Building up information security according to ISO 27005 Training Course

This instructor-led, live training in South Korea (online or onsite) is aimed at beginner-level professionals who wish to gain an understanding of ISO 27001 and its role in enhancing information security within an organization.

By the end of this training, participants will be able to:

• Understand the purpose and benefits of an ISMS.
• Familiarize themselves with key ISO 27001 concepts, terms, and principles.
• Recognize the role of an auditor in ensuring compliance.
• Gain insight into the audit process and continual improvement within ISO 27001.

This instructor-led live training in South Korea (online or onsite) is designed for intermediate-level IT auditors seeking to effectively integrate AI tools into their audit practices.

Upon completion of this training, participants will be able to:

• Grasp the core concepts of artificial intelligence and its application in IT auditing.
• Utilize AI technologies such as machine learning, NLP, and RPA to enhance audit efficiency, accuracy, and scope.
• Perform risk assessments using AI tools, enabling continuous monitoring and proactive risk management.
• Integrate AI into audit planning, execution, and reporting, enhancing the overall effectiveness of IT audits.

This instructor-led live training in South Korea (online or onsite) is designed for advanced-level security analysts seeking to enhance their skills in leveraging advanced Micro Focus ArcSight ESM features. The goal is to improve an organization's ability to detect, respond to, and mitigate cyber threats with greater precision and speed.

By the end of this training, participants will be able to:

• Optimize the use of Micro Focus ArcSight ESM to enhance monitoring and threat detection capabilities.
• Construct and manage advanced ArcSight variables to refine event streams for more precise analysis.
• Develop and implement ArcSight lists and rules for effective event correlation and alerting.
• Apply advanced correlation techniques to identify complex threat patterns and reduce false positives.

Description:

Basel III represents a global regulatory framework focused on bank capital adequacy, stress testing, and market liquidity risk. Initially established by the Basel Committee on Banking Supervision in 2010–11, the implementation timeline for the Accord has been extended to March 31, 2019. Basel III enhances bank capital requirements by boosting liquidity and reducing leverage.
Unlike Basel I and II, Basel III mandates varying reserve levels for different deposit types and borrowing categories. Rather than replacing its predecessors, it complements Basel I and Basel II.
Navigating this complex and evolving landscape can be challenging. Our course and training program are designed to help you anticipate and manage potential changes and their impact on your institution. As an accredited training partner of the Basel Certification Institute, we guarantee that our training materials and quality remain up-to-date and highly effective.

Objectives:

• Prepare candidates for the Certified Basel Professional Examination.
• Define practical strategies and techniques for defining, measuring, analyzing, improving, and controlling operational risk within banking organizations.

Target Audience:

• Board members with risk management responsibilities
• Chief Risk Officers (CROs) and Heads of Risk Management
• Members of Risk Management teams
• Compliance, legal, and IT support staff
• Equity and Credit Analysts
• Portfolio Managers
• Rating Agency Analysts

Overview:

• Introduction to Basel norms and amendments to the Basel Accord (III)
• Regulations governing market, credit, counterparty, and liquidity risks
• Stress testing for various risk measures, including formulation and delivery of stress tests
• Anticipated effects of Basel III on the international banking industry, including demonstrations of practical application
• The necessity for new Basel norms
• Key features of Basel III norms
• Objectives of the Basel III norms
• Timeline for Basel III implementation

This instructor-led, live training in South Korea (online or onsite) is designed for security managers looking to acquire fundamental to intermediate-level skills in CCTV security surveillance and management.

Upon completing this training, participants will be able to:

• Identify various types of CCTV systems and understand their benefits and features.
• Grasp the requirements for cabling and setting up CCTV systems.
• Install, configure, and manage CCTV systems effectively.

This instructor-led, live training in South Korea (online or on-site) is aimed at advanced-level professionals who wish to gain a comprehensive understanding of fraud examination concepts and prepare for the Certified Fraud Examiner (CFE) exam.

By the end of this training, participants will be able to:

• Gain comprehensive knowledge of fraud examination principles and the fraud examination process.
• Learn to identify, investigate, and prevent various types of financial fraud schemes.
• Understand the legal environment related to fraud, including the legal elements of fraud, relevant laws, and regulations.
• Acquire practical skills in conducting fraud investigations, including evidence collection, interviewing techniques, and data analysis.
• Learn to design and implement effective fraud prevention and deterrence programs within organizations.
• Gain confidence and knowledge to successfully pass the Certified Fraud Examiner (CFE) exam.

Description:

This four-day program (CGEIT training) serves as the ultimate preparation for exam day, designed to ensure you pass the challenging CGEIT exam on your first attempt.
The CGEIT credential is an internationally recognized symbol of excellence in IT governance, awarded by ISACA. It is intended for professionals responsible for managing IT governance or those with significant advisory or assurance responsibilities for IT governance.
Achieving CGEIT status will provide you with greater recognition in the marketplace, as well as increased influence at the executive level.

Objectives:

This seminar is designed to prepare delegates for the CGEIT examination by enabling them to supplement their existing knowledge and understanding to be better prepared to pass the exam, as defined by ISACA.

Target Audience:

Our training course is for IT and business professionals, with significant IT governance experience who are undertaking the CGEIT exam.

This instructor-led live training in South Korea (online or onsite) is designed for compliance professionals in the payment services industry who wish to create, implement, and enforce a robust compliance program within their organizations.

By the end of this training, participants will be able to:

• Understand the regulatory rules set by government authorities for payment service providers.
• Create internal policies and procedures required to satisfy government regulations.
• Implement a compliance program that adheres to relevant laws.
• Ensure that all corporate processes and procedures comply with the compliance program.
• Uphold the business's reputation while protecting it from lawsuits.

This instructor-led live training in South Korea (online or onsite) is designed for intermediate-level cybersecurity professionals who wish to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

By the end of this training, participants will be able to:

• Understand the key components of cybersecurity governance, risk, and compliance.
• Conduct risk assessments and develop risk mitigation strategies.
• Implement compliance measures and manage regulatory requirements.
• Develop and enforce security policies and procedures.

This course offers an in-depth introduction to the newly enacted Accessibility Law, empowering developers with the practical skills necessary to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the law's significance and implications, the curriculum quickly transitions to hands-on coding practices, essential tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

Course Objective:

To equip participants with a solid foundational understanding of GRC processes and capabilities, along with the necessary skills to effectively integrate governance, performance management, risk management, internal control, and compliance initiatives.

Course Summary:

• Essential GRC terminology and definitions
• Core principles of GRC
• Key components, best practices, and operational activities
• The interrelationship between GRC and related disciplines

This instructor-led, live training in South Korea (online or onsite) is designed for developers and administrators who aim to produce software and products that are compliant with HiTRUST standards.

Upon completing this training, participants will be able to:

• Grasp the core concepts of the HiTrust CSF (Common Security Framework).
• Identify the administrative and security control domains defined by the HITRUST CSF.
• Gain knowledge regarding various HiTrust assessment types and scoring methods.
• Understand the certification process and prerequisites for achieving HiTrust compliance.
• Apply best practices and tips for adopting the HiTrust approach.

Target Audience

This course is designed for all employees seeking a practical grasp of Compliance principles and effective Risk Management strategies.

Course Format

The training utilizes a blended learning approach, incorporating the following methods:

• Guided discussions
• Slide presentations
• Case study analysis
• Real-world examples

Learning Objectives

Upon completion of this course, participants will be able to:

Gain a comprehensive understanding of core Compliance principles, alongside national and international initiatives designed to manage related risks.

Articulate how organizations and their teams can implement an effective Compliance Risk Management Framework.

Define the responsibilities of the Compliance Officer and the Money Laundering Reporting Officer, and explain how these roles function within a business structure.

Identify critical risk areas within Financial Crime, specifically concerning international operations, offshore centers, and high-net-worth clients.

Open Source Software (OSS) Management involves overseeing the entire lifecycle of open-source components within an organization to ensure they are used securely, compliantly, and efficiently.

This instructor-led live training, available both online and onsite, is designed for intermediate-level IT professionals who aim to implement best practices for managing open-source software in enterprise and government settings.

Upon completion of this training, participants will be capable of:

• Implementing robust OSS policies and governance frameworks.
• Utilizing SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Reducing risks related to licensing and security vulnerabilities.
• Optimizing OSS adoption to maximize innovation and cost efficiency.

Course Format

• Interactive lectures and discussions.
• Case studies and scenario-based exercises.
• Hands-on demonstrations with OSS management tools.

Customization Options

• This course can be customized to align with specific organizational OSS policies and toolchains. Please contact us to arrange.

This instructor-led, live Payment Card Industry Professional training in South Korea (online or on-site) offers a professional certification for practitioners who wish to validate their expertise and understanding of the PCI Data Security Standard (PCI DSS).

Upon completion of this training, participants will be able to:

• Grasp the payment processing workflow and the PCI standards established to safeguard it.
• Comprehend the roles and responsibilities of entities within the payment industry.
• Gain a deep understanding of the 12 PCI DSS requirements.
• Demonstrate knowledge of PCI DSS and its application to organizations involved in the transaction process.