ISO/IEC 27005 Lead Risk Manager Training Course

Tackling money laundering requires a strong international focus. Compliance officers, AML officers, MLROs, KYC analysts, auditors, and managers must understand how to ensure adherence to Subsidiary 373.01, the Prevention of Money Laundering and Funding of Terrorism Regulations (PMLFTR).

Under the PMLFTR, all Subject Persons, including those operating within the regulated financial services sector, are obligated to appoint a Money Laundering Reporting Officer (MLRO).

This practical course provides you with the knowledge and essential guidance needed to address AML compliance within your organization, with particular attention to the regulatory framework in Malta.

Description:

Basel III represents a global regulatory framework governing bank capital adequacy, stress testing, and market liquidity risk. Initially established by the Basel Committee on Banking Supervision between 2010 and 2011, the implementation timeline for the Accord was extended until March 31, 2019. Basel III bolsters bank capital requirements by enhancing liquidity standards and reducing leverage.
Unlike its predecessors, Basel I and II, Basel III mandates distinct reserve levels for various deposit types and borrowing categories. Rather than replacing previous standards, it operates in conjunction with them. Navigating this complex and evolving regulatory environment can be challenging; our course and training programs are designed to help you anticipate and manage these changes and their effects on your institution. As an accredited training partner of the Basel Certification Institute, we guarantee that our training materials and content remain current and effective.

Objectives:

• Prepare participants for the Certified Basel Professional Examination.
• Develop practical strategies and techniques for defining, measuring, analyzing, improving, and controlling operational risk within banking organizations.

Target Audience:

• Board members with risk oversight responsibilities
• Chief Risk Officers (CROs) and Heads of Risk Management
• Risk Management team members
• Compliance, legal, and IT support staff
• Equity and Credit Analysts
• Portfolio Managers
• Rating Agency Analysts

Overview:

• Introduction to Basel norms and amendments to the Basel Accord (III)
• Regulations addressing market, credit, counterparty, and liquidity risk
• Stress testing for various risk measures, including formulation and delivery methods
• The anticipated impact of Basel III on the international banking industry, featuring practical application demonstrations
• The necessity for new Basel norms
• The Basel III norms
• Objectives of the Basel III norms
• Basel III implementation timeline

This instructor-led, live training in Serbia (online or onsite) is aimed at advanced-level professionals who wish to gain a comprehensive understanding of fraud examination concepts and prepare for the Certified Fraud Examiner (CFE) exam.

By the end of this training, participants will be able to:

• Gain comprehensive knowledge of fraud examination principles and the fraud examination process.
• Learn to identify, investigate, and prevent various types of financial fraud schemes.
• Understand the legal environment related to fraud, including the legal elements of fraud, relevant laws, and regulations.
• Acquire practical skills in conducting fraud investigations, including evidence collection, interviewing techniques, and data analysis.
• Learn to design and implement effective fraud prevention and deterrence programs within organizations.
• Gain confidence and knowledge to successfully pass the Certified Fraud Examiner (CFE) exam.

Description:

This four-day event (CGEIT training) serves as the definitive preparation for the exam, designed to ensure you pass the challenging CGEIT exam on your first attempt.
The CGEIT qualification is an internationally recognized symbol of excellence in IT governance, awarded by ISACA. It is intended for professionals responsible for managing IT governance or those with significant advisory or assurance responsibilities in this area.
Achieving CGEIT status will broaden your market recognition and enhance your influence at the executive level.

Objectives:

This seminar is designed to prepare delegates for the CGEIT examination by enabling them to supplement their existing knowledge and understanding, thereby ensuring they are better prepared to pass the exam as defined by ISACA.

Target Audience:

Our training course is designed for IT and business professionals who possess significant IT governance experience and are undertaking the CGEIT exam.

Learning Objectives

This COBIT 2019 Foundation course serves as an introduction to the COBIT 2019 framework, empowering you to understand how an integrated business framework for the governance and management of enterprise IT can be leveraged to achieve IT-business alignment, reduce costs, and boost productivity. The syllabus areas covered in this course include:

• Introduction to the new framework
• Key concepts and terminology
• Governance and framework principles
• Governance system and components
• Governance and management objectives
• Performance management
• Designing a customized governance system

This instructor-led live training in Serbia (available online or on-site) is designed for compliance professionals in the payment services sector who wish to establish, implement, and enforce a compliance program within their organization.

By the end of this training, participants will be able to:

• Understand the rules established by government regulators for payment service providers.
• Formulate the internal policies and procedures required to satisfy government regulations.
• Implement a compliance program that adheres to relevant laws.
• Ensure that all corporate processes and procedures align with the compliance program.
• Protect the business's reputation while shielding it from potential lawsuits.

This instructor-led, live training in Serbia (online or onsite) is tailored for intermediate-level cybersecurity professionals aiming to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

By the end of this training, participants will be able to:

• Understand the key components of cybersecurity governance, risk, and compliance.
• Conduct risk assessments and develop risk mitigation strategies.
• Implement compliance measures and manage regulatory requirements.
• Develop and enforce security policies and procedures.

This course offers an expert introduction to the newly enacted Accessibility Law, equipping developers with the practical skills necessary to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the law's importance and implications, the curriculum quickly transitions to hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

Course Objective:

Equipping participants with a foundational grasp of GRC processes and capabilities, along with the necessary skills to effectively integrate governance, performance management, risk management, internal control, and compliance initiatives.

Course Summary:

• Key GRC terminology and definitions
• Fundamental principles of GRC
• Essential components, practices, and activities
• The relationship between GRC and other professional disciplines

This instructor-led, live training in Serbia (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Grasp the fundamental concepts of the HiTrust CSF (Common Security Framework).
• Recognize the administrative and security control domains within the HITRUST CSF.
• Gain insights into the various assessment types and scoring methods used by HiTrust.
• Comprehend the certification procedure and specific requirements for achieving HiTrust compliance.
• Apply best practices and practical tips for successfully adopting the HiTrust approach.

Why participate?

The ISO/IEC 27001 Foundation training equips you with the fundamental knowledge required to implement and manage an Information Security Management System (ISMS) in accordance with ISO/IEC 27001. Throughout this course, you will gain a comprehensive understanding of the various ISMS components, such as ISMS policies, procedures, performance metrics, management commitment, internal auditing, management review, and the principle of continual improvement.

Upon successful completion of the course, you will be eligible to take the examination and apply for the “PECB Certified ISO/IEC 27001 Foundation” credential. This certificate validates your grasp of the essential methodologies, requirements, frameworks, and management approaches defined by the standard.

Target Audience

• Professionals engaged in Information Security Management
• Individuals aiming to acquire knowledge about the core processes of Information Security Management Systems (ISMS)
• Career seekers interested in Information Security Management

Training Methodology

• Lectures are enhanced with practical questions and real-world examples
• Practical exercises feature illustrative examples and interactive discussions
• Practice tests mirror the format and style of the Certification Exam

ISO/IEC 27001 Lead Auditor

The ISO/IEC 27001 Lead Auditor training program equips you with the essential expertise to conduct Information Security Management System (ISMS) audits by applying internationally recognized audit principles, procedures, and techniques.

Why should you attend?

Through this training course, you will gain the knowledge and skills required to plan and execute both internal and external audits in accordance with ISO 19011 and the ISO/IEC 17021-1 certification process.

Based on practical exercises, you will master audit techniques and become competent in managing audit programs and teams, handling customer communications, and resolving conflicts.

Upon acquiring the necessary expertise to perform this audit, you may sit for the exam and apply for the “PECB Certified ISO/IEC 27001 Lead Auditor” credential. Holding a PECB Lead Auditor Certificate demonstrates that you possess the capabilities and competencies to audit organizations based on best practices.

Who should attend?

• Auditors seeking to perform and lead Information Security Management System (ISMS) certification audits
• Managers or consultants seeking to master an Information Security Management System audit process
• Individuals responsible for maintaining conformance with Information Security Management System requirements
• Technical experts seeking to prepare for an Information Security Management System audit
• Expert advisors in Information Security Management

Learning objectives

• Understand the operations of an Information Security Management System based on ISO/IEC 27001
• Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory frameworks
• Understand an auditor’s role to: plan, lead and follow-up on a management system audit in accordance with ISO 19011
• Learn how to lead an audit and audit team
• Learn how to interpret the requirements of ISO/IEC 27001 in the context of an ISMS audit
• Acquire the competencies of an auditor to: plan an audit, lead an audit, draft reports, and follow-up on an audit in compliance with ISO 19011

Educational approach

• This training is based on both theory and best practices used in ISMS audits
• Lecture sessions are illustrated with examples based on case studies
• Practical exercises are based on a case study which includes role playing and discussions
• Practice tests are similar to the Certification Exam

ISO 9001 and ISO 27001 stand as globally acknowledged benchmarks for quality management and information security management systems, respectively.

Delivered through instructor-led live sessions, available either online or on-site, this training is designed for professionals at an intermediate level who aim to master the interpretation of ISO 9001 and ISO 27001 standards and execute internal audits with confidence.

Upon completing this course, participants will be equipped to:

• Grasp the fundamental principles and mandatory requirements of both ISO 9001 and ISO 27001.
• Apply the interpretation of specific clauses and controls to practical, real-world situations.
• Effectively plan and carry out internal audits in accordance with ISO standards.
• Detect nonconformities and propose appropriate corrective measures.

Course Delivery Format

• Engaging interactive lectures paired with group discussions.
• Practical auditing exercises and in-depth case studies.
• Direct analysis of quality and security scenarios to reinforce learning.

Customization Options

• For tailored training solutions based on this curriculum, please reach out to us to coordinate arrangements.

The ISO/IEC 27001 Transition training course allows participants to gain a comprehensive understanding of the distinctions between ISO/IEC 27001:2013 and ISO/IEC 27001:2022. Furthermore, participants will learn about the new concepts introduced by ISO/IEC 27001:2022.

Who can attend?

• Auditors seeking to perform and lead information security management system (ISMS) audits
• Managers or consultants seeking to master the information security management system audit process
• Individuals responsible to maintain conformity with the ISMS requirements in an organization
• Technical experts seeking to prepare for the information security management system audit
• Expert advisors in information security management

Learning objectives

By the end of this training course, the participants will be able to:

1. Explain the fundamental concepts and principles of an information security management system (ISMS) based on ISO/IEC 27001
2. Interpret the ISO/IEC 27001 requirements for an ISMS from the perspective of an auditor
3. Evaluate the ISMS conformity to ISO/IEC 27001 requirements, in accordance with the fundamental audit concepts and principles
4. Plan, conduct, and close an ISO/IEC 27001 compliance audit, in accordance with ISO/IEC 17021-1 requirements, ISO 19011 guidelines, and other best practices of auditing
5. Manage an ISO/IEC 27001 audit program

Educational approach

• This training is based on both theory and best practices used in ISMS audits
• Lecture sessions are illustrated with examples based on case studies
• Practical exercises are based on a case study which includes role playing and discussions
• Practice tests are similar to the Certification Exam