CISA - Certified Information Systems Auditor - Exam Preparation Training Course

The AAISM framework provides advanced guidance for assessing, governing, and managing security risks associated with artificial intelligence systems.

This instructor-led training, available both online and on-site, is designed for advanced professionals seeking to implement robust security controls and governance practices within enterprise AI environments.

Upon completion of this program, participants will be equipped to:

• Assess AI security risks using industry-standard methodologies.
• Implement governance models that support the responsible deployment of AI.
• Align AI security policies with organizational objectives and regulatory requirements.
• Strengthen resilience and accountability across AI-driven operations.

Course Format

• Instructor-led lectures complemented by expert insights.
• Hands-on workshops and assessments.
• Practical exercises based on real-world AI governance scenarios.

Customization Options

• To tailor the training to your specific organizational AI strategy, please contact us to customize the course.

Description:

This four-day event, comprising CGEIT training, serves as the ultimate preparation for the examination phase. It is specifically designed to ensure that you successfully pass the challenging CGEIT exam on your first attempt.
The CGEIT qualification is an internationally recognized symbol of excellence in IT governance, awarded by ISACA. It is tailored for professionals who are responsible for managing IT governance or who hold significant advisory or assurance responsibilities within this domain.
Achieving CGEIT status will enhance your market recognition and increase your influence at the executive level.

Objectives:

This seminar has been designed to prepare delegates for the CGEIT examination by enabling them to supplement their existing knowledge and understanding, ensuring they are better prepared to pass the exam as defined by ISACA.

Target Audience:

Our training course is intended for IT and business professionals with significant IT governance experience who are undertaking the CGEIT exam.

Description:

CISA® is a globally recognised and highly popular certification designed for professionals working in the fields of IS audit and IT risk consulting.

Our CISA course is an intensive, highly competitive training programme focused on exam preparation. With a track record of delivering over 150 CISA training sessions in Europe and worldwide, and having trained more than 1,200 participants, Net Security’s in-house CISA training materials are developed with the primary objective of ensuring delegates pass the ISACA CISA® Exam. The training methodology emphasises understanding CISA IS auditing concepts and practising a wide range of question banks released by ISACA over the past three years. CISA certification holders are in high demand among prestigious accounting firms, global banks, advisory firms, assurance providers, and internal audit departments.

While delegates may possess extensive experience in IT auditing, the ability to solve CISA questionnaires depends largely on their understanding of globally accepted IT assurance practices. The CISA exam is particularly challenging due to the potential for close similarities between multiple choice options; it tests your grasp of global IT auditing practices in these nuanced scenarios. To address these challenges, we provide expert trainers with extensive experience in delivering CISA training worldwide.

The Net Security CISA manual covers all exam-relevant concepts, case studies, and Q&A sections across the five CISA domains. Additionally, trainers provide essential supporting materials during the course, including relevant CISA notes, question banks, glossary, videos, revision documents, exam tips, and CISA mind maps.

Goal:

The ultimate goal is to help you pass your CISA examination on your first attempt.

Objectives:

• Apply gained knowledge in a practical manner that benefits your organisation
• Deliver audit services in compliance with IT audit standards
• Provide assurance on leadership, organisational structure, and processes
• Provide assurance on the acquisition, development, testing, and implementation of IT assets
• Provide assurance on IT operations, including service operations and third-party management
• Provide assurance on the organisation’s security policies, standards, procedures, and controls to ensure the confidentiality, integrity, and availability of information assets.

Target Audience:

Finance and CPA professionals, IT professionals, internal and external auditors, and information security and risk consulting professionals.

Description:

Please note that this updated CISM exam content outline applies to exams beginning on 1 June 2022.

CISM® stands as the most prestigious and rigorous qualification for Information Security Managers worldwide. This certification offers a pathway to join an elite network of peers who are equipped to continuously learn and adapt to the expanding opportunities and challenges within Information Security Management.

Our CISM training methodology delivers comprehensive coverage of the four CISM domains, with a strong emphasis on building conceptual understanding and solving ISACA-published CISM exam questions. The course serves as intensive, rigorous exam preparation for ISACA’s Certified Information Security Manager (CISM®) Examination.

Our instructors advise all participants to review the ISACA-published CISM QA&E (Questions, Answers, and Explanations) as part of their exam preparation. The QA&E is particularly valuable in helping participants grasp the ISACA question format, the approach to answering them, and facilitates rapid assimilation of CISM concepts during live classroom sessions.
All our trainers possess extensive experience in delivering CISM training. We will thoroughly prepare you for the CISM examination.

Goal:

The primary objective is for you to pass your CISM examination on the first attempt.

Objectives:

• Apply the acquired knowledge in a practical manner that benefits your organization
• Establish and maintain an information security governance framework to achieve organizational goals and objectives
• Manage information risk to an acceptable level to satisfy business and compliance requirements
• Establish and maintain information security architectures (people, process, technology)
• Integrate information security requirements into the contracts and activities of third parties and suppliers
• Plan, establish, and manage the capability to detect, investigate, respond to, and recover from information security incidents to minimize business impact

Target Audience:

• Security professionals with 3-5 years of frontline experience
• Information security managers or individuals with management responsibilities
• Information security staff and assurance providers who require a deep understanding of information security management, including: CISOs, CIOs, CSOs, privacy officers, risk managers, security auditors, compliance personnel, BCP/DR personnel, and executive or operational managers responsible for assurance functions

This instructor-led, live training in Czech Republic (online or onsite) is aimed at beginner to intermediate-level system administrators and security professionals who wish to learn how to implement Cloudflare for content delivery and cloud security, as well as mitigate DDoS attacks.

By the end of this training, participants will be able to:

• Configure Cloudflare for their websites.
• Set up DNS records and SSL certificates.
• Implement Cloudflare for content delivery and caching.
• Protect their websites from DDoS attacks.
• Implement firewall rules to restrict traffic to their websites.

Description:

This intensive, rigorous course serves as dedicated exam preparation for ISACA’s Certified Information Systems Auditor (CRISC) Examination. The curriculum covers the latest four (4) domains of ISACA’s CRISC syllabus, with a strong emphasis on examination success. Attendees will also receive the Official ISACA CRISC Review Manual along with its Question, Answer, and Explanation (Q,A&E) supplements. The Q,A&E resource is invaluable for helping participants grasp the style of ISACA questions, understand the types of answers ISACA seeks, and rapidly assimilate the course material.

The technical skills and practices promoted and evaluated by ISACA within the CRISC certification form the foundation for career success in this field. Holding the CRISC certification demonstrates your professional competence. Given the increasing demand for experts in risk and control, ISACA’s CRISC has become the preferred certification program for individuals and enterprises globally. The CRISC certification reflects a commitment to serving an enterprise and profession with distinction.

Objectives:

• Assist you in passing the CRISC examination on your first attempt.
• Demonstrate your commitment to serving an enterprise with distinction through this certification.
• Leverage the growing demand for professionals with risk and control skills to secure better positions and higher salaries.

You will learn:

• How to help enterprises achieve business objectives by designing, implementing, monitoring, and maintaining risk-based, efficient, and effective IS controls.
• The technical skills and practices promoted by CRISC, which are the essential building blocks for success in the field.

This instructor-led, live training in Czech Republic (online or onsite) is designed for intermediate-level IT professionals seeking to enhance their skills in identifying and managing IT risk, implementing information systems controls, and preparing for the CRISC certification exam.

Upon completion of this training, participants will be able to:

• Grasp the governance and risk management components of IT.
• Perform IT risk assessments and execute appropriate risk responses.
• Design and implement effective information systems controls.
• Prepare thoroughly for the CRISC certification exam.

This instructor-led, live training in Czech Republic (online or onsite) is designed for supply chain professionals seeking to establish robust control and oversight of their supply chains, with a particular focus on cybersecurity.

By the end of this training, participants will be able to:

• Identify security oversights that can cause significant damage and disruption to a supply chain.
• Deconstruct complex security challenges into manageable and actionable components.
• Tackle common supply chain vulnerabilities by analyzing high-risk areas and engaging with stakeholders.
• Implement best practices for securing the supply chain.
• Significantly reduce or eliminate the most critical risks to an organization's supply chain.

This instructor-led, live training in Czech Republic (online or onsite) is designed for intermediate to advanced IT professionals and business leaders aiming to develop a structured approach to managing data breaches.

By the end of this training, participants will be able to:

• Comprehend the causes and implications of data breaches.
• Design and deploy strategies for preventing data breaches.
• Formulate incident response plans to contain and mitigate breaches.
• Perform forensic investigations and evaluate the extent of breach impacts.
• Adhere to legal and regulatory mandates regarding breach notification.
• Facilitate recovery from data breaches and enhance overall security postures.

This instructor-led, live training in Czech Republic (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

Description:

This Practitioner-level course emphasizes hands-on exercises designed to reinforce taught concepts and build delegates' confidence in implementing business continuity management. It also encourages debate and the exchange of knowledge and experience among students.
Delegates will benefit from the practical, extensive experience of our trainers, who are practicing business continuity management specialists and experts in ISO 22301:2019.

Delegates will learn how to:

• Explain the need for business continuity management (BCM) in all organisations
• Define the business continuity lifecycle
• Conduct business continuity programme management
• Understand their organisation sufficiently to identify mission-critical impact areas
• Determine their organisation's business continuity strategy
• Establish a business continuity response
• Exercise, maintain and review plans
• Embed business continuity in an organisation
• Define terms and definitions appropriate to business continuity

By the end of the course, delegates will have a detailed understanding of all the key components of business continuity management and be able to return to their work, making a significant contribution to the business continuity management process.

This instructor-led, live training in Czech Republic (online or onsite) is tailored for security engineers seeking to utilize IBM QRadar SIEM to address urgent security use cases.

Upon completing this training, participants will be capable of:

• Achieving full visibility of enterprise data across both on-premise and cloud infrastructures.
• Automating security intelligence to proactively hunt threats and mitigate risks.
• Effectively detecting, identifying, and prioritizing security threats.

This instructor-led live training in Czech Republic (online or onsite) is aimed at developers who wish to integrate Snyk into their development tools to find and fix security issues in their code.

By the end of this training, participants will be able to:

• Understand the features and structure of Snyk.
• Use Snyk to find and fix code security issues.
• Integrate Snyk in a software development lifecycle.

This course explores fundamental principles of security and IT security, focusing on the protection of systems against network-based threats. Participants will develop a solid grasp of key security protocols and the underlying concepts governing web service security. The curriculum also examines recent incidents involving cryptosystem breaches and highlights associated vulnerabilities.