Certified Information System Security Professional (CISSP) CBK Review Training Course

This course is designed to equip participants with the skills to strengthen organizational resilience against diverse threats. The goal is to enable organizations to respond effectively to incidents, sustain business operations, and protect their core interests.

Description:

CISA® is a globally recognised and highly popular certification designed for professionals working in the fields of IS audit and IT risk consulting.

Our CISA course is an intensive, highly competitive training programme focused on exam preparation. With a track record of delivering over 150 CISA training sessions in Europe and worldwide, and having trained more than 1,200 participants, Net Security’s in-house CISA training materials are developed with the primary objective of ensuring delegates pass the ISACA CISA® Exam. The training methodology emphasises understanding CISA IS auditing concepts and practising a wide range of question banks released by ISACA over the past three years. CISA certification holders are in high demand among prestigious accounting firms, global banks, advisory firms, assurance providers, and internal audit departments.

While delegates may possess extensive experience in IT auditing, the ability to solve CISA questionnaires depends largely on their understanding of globally accepted IT assurance practices. The CISA exam is particularly challenging due to the potential for close similarities between multiple choice options; it tests your grasp of global IT auditing practices in these nuanced scenarios. To address these challenges, we provide expert trainers with extensive experience in delivering CISA training worldwide.

The Net Security CISA manual covers all exam-relevant concepts, case studies, and Q&A sections across the five CISA domains. Additionally, trainers provide essential supporting materials during the course, including relevant CISA notes, question banks, glossary, videos, revision documents, exam tips, and CISA mind maps.

Goal:

The ultimate goal is to help you pass your CISA examination on your first attempt.

Objectives:

• Apply gained knowledge in a practical manner that benefits your organisation
• Deliver audit services in compliance with IT audit standards
• Provide assurance on leadership, organisational structure, and processes
• Provide assurance on the acquisition, development, testing, and implementation of IT assets
• Provide assurance on IT operations, including service operations and third-party management
• Provide assurance on the organisation’s security policies, standards, procedures, and controls to ensure the confidentiality, integrity, and availability of information assets.

Target Audience:

Finance and CPA professionals, IT professionals, internal and external auditors, and information security and risk consulting professionals.

This workshop combines practical training with in-depth theoretical knowledge. The curriculum is aligned with the official CISA certification framework. Participants will engage in case study discussions to explore specific issues in detail. Instruction is delivered in English (with Polish available upon request), utilizing the ISACA handbook as the primary reference.
 

CISA Exam Content Breakdown:

• Information System Auditing Process (21%)
• Governance and Management of IT (17%)
• Information Systems Acquisition, Development and Implementation (12%)
• Information Systems Operation and Business Resilience (23%)
• Protection of Information Assets (27%)

Exam Duration: 4 hours
Format: Multiple choice test
Number of Questions: 200

To claim the CISA qualification, candidates must fulfill the following requirements: 

1. Successfully pass the CISA exam. A score of 450 or higher is required.
2. Adhere to the ISACA Code of Professional Ethics
3. Commit to the CISA Continuing Professional Education Policy
4. Accumulate at least 5 years of professional work experience in information systems auditing, control, or security.
5. Comply with Information Systems Auditing Standards

If you have passed the exam and believe you meet these criteria, you may submit your certification application: apply for certification here
An application fee of $50 applies.

Additionally, there is an annual maintenance fee for the certification. The cost is $40 per year for ISACA members and $75 for non-members.

The Certified Information Systems Security Professional (CISSP) credential, granted by (ISC)², is a globally acknowledged qualification for senior information security experts. It confirms expertise across eight security domains and enhances professional credibility for positions such as Chief Information Security Officer (CISO), security engineer, and senior security manager.

This instructor-led, live training (available online or onsite) targets security practitioners at intermediate to advanced levels who aim to achieve both theoretical depth and practical readiness to pass the CISSP certification exam on the first attempt, while effectively applying these principles within real-world organizational settings.

Upon completion of this training, participants will be capable of:

• Understanding and applying the eight CISSP domains in security governance and daily practice.
• Creating, evaluating, and enhancing organizational security policies, architectures, and controls.
• Designing and implementing security solutions that align with legal, compliance, and business goals.
• Interpreting and answering CISSP exam-style questions with confidence and strategic insight.

Course Format

• Lectures and guided walkthroughs of each domain.
• Practice questions, scenario-based discussions, and quizzes.
• Hands-on labs, case studies, and collaborative group exercises.

Customization Options

• To request a customized focus on specific domains or extended exam review sessions, please contact us to make arrangements.

This instructor-led, live training in Czech Republic (online or onsite) is aimed at beginner to intermediate-level system administrators and security professionals who wish to learn how to implement Cloudflare for content delivery and cloud security, as well as mitigate DDoS attacks.

By the end of this training, participants will be able to:

• Configure Cloudflare for their websites.
• Set up DNS records and SSL certificates.
• Implement Cloudflare for content delivery and caching.
• Protect their websites from DDoS attacks.
• Implement firewall rules to restrict traffic to their websites.

Description:

This intensive, rigorous course serves as dedicated exam preparation for ISACA’s Certified Information Systems Auditor (CRISC) Examination. The curriculum covers the latest four (4) domains of ISACA’s CRISC syllabus, with a strong emphasis on examination success. Attendees will also receive the Official ISACA CRISC Review Manual along with its Question, Answer, and Explanation (Q,A&E) supplements. The Q,A&E resource is invaluable for helping participants grasp the style of ISACA questions, understand the types of answers ISACA seeks, and rapidly assimilate the course material.

The technical skills and practices promoted and evaluated by ISACA within the CRISC certification form the foundation for career success in this field. Holding the CRISC certification demonstrates your professional competence. Given the increasing demand for experts in risk and control, ISACA’s CRISC has become the preferred certification program for individuals and enterprises globally. The CRISC certification reflects a commitment to serving an enterprise and profession with distinction.

Objectives:

• Assist you in passing the CRISC examination on your first attempt.
• Demonstrate your commitment to serving an enterprise with distinction through this certification.
• Leverage the growing demand for professionals with risk and control skills to secure better positions and higher salaries.

You will learn:

• How to help enterprises achieve business objectives by designing, implementing, monitoring, and maintaining risk-based, efficient, and effective IS controls.
• The technical skills and practices promoted by CRISC, which are the essential building blocks for success in the field.

This instructor-led, live training in Czech Republic (online or onsite) is designed for intermediate-level IT professionals seeking to enhance their skills in identifying and managing IT risk, implementing information systems controls, and preparing for the CRISC certification exam.

Upon completion of this training, participants will be able to:

• Grasp the governance and risk management components of IT.
• Perform IT risk assessments and execute appropriate risk responses.
• Design and implement effective information systems controls.
• Prepare thoroughly for the CRISC certification exam.

This instructor-led, live training in Czech Republic (online or onsite) is designed for supply chain professionals seeking to establish robust control and oversight of their supply chains, with a particular focus on cybersecurity.

By the end of this training, participants will be able to:

• Identify security oversights that can cause significant damage and disruption to a supply chain.
• Deconstruct complex security challenges into manageable and actionable components.
• Tackle common supply chain vulnerabilities by analyzing high-risk areas and engaging with stakeholders.
• Implement best practices for securing the supply chain.
• Significantly reduce or eliminate the most critical risks to an organization's supply chain.

The RESILIA course begins by exploring its core purpose, essential terminology, the distinction between resilience and security, and the advantages of adopting cyber resilience practices. It provides an introduction to risk management and outlines the critical activities required to address both risks and opportunities. Furthermore, it highlights the importance of widely accepted management standards and best practice frameworks in achieving cyber resilience. The course then identifies the specific cyber resilience processes, along with their associated control objectives, interactions, and activities that should be aligned with relevant ITSM processes. In the final section, it covers the separation of duties and dual controls concerning the roles and responsibilities within cyber resilience.

This instructor-led, live training in Czech Republic (online or onsite) is designed for intermediate to advanced IT professionals and business leaders aiming to develop a structured approach to managing data breaches.

By the end of this training, participants will be able to:

• Comprehend the causes and implications of data breaches.
• Design and deploy strategies for preventing data breaches.
• Formulate incident response plans to contain and mitigate breaches.
• Perform forensic investigations and evaluate the extent of breach impacts.
• Adhere to legal and regulatory mandates regarding breach notification.
• Facilitate recovery from data breaches and enhance overall security postures.

This instructor-led, live training in Czech Republic (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

Description:

This Practitioner-level course emphasizes hands-on exercises designed to reinforce taught concepts and build delegates' confidence in implementing business continuity management. It also encourages debate and the exchange of knowledge and experience among students.
Delegates will benefit from the practical, extensive experience of our trainers, who are practicing business continuity management specialists and experts in ISO 22301:2019.

Delegates will learn how to:

• Explain the need for business continuity management (BCM) in all organisations
• Define the business continuity lifecycle
• Conduct business continuity programme management
• Understand their organisation sufficiently to identify mission-critical impact areas
• Determine their organisation's business continuity strategy
• Establish a business continuity response
• Exercise, maintain and review plans
• Embed business continuity in an organisation
• Define terms and definitions appropriate to business continuity

By the end of the course, delegates will have a detailed understanding of all the key components of business continuity management and be able to return to their work, making a significant contribution to the business continuity management process.

This instructor-led, live training in Czech Republic (online or onsite) is tailored for security engineers seeking to utilize IBM QRadar SIEM to address urgent security use cases.

Upon completing this training, participants will be capable of:

• Achieving full visibility of enterprise data across both on-premise and cloud infrastructures.
• Automating security intelligence to proactively hunt threats and mitigate risks.
• Effectively detecting, identifying, and prioritizing security threats.

This instructor-led live training in Czech Republic (online or onsite) is aimed at developers who wish to integrate Snyk into their development tools to find and fix security issues in their code.

By the end of this training, participants will be able to:

• Understand the features and structure of Snyk.
• Use Snyk to find and fix code security issues.
• Integrate Snyk in a software development lifecycle.

This program explores foundational principles of information security and IT security, placing a strong focus on countermeasures against network-based threats. Learners will acquire knowledge of critical security protocols and the security frameworks underpinning web services. Throughout practical laboratory sessions and threat modeling activities, the course will reference recent attacks targeting cryptosystems as well as relevant contemporary vulnerabilities.