CGEIT – Certified in the Governance of Enterprise IT Training Course

There is an international focus on combating money laundering. Compliance officers, Anti-Money Laundering (AML) Officers, Money Laundering Reporting Officers (MLROs), Know Your Customer (KYC) analysts, auditors, and managers need to understand how to ensure compliance with Subsidiary 373.01, the Prevention of Money Laundering and Funding of Terrorism Regulations (PMLFTR). Under the PMLFTR, all Subject Persons, including those within the regulated financial services sector, are required to appoint a Money Laundering Reporting Officer (MLRO). This practical course provides essential knowledge and guidance on how to approach AML compliance within your organization, with particular attention to the regulatory environment in Malta. The training is designed to enhance understanding and adherence to these regulations for government and private sector entities alike.

Description:

Basel III is a global regulatory framework for bank capital adequacy, stress testing, and market liquidity risk. Initially agreed upon by the Basel Committee on Banking Supervision in 2010-2011, the implementation of these standards was extended to March 31, 2019. Basel III enhances bank capital requirements by increasing liquidity and reducing leverage.
Basel III complements rather than replaces Basel I and II by requiring different levels of reserves for various forms of deposits and other borrowings.
Navigating this complex and evolving regulatory landscape can be challenging. Our training program, accredited by the Basel Certification Institute, is designed to help you manage these changes effectively and understand their impact on your institution. The quality and relevance of our training materials are guaranteed to be current and practical.

Objectives:

• Prepare participants for the Certified Basel Professional Examination.
• Equip attendees with hands-on strategies and techniques for defining, measuring, analyzing, improving, and controlling operational risk within a banking organization.

Target Audience:

• Board members with risk oversight responsibilities
• Chief Risk Officers (CROs) and Heads of Risk Management
• Risk Management team members
• Compliance, legal, and IT support staff
• Equity and credit analysts
• Portfolio managers
• Rating agency analysts

Overview:

• Introduction to Basel norms and amendments to the Basel Accord (III)
• Regulations for market, credit, counterparty, and liquidity risk
• Stress testing methodologies and procedures, including how to formulate and conduct stress tests
• The potential impacts of Basel III on the international banking sector, with practical examples of its application
• The need for new Basel norms
• An in-depth look at the Basel III norms
• Objectives of the Basel III norms
• A timeline for Basel III implementation

This training program is tailored to meet the needs of professionals in the financial sector, ensuring they are well-equipped to comply with regulatory requirements and enhance risk management practices for government and private institutions alike.

Description:

CISA® is the world-renowned and most popular certification for professionals working in the field of IS audit and IT risk consulting.

Our CISA course is an intense, highly competitive, and exam-focused training program designed to prepare delegates for success. With extensive experience delivering over 150+ CISA trainings globally, including in Europe, and training more than 1200+ CISA delegates, Govtra’s CISA training material has been developed in-house with the primary goal of ensuring CISA delegates pass the ISACA CISA® Exam. The training methodology emphasizes understanding CISA IS auditing concepts and practicing a large number of ISACA-released question banks from the past three years. Over time, CISA holders have been in high demand within renowned accounting firms, global banks, advisory, assurance, and internal audit departments.

Delegates may have significant experience in IT auditing, but their ability to solve CISA questionnaires will depend on their understanding of globally accepted IT assurance practices. The CISA exam is challenging due to the potential for closely competing answer choices, which tests candidates' knowledge of global IT auditing standards. To address these challenges, we provide the best trainers with extensive experience in delivering CISA training worldwide.

The Govtra CISA manual covers all exam-relevant concepts, case studies, and Q&A sessions across the five domains of CISA. Additionally, the trainer shares key supporting materials such as relevant CISA notes, question banks, a CISA glossary, videos, revision documents, exam tips, and CISA mind maps during the course.

Goal:

The ultimate goal is to pass your CISA examination on the first attempt.

Objectives:

• Apply the knowledge gained in a practical manner beneficial to your organization for government operations.
• Provide audit services in accordance with IT audit standards.
• Offer assurance on leadership and organizational structure and processes.
• Ensure assurance on the acquisition, development, testing, and implementation of IT assets.
• Guarantee assurance on IT operations, including service operations and third-party relationships.
• Provide assurance on the organization’s security policies, standards, procedures, and controls to ensure the confidentiality, integrity, and availability of information assets.

Target Audience:

This course is designed for finance/CPA professionals, IT professionals, internal and external auditors, information security, and risk consulting professionals working in both the public and private sectors.

The training takes the form of a workshop supplemented with substantive knowledge. Classes are based on the official CISA certificate framework. During the workshop, case studies will be discussed to address specific issues. The sessions will be conducted in English (with the option of Polish upon request) and will use the ISACA handbook in English.

CISA Exam Material Scope:

• Information System Auditing Process (21%)
• Governance and Management of IT (17%)
• Information Systems Acquisition, Development, and Implementation (12%)
• Information Systems Operation and Business Resilience (23%)
• Protection of Information Assets (27%)

Duration of the exam: 4 hours
Type: multiple-choice test
Volume: 200 questions

List of requirements that you must meet to claim the CISA qualification:

1. Pass the CISA exam. The passing score is a mark of 450 or higher.
2. Adhere to the ISACA Code of Professional Ethics.
3. Pledge to comply with the CISA Continuing Professional Education Policy.
4. Acquire at least 5 years of professional experience in information systems auditing, control, or security work.
5. Comply with Information Systems Auditing Standards.

If you have passed the exam and believe that you meet these requirements, you can begin the application for certification. Visit the CISA certification page to apply. There is a $50 fee for this application.

In addition, there is an annual fee required to maintain your certification after it has been granted. The fee is $40 per year for ISACA members and $75 for non-members. This ensures ongoing compliance and professional development for government professionals in the field of information systems auditing.

Description:

Disclaimer: Please be advised that this updated CISM exam content outline is applicable to exams starting 1 June 2022.

The Certified Information Security Manager (CISM®) is the most prestigious and demanding qualification for information security managers globally. This certification provides a platform for professionals to become part of an elite peer network, equipped with the ability to continuously learn and adapt to the evolving opportunities and challenges in information security management.

Our CISM training methodology offers comprehensive coverage of the four CISM domains, focusing on building foundational concepts and solving ISACA-released CISM exam questions. The course is designed as an intensive training program and rigorous exam preparation for ISACA’s Certified Information Security Manager (CISM®) Examination.

Our instructors encourage all attendees to review the ISACA-released CISM QA&E (Questions, Answers, and Explanations) for exam preparation. This resource is invaluable in helping participants understand the style of questions, effective problem-solving approaches, and rapid assimilation of CISM concepts during live classroom sessions. All our trainers have extensive experience in delivering CISM training and are dedicated to thoroughly preparing you for the CISM examination.

Goal:

The ultimate goal is to pass your CISM examination on the first attempt.

Objectives:

• Apply the knowledge gained in a practical manner that benefits your organization
• Establish and maintain an information security governance framework to achieve organizational goals and objectives
• Manage information risk to an acceptable level to meet business and compliance requirements
• Establish and maintain information security architectures (people, process, technology)
• Integrate information security requirements into contracts and activities of third parties/suppliers
• Plan, establish, and manage the capability to detect, investigate, respond to, and recover from information security incidents to minimize business impact

Target Audience:

• Security professionals with 3-5 years of front-line experience
• Information security managers or those with management responsibilities
• Information security staff, information security assurance providers who require an in-depth understanding of information security management, including: CISOs, CIOs, CSOs, privacy officers, risk managers, security auditors and compliance personnel, BCP/DR personnel, executive and operational managers responsible for assurance functions

This training is designed to support professionals in enhancing their skills and knowledge for government and organizational success.

NobleProg serves as an official ISACA COBIT ® Training Partner, offering comprehensive training programs for government. COBIT ® is a robust framework designed to support the governance and management of information and technology (I&T) within enterprises, ensuring alignment with organizational goals and objectives.

Learning Objectives

This COBIT 2019 Foundation course is designed to introduce participants to COBIT 2019 and enhance their understanding of how an integrated business framework for the governance and management of enterprise IT can be applied to achieve IT business integration, cost reductions, and increased productivity. The key areas covered in this course include:

• Introduction to the new framework
• Key concepts and terminology
• Governance and framework principles
• Governance system components
• Governance and management objectives
• Performance management
• Designing a tailored governance system for government

Description:

This course is designed as an intensive exam preparation for ISACA’s Certified Information Systems Auditor (CRISC) Examination. It covers the latest four domains of ISACA’s CRISC syllabus, with a strong emphasis on exam readiness. Participants will receive the Official ISACA CRISC Review Manual and the Question, Answer, and Explanation (Q&A&E) supplement. The Q&A&E is particularly valuable for helping delegates understand the style of questions posed by ISACA, the types of answers expected, and for facilitating rapid assimilation of the material.

The technical skills and practices promoted by ISACA within the CRISC certification are foundational to success in the field. Achieving the CRISC certification demonstrates a high level of expertise and commitment. With an increasing demand for professionals with risk and control knowledge, ISACA’s CRISC certification has become a preferred credential for individuals and organizations globally. The CRISC certification signifies a dedication to serving enterprises and the profession with distinction.

Objectives:

• To assist participants in passing the CRISC examination on their first attempt.
• To signify commitment to serving an enterprise with distinction through the possession of this certification.
• To enable holders of this certification to secure better positions and salaries due to the growing demand for professionals with risk and control expertise.

You will learn:

• How to help enterprises achieve their business objectives by designing, implementing, monitoring, and maintaining risk-based, efficient, and effective IS controls.
• The technical skills and practices that CRISC promotes, which are essential for success in the field.

This course is tailored to support professionals in enhancing their capabilities and meeting the rigorous standards required for government service.

Description:

Cybersecurity skills are in high demand, as threats continue to impact organizations globally. According to a survey by ISACA, a significant majority of professionals recognize the importance of these skills and plan to work in positions that require cybersecurity expertise. To address this critical need, ISACA has developed the Cybersecurity Fundamentals Certificate, which provides comprehensive education and verification of essential skills.

Objectives:

With the increasing prevalence of cybersecurity threats and a growing shortage of qualified professionals, ISACA's Cybersecurity Fundamentals Certificate program is designed to rapidly train entry-level employees. This ensures they have the necessary skills and knowledge to effectively operate in the cybersecurity domain, thereby enhancing security measures for government and other organizations.

Target Audience:

The certificate program is an ideal pathway for individuals seeking to gain foundational knowledge in cybersecurity and begin building their expertise in this vital area. It is particularly beneficial for those entering the field or looking to enhance their career prospects with a strong foundation in cybersecurity principles.

Course Goal:

To ensure that an individual has a core understanding of GRC processes and capabilities, and the skills necessary to integrate governance, performance management, risk management, internal control, and compliance activities for government.

Overview:

• GRC Basic Terms and Definitions
• Principles of GRC
• Core Components, Practices, and Activities
• Relationship of GRC to Other Disciplines

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a United States legislation that establishes standards for data privacy and security in the handling and storage of medical information. These guidelines serve as an essential benchmark for developing health applications, regardless of geographic location. Applications that comply with HIPAA are widely recognized and trusted on a global scale. In this instructor-led, live training (remote), participants will gain a comprehensive understanding of HIPAA through a series of hands-on exercises in a live-lab environment. By the end of this training, participants will be able to: - Understand the fundamental principles of HIPAA - Develop health applications that adhere to HIPAA standards - Utilize developer tools designed for achieving HIPAA compliance **Audience** - Developers - Product Managers - Data Privacy Officers **Format of the Course** - A blend of lecture, discussion, and extensive hands-on practice. **Note** - To request a customized training for government or other organizations, please contact us to arrange.

The ISO/IEC 27002 Lead Manager training equips individuals with the essential expertise and knowledge required to support organizations in implementing and managing Information Security controls as outlined in ISO/IEC 27002.

Upon completion of this course, participants are eligible to sit for the exam and apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. This certification demonstrates a mastery of the principles and techniques necessary for the implementation and management of Information Security Controls based on ISO/IEC 27002.

Who Should Attend?

• Managers or consultants aiming to implement an Information Security Management System (ISMS) in alignment with ISO/IEC 27001 and ISO/IEC 27002
• Project managers or consultants seeking to excel in the ISMS implementation process
• Individuals responsible for information security, compliance, risk management, and governance within an organization
• Members of information security teams
• Expert advisors in information technology
• Information Security officers
• Privacy officers
• IT professionals
• Chief Technology Officers (CTOs), Chief Information Officers (CIOs), and Chief Information Security Officers (CISOs)

Learning Objectives

• Acquire expertise in the implementation of Information Security controls by adhering to the framework and principles of ISO/IEC 27002
• Gain a thorough understanding of the concepts, approaches, standards, methods, and techniques necessary for the effective implementation and management of Information Security controls
• Understand the interrelationships among the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behavior
• Appreciate the significance of information security in organizational strategy
• Mastery of the processes involved in managing information security
• Proficiency in formulating and implementing security requirements and objectives

Educational Approach

• This training combines theoretical instruction with practical application
• Lectures enriched with real-world examples
• Practical exercises based on case studies
• Review sessions to aid in exam preparation
• A practice test that mirrors the certification exam format

General Information

• Certification fees are included in the exam price
• Participants will receive a comprehensive training manual containing over 500 pages of information and practical examples
• A certificate of participation, awarding 31 CPD (Continuing Professional Development) credits, will be provided to all attendees
• In the event of an exam failure, participants are entitled to retake the exam within 12 months at no additional cost

This training is designed to enhance the capabilities of professionals in the public sector, ensuring they have the necessary skills and knowledge to effectively manage information security for government agencies.

Information security threats and attacks are evolving continuously. The most effective defense against these challenges is the proper implementation and management of information security controls and best practices. Information security is also a critical expectation and requirement set by customers, legislators, and other stakeholders. This training course is designed to prepare participants in implementing an information security management system (ISMS) based on ISO/IEC 27001. It aims to provide a comprehensive understanding of the best practices for managing an ISMS and a framework for its ongoing improvement. After completing the training course, participants can take the exam. Successful completion of the exam allows you to apply for the “PECB Certified ISO/IEC 27001 Lead Implementer” credential, which demonstrates your ability and practical knowledge to implement an ISMS in accordance with the requirements of ISO/IEC 27001. ### Who Can Attend? - Project managers and consultants involved in or concerned with the implementation of an ISMS - Expert advisors seeking to master the implementation of an ISMS - Individuals responsible for ensuring compliance with information security requirements within an organization - Members of an ISMS implementation team ### General Information - Certification fees are included in the exam price. - Training materials containing over 450 pages of information and practical examples will be provided. - A participation certificate with 31 CPD (Continuing Professional Development) credits will be issued. - In the event of exam failure, you can retake the exam within 12 months at no additional cost. ### Educational Approach - The training course includes essay-type exercises, multiple-choice quizzes, examples, and best practices used in the implementation of an ISMS. - Participants are encouraged to communicate with each other and engage in discussions while completing quizzes and exercises. - Exercises are based on a case study. - The structure of the quizzes mirrors that of the certification exam. ### Learning Objectives This training course will help you: - Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS. - Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks. - Understand the operation of an information security management system and its processes based on ISO/IEC 27001. - Learn how to interpret and implement the requirements of ISO/IEC 27001 in the specific context of an organization. - Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an ISMS for government.

Audience

All staff who require a comprehensive understanding of Compliance and Risk Management for government operations.

Format of the Course

The course will be delivered through a combination of:

• Facilitated Discussions
• Slide Presentations
• Case Studies
• Practical Examples

Course Objectives

By the end of this course, participants will be able to:

• Understand the key aspects of Compliance and the national and international initiatives aimed at managing related risks for government.
• Define methods for establishing a Compliance Risk Management Framework within an organization and its staff.
• Explain the roles of Compliance Officer and Money Laundering Reporting Officer, and how these positions should be integrated into governmental operations.
• Identify critical areas in Financial Crime, particularly as they pertain to International Business, Offshore Centers, and High-Net-Worth Clients for government.

This instructor-led, live Payment Card Industry Professional training for government in US (online or onsite) provides an individual qualification for industry practitioners who wish to demonstrate their professional expertise and understanding of the PCI Data Security Standard (PCI DSS). By the end of this training, participants will be able to: - Understand the payment process and the PCI standards designed to protect it. - Comprehend the roles and responsibilities of entities involved in the payment industry. - Gain a deep insight into and understanding of the 12 PCI DSS requirements. - Demonstrate knowledge of how PCI DSS applies to organizations involved in the transaction process.