certification exam.

Learning Objectives

This training course will help you:

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS
• Recognise the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand the operation of an information security management system and its processes based on ISO/IEC 27001
• Learn how to interpret and implement the requirements of ISO/IEC 27001 within the specific context of an organisation
• Acquire the necessary knowledge to support an organisation in effectively planning, implementing, managing, monitoring, and maintaining an ISMS

The Certified Ethical Hacker qualification is a highly regarded cybersecurity credential globally.

This programme combines instruction and practical exercises to prepare students for both the CEH certification exam and the CEH Practical Exam. Candidates who successfully pass both examinations will receive the CEH credential alongside the prestigious CEH Master distinction.

Participants have the option to include either the CPENT or the CHFI course within their package.

Training for either the Certified Penetration Testing Professional (CPENT) or the Computer Hacking Forensic Investigator (CHFI) courses is delivered to each student through EC-Council’s online, self-paced, streaming video platform.

CPENT (Penetration Testing):
Educates students on applying the concepts and tools from the CEH programme to a penetration testing methodology within a live cyber range environment.

CHFI (Computer Forensics):
Instructs students on a methodical approach to computer forensics, covering aspects such as searching and seizing, chain of custody, data acquisition, preservation, analysis, and the reporting of digital evidence.

Course Description

CEH offers a deep understanding of ethical hacking phases, various attack vectors, and preventative countermeasures. It teaches you to think and act like a malicious hacker, enabling you to better establish security infrastructure and defend against future threats. Understanding system weaknesses and vulnerabilities allows organisations to strengthen their security controls and minimise the risk of incidents.

The CEH programme is designed to incorporate a hands-on environment and systematic process across each ethical hacking domain and methodology. This provides you with the opportunity to demonstrate the knowledge and skills required to achieve the CEH credential. You will gain exposure to a fundamentally different perspective on the responsibilities and measures necessary for security.

Who Should Attend

• Law enforcement personnel
• System administrators
• Security officers
• Defence and military personnel
• Legal professionals
• Bankers
• Security professionals

About the Certified Ethical Hacker Master

To attain the CEH Master certification, you must pass the CEH Practical exam. This exam is designed to allow students to demonstrate their ability to execute the principles taught in the CEH course. The practical exam requires you to show the application of ethical hacking techniques, including threat vector identification, network scanning, operating system detection, vulnerability analysis, system hacking, and more.

The CEH Practical exam does not use simulations. Instead, you will engage with a live range designed to mimic a corporate network using live virtual machines, networks, and applications.

Successfully completing the challenges in the CEH Practical Exam is the next step after obtaining the Certified Ethical Hacker (CEH) certification. Passing both the CEH exam and the CEH Practical will earn you the additional CEH Master certification.

About the Certified Ethical Hacker Practical

To prove your proficiency in ethical hacking, we assess your abilities using real-world challenges in a realistic environment. You will use labs and tools to complete specific ethical hacking challenges within a time limit, mirroring the conditions you would face in the real world.

The EC-Council CEH (Practical) exam features a complex network that replicates a large organisation’s real-life infrastructure, consisting of various network systems (including DMZ, Firewalls, etc.). You must apply your ethical hacking skills to identify and exploit real-time vulnerabilities while auditing the systems.

About CPENT

EC-Council’s Certified Penetration Tester (CPENT) programme focuses on penetration testing. It teaches you to operate within an enterprise network environment that must be attacked, exploited, evaded, and defended. If you have only worked with flat networks, CPENT’s live practice range will elevate your skills. It covers penetration testing of IoT and OT systems, writing your own exploits, building custom tools, conducting advanced binary exploitation, double pivoting to access hidden networks, and customising scripts and exploits to reach the innermost segments of the network.

About CHFI

The Computer Hacking Forensic Investigator (CHFI) course delivers the digital forensics discipline from a vendor-neutral perspective. CHFI is a comprehensive course covering major forensic investigation scenarios, enabling students to gain hands-on experience with various forensic investigation techniques and standard tools necessary to successfully conduct computer forensic investigations.

This instructor-led, live training in Matosinhos (online or onsite) is aimed at system administrators who wish to use OpenAM to manage identity and access controls for web applications.

By the end of this training, participants will be able to:

• Set up the necessary server environment to start configuring authentication and access controls using OpenAM.
• Implement single sign-on (SSO), multi-factor authentication (MFA), and user self-service features for web applications.
• Use federation services (OAuth 2.0, OpenID, SAML v2.0, etc.) to extend identity management securely across different systems or applications.
• Access and manage authentication, authorization, and identity services through REST APIs.

Description:

Designed as a 'Practitioner' level course, this programme places significant emphasis on practical exercises intended to reinforce theoretical concepts and build delegates' confidence in executing business continuity management. The curriculum is also crafted to stimulate debate and facilitate the exchange of knowledge and experience among participants.
Participants will gain invaluable insights from our trainers, who are practicing business continuity management experts and ISO 22301:2019 specialists with extensive practical experience.

Delegates will learn how to:

• Articulate the necessity of business continuity management (BCM) across all types of organisations
• Define the business continuity lifecycle
• Manage a business continuity programme
• Gain a thorough understanding of their organisation to identify mission-critical impact areas
• Determine the organisation's business continuity strategy
• Establish a business continuity response
• Exercise, maintain, and review plans
• Embed business continuity within an organisation
• Define terms and definitions specific to business continuity

Upon completion of the course, delegates will possess a comprehensive understanding of all key components of business continuity management. They will be equipped to return to their professional roles and make a substantial contribution to their organisation's business continuity management process.

This instructor-led, live training in Matosinhos (online or onsite) targets IT administrators, security coordinators, and compliance managers who wish to identify, evaluate, and implement security policy management methods for their organization.

By the end of this training, participants will be able to develop, manage, and monitor security policies to protect their organization's information, network, and physical and software assets.

This training is delivered as a workshop enriched with substantial theoretical knowledge. The curriculum aligns with the official CISA certification framework. Throughout the workshop, case studies will be analyzed to address specific issues in depth. Instruction is conducted in English (with Polish available upon request), utilizing the ISACA handbook as the primary resource.
 

Scope of CISA Exam Content:

• Information System Auditing Process (21%)
• Governance and Management of IT (17%)
• Information Systems Acquisition, Development, and Implementation (12%)
• Information Systems Operation and Business Resilience (23%)
• Protection of Information Assets (27%)

Exam Duration: 4 hours
Format: Multiple-choice test
Number of Questions: 200

To claim the CISA qualification, you must fulfill the following requirements: 

1. Successfully pass the CISA exam, achieving a score of 450 or higher.
2. Adhere to the ISACA Code of Professional Ethics
3. Commit to complying with the CISA Continuing Professional Education Policy
4. Acquire at least five years of professional work experience in information systems auditing, control, or security.
5. Comply with Information Systems Auditing Standards

If you have passed the exam and believe you meet these criteria, you may begin the certification application process via this page.
A processing fee of $50 applies to the application.

Additionally, there is an annual fee required to maintain your certification. The cost is $40 per year for ISACA members and $75 for non-members.