CGEIT – Certified in the Governance of Enterprise IT Training Course

AAISM provides an advanced framework for assessing, governing, and managing security risks within artificial intelligence systems.

This instructor-led live training (available online or onsite) is designed for advanced professionals seeking to implement robust security controls and governance practices in enterprise AI environments.

Upon completion of this program, participants will be equipped to:

• Evaluate AI security risks using industry-recognized methodologies.
• Implement governance models for responsible AI deployment.
• Align AI security policies with organizational goals and regulatory expectations.
• Enhance resilience and accountability within AI-driven operations.

Course Format

• Facilitated lectures supported by expert analysis.
• Practical workshops and assessment-based activities.
• Applied exercises using real-world AI governance scenarios.

Course Customization Options

• For tailored training aligned to your organizational AI strategy, please contact us to customize the course.

Description:

Basel III represents a global regulatory framework focused on bank capital adequacy, stress testing, and market liquidity risk. Initially established by the Basel Committee on Banking Supervision in 2010–11, the implementation timeline for these amendments was extended until March 31, 2019. The framework enhances bank capital requirements by boosting liquidity and reducing leverage.
Unlike Basel I and II, Basel III mandates distinct reserve levels for various deposit types and borrowings. Rather than replacing its predecessors, it functions alongside Basel I and Basel II to create a more comprehensive regulatory environment.
Navigating this complex and evolving landscape can be challenging. Our course and training are designed to help you anticipate changes and understand their impact on your institution. As an accredited training partner of the Basel Certification Institute, we guarantee that our materials and training quality are current and highly effective.

Objectives:

• Prepare participants for the Certified Basel Professional Examination.
• Equip attendees with practical strategies and techniques for defining, measuring, analyzing, improving, and controlling operational risk within banking organizations.

Target Audience:

• Board members with risk management responsibilities
• Chief Risk Officers (CROs) and Heads of Risk Management
• Members of Risk Management teams
• Compliance, legal, and IT support staff
• Equity and Credit Analysts
• Portfolio Managers
• Rating Agency Analysts

Overview:

• Introduction to Basel norms and amendments to the Basel Accord (III)
• Regulations covering market, credit, counterparty, and liquidity risk
• Stress testing for various risk measures, including formulation and delivery methods
• Potential effects of Basel III on the international banking industry, with practical application demonstrations
• Need for the new Basel norms
• Overview of the Basel III norms
• Objectives of the Basel III norms
• Timeline for Basel III implementation

This instructor-led, live training in Romania (online or onsite) is designed for advanced-level professionals who wish to gain a comprehensive understanding of fraud examination concepts and prepare for the Certified Fraud Examiner (CFE) exam.

Upon completing this training, participants will be able to:

• Acquire comprehensive knowledge of fraud examination principles and processes.
• Identify, investigate, and prevent various forms of financial fraud.
• Understand the legal framework surrounding fraud, including its legal elements, applicable laws, and regulations.
• Develop practical skills for conducting fraud investigations, such as evidence collection, interviewing techniques, and data analysis.
• Design and implement effective fraud prevention and deterrence programs within organizations.
• Gain the confidence and knowledge necessary to successfully pass the Certified Fraud Examiner (CFE) exam.

Description:

CISA® stands as the world's most renowned and widely recognized certification for professionals specializing in IS audit and IT risk consulting.

Our CISA course offers intensive, highly competitive, and exam-oriented training. Drawing on our experience of delivering over 150 CISA training programs across Europe and globally, and having trained more than 1,200 delegates, Net Security’s in-house CISA training materials are designed with the primary objective of ensuring delegates pass the ISACA CISA® Exam. The methodology emphasizes a deep understanding of CISA IS auditing concepts through rigorous practice with extensive question banks released by ISACA over the past three years. Over time, CISA holders have become highly sought after by prestigious accounting firms, global banks, advisory and assurance divisions, and internal audit departments.

While delegates may possess years of IT auditing experience, their ability to solve CISA questionnaires depends entirely on their grasp of globally accepted IT assurance practices. The CISA exam is notably challenging because it often presents closely matched potential answers, testing the candidate's nuanced understanding of global IT auditing standards. To help navigate these challenges, we consistently provide expert trainers with extensive global experience in delivering CISA training.

The Net Security CISA manual encompasses all exam-relevant concepts, case studies, and Q&A sessions across the five CISA domains. Additionally, trainers provide key supporting materials during the course, including detailed CISA notes, question banks, glossaries, videos, revision guides, exam tips, and CISA mind maps.

Goal:

The primary objective is to help you pass the CISA examination on your first attempt.

Objectives:

• Apply acquired knowledge in a practical manner that benefits your organization.
• Deliver audit services in compliance with IT audit standards.
• Provide assurance regarding leadership, organizational structure, and processes.
• Provide assurance on the acquisition, development, testing, and implementation of IT assets.
• Provide assurance on IT operations, including service operations and third-party management.
• Provide assurance that the organization’s security policies, standards, procedures, and controls ensure the confidentiality, integrity, and availability of information assets.

Target Audience:

Finance/CPA professionals, IT professionals, internal and external auditors, information security specialists, and risk consulting professionals.

This training is structured as an interactive workshop enriched with comprehensive theoretical knowledge. The curriculum aligns with the official CISA certification framework. Throughout the sessions, we will analyze case studies to address specific challenges. Instruction is conducted in English (Polish is available upon request) using the ISACA handbook as the primary resource.
 

Scope of CISA Exam Material:

• Information System Auditing Process (21%)
• Governance and Management of IT (17%)
• Information Systems Acquisition, Development and implementation (12%)
• Information Systems Operation and Business Resilience (23%)
• Protection of Information Assets (27%)

Exam Duration: 4 hours
Format: Multiple choice test
Number of Questions: 200

To qualify for the CISA certification, you must fulfill the following requirements: 

1. Pass the CISA exam with a score of 450 or higher.
2. Adhere to the ISACA Code of Professional Ethics
3. Commit to complying with the CISA Continuing Professional Education Policy
4. Accumulate at least 5 years of professional experience in information systems auditing, control, or security.
5. Comply with Information Systems Auditing Standards

Once you have passed the exam and confirmed that you meet these criteria, you may submit your certification application via the official ISACA certification page.
A processing fee of $50 is required for the application.

Additionally, there is an annual renewal fee to maintain your certification. The cost is $40 per year for ISACA members and $75 for non-members.

Description:

Disclaimer: Please be advised that this updated CISM exam content outline is applicable to exams starting 1 June 2022.

CISM® represents the most prestigious and rigorous certification for Information Security Managers worldwide. This credential offers you the opportunity to join an elite network of peers who continuously learn and adapt to the evolving opportunities and challenges in Information Security Management.

Our CISM training methodology provides comprehensive coverage of the four CISM domains, with a clear focus on building foundational concepts and solving CISM exam questions released by ISACA. This course serves as intensive training and rigorous exam preparation for ISACA’s Certified Information Security Manager (CISM®) Examination.

Our instructors encourage all attendees to review the ISACA-released CISM QA&E (Questions, Answers, and Explanations) as part of their exam preparation. The QA&E is invaluable in helping candidates understand the style of ISACA questions, the approach to solving them, and facilitates rapid retention of CISM concepts during live classroom sessions.
All our trainers possess extensive experience in delivering CISM training. We will thoroughly prepare you for the CISM examination.

Goal:

The ultimate goal is to pass your CISM examination on the first attempt.

Objectives:

• Apply the knowledge gained in a practical manner that benefits your organisation
• Establish and maintain an information security governance framework to achieve your organization's goals and objectives
• Manage information risk to an acceptable level to meet business and compliance requirements
• Establish and maintain information security architectures (people, process, technology)
• Integrate information security requirements into the contracts and activities of third parties/ suppliers
• Plan, establish, and manage the capability to detect, investigate, respond to, and recover from information security incidents to minimize business impact

Target Audience:

• Security professionals with 3-5 years of front-line experience
• Information security managers or those with management responsibilities
• Information security staff and assurance providers who require an in-depth understanding of information security management, including: CISOs, CIOs, CSOs, privacy officers, risk managers, security auditors, compliance personnel, BCP/DR personnel, executive and operational managers responsible for assurance functions

This instructor-led, live training in Romania (online or onsite) is designed for compliance professionals in the payment sector who aim to develop, implement, and enforce a robust compliance program within their organizations.

Upon completion of this training, participants will be equipped to:

• Comprehend the regulations established by government regulators for payment service providers.
• Develop the internal policies and procedures necessary to meet regulatory requirements.
• Establish a compliance program that aligns with applicable laws.
• Ensure that all corporate processes and procedures adhere to the compliance framework.
• Safeguard the company’s reputation while protecting it from legal liabilities.

Description:

This course is designed as an intensive and rigorous preparation for ISACA’s Certified Information Systems Auditor (CRISC) Examination. It covers the four (4) most recent domains of the ISACA CRISC syllabus, with a strong emphasis on exam success. Participants will receive the Official ISACA CRISC Review Manual and the Question, Answer and Explanation (Q,A&E) supplements. The Q,A&E resource is invaluable for helping students grasp the style of ISACA questions, understand the types of answers sought, and facilitate rapid retention of the material.

The technical skills and practices promoted and evaluated by ISACA within the CRISC certification form the foundation of success in this field. Holding the CRISC certification demonstrates your professional competence. With increasing demand for professionals skilled in risk and control, ISACA’s CRISC has established itself as the preferred certification for individuals and organizations worldwide. The CRISC certification reflects a dedication to serving your enterprise and profession with excellence.

Objectives:

• Help you pass the CRISC examination on your first attempt.
• Signify your commitment to serving an enterprise with distinction.
• Leverage the growing demand for professionals with risk and control skills to secure better positions and salaries.

You will learn:

• How to help enterprises achieve their business objectives by designing, implementing, monitoring, and maintaining risk-based, efficient, and effective IS controls.
• The technical skills and practices promoted by CRISC, which are the building blocks of success in the field.

This instructor-led live training in Romania (online or onsite) targets intermediate-level cybersecurity professionals who aim to enhance their grasp of GRC frameworks and apply them to ensure secure and compliant business operations.

By the conclusion of this training, participants will be able to:

• Comprehend the fundamental elements of cybersecurity governance, risk, and compliance.
• Perform risk assessments and formulate effective risk mitigation strategies.
• Execute compliance measures and handle regulatory obligations.
• Create and enforce security policies and procedures.

Description:

Cybersecurity expertise is highly sought after as threats continue to impact enterprises globally. A significant majority of professionals surveyed by ISACA acknowledge this trend and intend to pursue roles requiring cybersecurity knowledge.
To address this need, ISACA has created the Cybersecurity Fundamentals Certificate, offering both education and validation of skills in this domain.

Objectives:

As cybersecurity threats escalate and the global shortage of qualified security professionals widens, ISACA's Cybersecurity Fundamentals Certificate program offers an effective solution for rapidly training entry-level staff. It ensures they possess the necessary skills and knowledge to operate successfully in the cybersecurity field.

Target Audience:

This certificate program is also one of the most effective ways to acquire foundational cybersecurity knowledge and begin building expertise in this critical area.

This course offers an expert overview of the newly enacted Accessibility Law, providing developers with the practical skills needed to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the law's importance and implications, the course rapidly transitions to hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

Course Objective:

This course aims to equip participants with a solid grasp of GRC processes and capabilities, along with the necessary skills to effectively integrate governance, performance management, risk management, internal control, and compliance initiatives.

Course Overview:

• Key GRC terminology and definitions
• Foundational principles of GRC
• Core components, best practices, and activities
• The relationship between GRC and related disciplines

This instructor-led, live training in Romania (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

The landscape of information security threats and attacks is constantly evolving and becoming more sophisticated. The most effective defense strategy involves the proper implementation and management of information security controls and industry best practices. Furthermore, robust information security is a critical expectation and requirement for customers, legislators, and other stakeholders.

This training course is designed to equip participants with the skills needed to implement an Information Security Management System (ISMS) in accordance with ISO/IEC 27001. It aims to provide a thorough understanding of ISMS best practices and establish a framework for its ongoing management and enhancement.

Upon completing the training course, participants are eligible to sit for the exam. Successful candidates may apply for the “PECB Certified ISO/IEC 27001 Lead Implementer” credential, which validates their ability and practical knowledge to implement an ISMS aligned with ISO/IEC 27001 requirements.

Who Can Attend?

• Project managers and consultants involved in or concerned with the implementation of an ISMS
• Expert advisors aiming to master the implementation of an ISMS
• Individuals responsible for ensuring conformity to information security requirements within an organization
• Members of an ISMS implementation team

General information

• Certification fees are included in the exam price
• Training material containing over 450 pages of information and practical examples will be distributed
• A participation certificate awarding 31 CPD (Continuing Professional Development) credits will be issued
• In case of exam failure, you can retake the exam within 12 months free of charge

Educational approach

• This training course contains essay-type exercises, multiple-choice quizzes, examples, and best practices used in the implementation of an ISMS.
• The participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
• The exercises are based on a case study.
• The structure of the quizzes is similar to that of the certification exam.

Learning objectives

This training course will help you:

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS
• Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand the operation of an information security management system and its processes based on ISO/IEC 27001
• Learn how to interpret and implement the requirements of ISO/IEC 27001 in the specific context of an organization
• Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an ISMS

Open Source Software (OSS) Management refers to the systematic oversight of the entire lifecycle of open-source components within an organization, ensuring their secure, compliant, and efficient utilization.

Delivered as an instructor-led, live training session (available online or onsite), this program targets intermediate-level IT professionals seeking to implement best practices for managing open-source software in enterprise and government settings.

Upon completion of this training, participants will be able to:

• Formulate effective OSS policies and establish robust governance frameworks.
• Utilize SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Reduce risks linked to licensing issues and security vulnerabilities.
• Accelerate OSS adoption while maximizing innovation and achieving cost savings.

Course Format

• Interactive lectures and discussions.
• Case studies and scenario-based exercises.
• Practical demonstrations using OSS management tools.

Customization Options

• This course can be customized to align with specific organizational OSS policies and toolchains. Please contact us to arrange.