CGEIT – Certified in the Governance of Enterprise IT Training Course

There is an international focus on combating money laundering. Compliance officers, AML Officers, MLROs, KYC analysts, auditors, and managers need to understand how to ensure compliance with Subsidiary 373.01, the Prevention of Money Laundering and Funding of Terrorism Regulations (PMLFTR).

Under the PMLFTR, all subject persons, including those within the regulated financial services sector, are required to appoint a Money Laundering Reporting Officer (MLRO).

This practical course provides essential knowledge and guidance for government professionals on how to approach AML compliance within their organization, with a particular emphasis on the regulatory environment in Malta.

Description:

Basel III is a global regulatory standard on bank capital adequacy, stress testing, and market liquidity risk. Initially agreed upon by the Basel Committee on Banking Supervision in 2010–11, changes to The Accord have extended implementation to March 31, 2019. Basel III strengthens bank capital requirements by increasing bank liquidity and decreasing bank leverage.
Basel III differs from Basel I & II in that it requires different levels of reserves for various forms of deposits and other types of borrowings, working alongside rather than superseding the earlier accords.
Navigating this complex and evolving landscape can be challenging. Our course and training are designed to help you manage likely changes and their impact on your institution. As an accredited training partner with the Basel Certification Institute, Govtra guarantees that our training and materials are up-to-date and effective for government and industry professionals.

Objectives:

• Preparation for the Certified Basel Professional Examination.
• Define practical strategies and techniques for the definition, measurement, analysis, improvement, and control of operational risk within a banking organization.

Target Audience:

• Board members with risk responsibilities
• CROs and Heads of Risk Management
• Members of the Risk Management team
• Compliance, legal, and IT support staff
• Equity and Credit Analysts
• Portfolio Managers
• Rating Agency Analysts

Overview:

• Introduction to Basel norms and amendments to the Basel Accord (III)
• Regulations for market, credit, counterparty, and liquidity risk
• Stress testing for various risk measures, including how to formulate and deliver stress tests
• The likely effects of Basel III on the international banking industry, including demonstrations of its practical application
• Need for The New Basel Norms
• The Basel III Norms
• Objectives of The Basel III Norms
• Basel III – Timeline

Description:

CISA® is the world-renowned and most popular certification for professionals working in the field of IS audit and IT risk consulting.

Our CISA course is an intense, highly competitive, and exam-focused training program designed to prepare delegates for success. With extensive experience delivering over 150+ CISA trainings globally, including in Europe, and training more than 1200+ CISA delegates, Govtra’s CISA training material has been developed in-house with the primary goal of ensuring CISA delegates pass the ISACA CISA® Exam. The training methodology emphasizes understanding CISA IS auditing concepts and practicing a large number of ISACA-released question banks from the past three years. Over time, CISA holders have been in high demand within renowned accounting firms, global banks, advisory, assurance, and internal audit departments.

Delegates may have significant experience in IT auditing, but their ability to solve CISA questionnaires will depend on their understanding of globally accepted IT assurance practices. The CISA exam is challenging due to the potential for closely competing answer choices, which tests candidates' knowledge of global IT auditing standards. To address these challenges, we provide the best trainers with extensive experience in delivering CISA training worldwide.

The Govtra CISA manual covers all exam-relevant concepts, case studies, and Q&A sessions across the five domains of CISA. Additionally, the trainer shares key supporting materials such as relevant CISA notes, question banks, a CISA glossary, videos, revision documents, exam tips, and CISA mind maps during the course.

Goal:

The ultimate goal is to pass your CISA examination on the first attempt.

Objectives:

• Apply the knowledge gained in a practical manner beneficial to your organization for government operations.
• Provide audit services in accordance with IT audit standards.
• Offer assurance on leadership and organizational structure and processes.
• Ensure assurance on the acquisition, development, testing, and implementation of IT assets.
• Guarantee assurance on IT operations, including service operations and third-party relationships.
• Provide assurance on the organization’s security policies, standards, procedures, and controls to ensure the confidentiality, integrity, and availability of information assets.

Target Audience:

This course is designed for finance/CPA professionals, IT professionals, internal and external auditors, information security, and risk consulting professionals working in both the public and private sectors.

The training takes the form of a workshop supplemented with substantive knowledge. Classes are based on the official CISA certificate framework. During the workshop, case studies will be discussed to address specific issues. The sessions will be conducted in English (with the option of Polish upon request) and will use the ISACA handbook in English.

CISA Exam Material Scope:

• Information System Auditing Process (21%)
• Governance and Management of IT (17%)
• Information Systems Acquisition, Development, and Implementation (12%)
• Information Systems Operation and Business Resilience (23%)
• Protection of Information Assets (27%)

Duration of the exam: 4 hours
Type: multiple-choice test
Volume: 200 questions

List of requirements that you must meet to claim the CISA qualification:

1. Pass the CISA exam. The passing score is a mark of 450 or higher.
2. Adhere to the ISACA Code of Professional Ethics.
3. Pledge to comply with the CISA Continuing Professional Education Policy.
4. Acquire at least 5 years of professional experience in information systems auditing, control, or security work.
5. Comply with Information Systems Auditing Standards.

If you have passed the exam and believe that you meet these requirements, you can begin the application for certification. Visit the CISA certification page to apply. There is a $50 fee for this application.

In addition, there is an annual fee required to maintain your certification after it has been granted. The fee is $40 per year for ISACA members and $75 for non-members. This ensures ongoing compliance and professional development for government professionals in the field of information systems auditing.

Description:

Disclaimer: Please be advised that this updated CISM exam content outline is applicable to exams starting 1 June 2022.

The Certified Information Security Manager (CISM®) is the most prestigious and demanding qualification for information security managers globally. This certification provides a platform for professionals to become part of an elite peer network, equipped with the ability to continuously learn and adapt to the evolving opportunities and challenges in information security management.

Our CISM training methodology offers comprehensive coverage of the four CISM domains, focusing on building foundational concepts and solving ISACA-released CISM exam questions. The course is designed as an intensive training program and rigorous exam preparation for ISACA’s Certified Information Security Manager (CISM®) Examination.

Our instructors encourage all attendees to review the ISACA-released CISM QA&E (Questions, Answers, and Explanations) for exam preparation. This resource is invaluable in helping participants understand the style of questions, effective problem-solving approaches, and rapid assimilation of CISM concepts during live classroom sessions. All our trainers have extensive experience in delivering CISM training and are dedicated to thoroughly preparing you for the CISM examination.

Goal:

The ultimate goal is to pass your CISM examination on the first attempt.

Objectives:

• Apply the knowledge gained in a practical manner that benefits your organization
• Establish and maintain an information security governance framework to achieve organizational goals and objectives
• Manage information risk to an acceptable level to meet business and compliance requirements
• Establish and maintain information security architectures (people, process, technology)
• Integrate information security requirements into contracts and activities of third parties/suppliers
• Plan, establish, and manage the capability to detect, investigate, respond to, and recover from information security incidents to minimize business impact

Target Audience:

• Security professionals with 3-5 years of front-line experience
• Information security managers or those with management responsibilities
• Information security staff, information security assurance providers who require an in-depth understanding of information security management, including: CISOs, CIOs, CSOs, privacy officers, risk managers, security auditors and compliance personnel, BCP/DR personnel, executive and operational managers responsible for assurance functions

This training is designed to support professionals in enhancing their skills and knowledge for government and organizational success.

Govtra is an official ISACA COBIT ® Training Partner. COBIT ® is a framework designed for government and enterprises to govern and manage information and technology (I&T) in support of achieving organizational goals.

Learning Objectives

This COBIT 2019 Foundation course is designed to introduce participants to COBIT 2019 and provide an understanding of how an integrated business framework for the governance and management of enterprise IT can be effectively utilized to achieve IT business integration, cost reductions, and increased productivity. The syllabus areas that this course covers are:

• Introduction to the new framework
• Key concepts and terminology
• Governance and framework principles
• Components of the governance system
• Governance and management objectives
• Performance management
• Designing a tailored governance system for government

Description:

This class is designed as an intensive and rigorous exam preparation for ISACA’s Certified Information Systems Auditor (CRISC) Examination. The course will cover the latest four (4) domains of ISACA’s CRISC syllabus, with a strong emphasis on exam readiness. Official ISACA CRISC Review Manual and Question, Answer, and Explanation (Q&A&E) supplements will also be provided to participants. The Q&A&E is particularly effective in helping delegates understand the ISACA style of questions, the type of answers ISACA expects, and it aids in rapid memory assimilation of the material.

The technical skills and practices that ISACA promotes and evaluates within the CRISC certification are essential for success in the field. Obtaining the CRISC certification demonstrates your expertise and commitment to the profession. With a growing demand for professionals with risk and control expertise, ISACA’s CRISC has become the preferred certification program by individuals and organizations around the world. The CRISC certification signifies a dedication to serving an enterprise and the chosen profession with distinction, particularly valuable in the public sector.

Objectives:

• To help you pass the CRISC examination on your first attempt.
• Possessing this certification will signify your commitment to serving an enterprise with distinction, especially for government roles.
• The growing demand for professionals with risk and control skills will allow holders of this certification to command better positions and salaries, including those in public sector organizations.

You will learn:

• To assist enterprises in achieving business objectives by designing, implementing, monitoring, and maintaining risk-based, efficient, and effective IS controls, particularly for government operations.
• The technical skills and practices that CRISC promotes, which are the building blocks of success in the field, including those relevant to public sector workflows.

Description:

Cybersecurity skills are in high demand, as threats continue to impact enterprises across the nation. According to a survey by ISACA, an overwhelming majority of professionals recognize this trend and plan to work in positions that require cybersecurity knowledge.
To address this gap, ISACA has developed the Cybersecurity Fundamentals Certificate, which provides essential education and verification of skills for government and other sectors.

Objectives:

With cybersecurity threats on the rise and a growing shortage of appropriately equipped security professionals, ISACA's Cybersecurity Fundamentals Certificate program is an ideal solution to quickly train entry-level employees. This ensures they have the necessary skills and knowledge to effectively operate in the cyber arena for government and other organizations.

Target Audience:

The certificate program is also one of the best ways to gain foundational knowledge in cybersecurity and begin building your skills and knowledge in this critical area, particularly for those seeking to serve in public sector roles.

Course Goal:

To ensure that an individual has a core understanding of GRC processes and capabilities, and the skills necessary to integrate governance, performance management, risk management, internal control, and compliance activities for government.

Overview:

• GRC Basic Terms and Definitions
• Principles of GRC
• Core Components, Practices, and Activities
• Relationship of GRC to Other Disciplines

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a U.S. legislation that provides provisions for data privacy and security in the handling and storing of medical information. These guidelines serve as a robust standard for developing health applications, applicable regardless of geographic location. Applications compliant with HIPAA are widely recognized and trusted globally.

In this instructor-led, live training (remote), participants will gain an understanding of the fundamentals of HIPAA through a series of hands-on live-lab exercises.

By the end of this training, participants will be able to:

• Understand the basics of HIPAA
• Develop health applications that meet HIPAA compliance standards
• Utilize developer tools for ensuring HIPAA compliance

Audience

• Developers
• Product Managers
• Data Privacy Officers

Format of the Course

• Part lecture, part discussion, with exercises and extensive hands-on practice.

Note

• To request a customized training for government, please contact us to arrange.

The ISO/IEC 27002 Lead Manager training equips participants with the essential expertise and knowledge required to support organizations in implementing and managing Information Security controls as outlined in ISO/IEC 27002.

Upon completing this course, participants are eligible to sit for the exam and apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. This certification demonstrates mastery of the principles and techniques necessary for implementing and managing Information Security Controls based on ISO/IEC 27002.

Who Should Attend?

• Managers or consultants aiming to implement an Information Security Management System (ISMS) in compliance with ISO/IEC 27001 and ISO/IEC 27002
• Project managers or consultants seeking to excel in the ISMS implementation process
• Individuals responsible for information security, compliance, risk management, and governance within an organization
• Members of information security teams
• Expert advisors in information technology
• Information Security officers
• Privacy officers
• IT professionals
• Chief Technology Officers (CTOs), Chief Information Officers (CIOs), and Chief Information Security Officers (CISOs)

Learning Objectives

• Acquire the skills to implement Information Security controls in alignment with the framework and principles of ISO/IEC 27002
• Gain a thorough understanding of the concepts, approaches, standards, methods, and techniques necessary for effective implementation and management of Information Security controls
• Understand the interrelations between the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behavior
• Recognize the significance of information security in organizational strategy
• Mastery in implementing information security management processes
• Mastery in formulating and implementing security requirements and objectives

Educational Approach

• The training combines theoretical knowledge with practical application
• Lectures are complemented by real-world case studies
• Practical exercises based on detailed case studies
• Review exercises to aid in exam preparation
• A practice test that mirrors the certification exam

General Information

• Certification fees are included in the exam price
• Participants will receive comprehensive training materials, including over 500 pages of information and practical examples
• A participation certificate with 31 CPD (Continuing Professional Development) credits will be issued to participants
• In the event of exam failure, a free retake is available within 12 months

Information security threats and attacks are evolving and increasing in sophistication. The most effective defense against these challenges is the proper implementation and management of information security controls and best practices. Information security is a critical expectation and requirement for customers, legislators, and other stakeholders.

This training course is designed to prepare participants for implementing an information security management system (ISMS) based on ISO/IEC 27001. It aims to provide a comprehensive understanding of ISMS best practices and a framework for its continuous management and improvement, specifically tailored for government contexts.

After completing the training course, you can take the exam. If you successfully pass it, you can apply for the “PECB Certified ISO/IEC 27001 Lead Implementer” credential, which demonstrates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.

Who Can Attend?

• Project managers and consultants involved in and concerned with the implementation of an ISMS for government
• Expert advisors seeking to master the implementation of an ISMS within public sector organizations
• Individuals responsible for ensuring compliance with information security requirements within an organization
• Members of an ISMS implementation team

General Information

• Certification fees are included in the exam price.
• Training material containing over 450 pages of information and practical examples will be distributed.
• A participation certificate with 31 CPD (Continuing Professional Development) credits will be issued.
• In case of exam failure, you can retake the exam within 12 months free of charge.

Educational Approach

• This training course includes essay-type exercises, multiple-choice quizzes, examples, and best practices used in the implementation of an ISMS for government.
• Participants are encouraged to communicate with each other and engage in discussions when completing quizzes and exercises.
• The exercises are based on a case study relevant to public sector workflows and governance.
• The structure of the quizzes mirrors that of the certification exam, ensuring participants are well-prepared for assessment.

Learning Objectives

This training course will help you:

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS within public sector organizations.
• Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks relevant to government operations.
• Understand the operation of an information security management system and its processes based on ISO/IEC 27001, with a focus on public sector applications.
• Learn how to interpret and implement the requirements of ISO/IEC 27001 in the specific context of government organizations.
• Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an ISMS for government.

Audience

All staff who require a working knowledge of Compliance and the Management of Risk for government operations.

Format of the Course

The course is structured as a combination of:

• Facilitated Discussions
• Slide Presentations
• Case Studies
• Examples

Course Objectives

By the end of this course, participants will be able to:

• Understand the major facets of Compliance and the national and international efforts being made to manage risk related to it for government operations.
• Define the methods by which a government agency and its staff can establish a Compliance Risk Management Framework.
• Detail the roles of Compliance Officer and Money Laundering Reporting Officer and how these roles should be integrated into governmental business processes.
• Understand key areas of Financial Crime, particularly as they pertain to International Business, Offshore Centers, and High-Net-Worth Clients for government oversight.

This instructor-led, live Payment Card Industry Professional training in US Empire (online or onsite) provides an individual qualification for industry practitioners who wish to demonstrate their professional expertise and understanding of the PCI Data Security Standard (PCI DSS) for government and other public sector entities.

By the end of this training, participants will be able to:

• Understand the payment process and the PCI standards designed to protect it within governmental workflows.
• Comprehend the roles and responsibilities for entities involved in the payment industry, including those specific to government operations.
• Gain deep insight into, and a thorough understanding of, the 12 PCI DSS requirements as they apply to public sector organizations.
• Demonstrate knowledge of how PCI DSS applies to government agencies and other organizations that are involved in the transaction process.