PECB Certified Chief Information Security Officer (CISO) Training Course

Why Should You Attend?

This training course is designed for government professionals and others to understand the fundamental concepts and principles of a business continuity management system (BCMS) based on ISO 22301. By participating in this training, attendees will gain insights into the structure and requirements of the standard, including the BCMS policy, top management's commitment, internal audit, management review, and the continual improvement process.

Following the completion of the training course, participants are eligible to sit for an exam. Successful candidates can apply for the “PECB Certificate Holder in ISO 22301 Foundation” credential. This certification demonstrates a comprehensive understanding of the fundamental concepts, principles, methodologies, requirements, framework, and management approach used in business continuity.

Who Should Attend?

• Individuals involved in business continuity for government
• Professionals seeking to gain knowledge about the main processes of business continuity management systems (BCMS)
• Those interested in pursuing a career in business continuity

Learning Objectives

• Acknowledge the correlation between ISO 22301 and other standards and regulatory frameworks for government
• Understand the components and operation of a BCMS based on ISO 22301 and its principal processes
• Grasp the concepts, approaches, methods, and techniques used for the implementation and management of a BCMS

Educational Approach

• Lecture sessions will include discussion questions and real-world examples.
• The exercises will feature multiple-choice quizzes to reinforce learning.
• Participants are encouraged to engage in interactive discussions and complete the quizzes collaboratively.
• The quizzes are designed to mirror the format of the certificate exam, preparing participants for success.

The ISO 22301 Introduction training course is designed to help participants understand the fundamental concepts of a Business Continuity Management System (BCMS). By attending this course, attendees will gain insight into the significance of BCMS and the benefits it can provide to businesses, society, and governments.

Who Should Attend?

• Individuals interested in Business Continuity Management
• Those seeking to acquire knowledge about the core processes of a Business Continuity Management System (BCMS)

Learning Objectives

• Comprehend the concepts, approaches, methods, and techniques necessary for implementing a Business Continuity Management System
• Understand the essential components of a Business Continuity Management System

This course is particularly relevant for government professionals looking to enhance their understanding of BCMS principles and practices for government operations.

Upon completing the training course, you will be eligible to take the examination. If you successfully pass the exam, you can apply for the “Certified ISO 22301 Lead Implementer” credential. This internationally recognized certificate demonstrates your professional capabilities and practical knowledge in implementing a Business Continuity Management System (BCMS) based on the requirements of ISO 22301 within an organization.

Who Should Attend?

• Project managers and consultants involved in business continuity management
• Expert advisors seeking to master the implementation of a BCMS
• Individuals responsible for maintaining compliance with BCMS requirements within an organization
• Members of the BCMS team

Learning Objectives

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for implementing and effectively managing a BCMS
• Learn how to interpret and implement the requirements of ISO 22301 in the specific context of an organization
• Understand the operation of the business continuity management system and its processes based on ISO 22301
• Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and continually improving a BCMS

Educational Approach

• This training course is grounded in theory, implementation best practices, and ISO 22301 requirements essential for the implementation of a BCMS.
• Lecture sessions are complemented with practical exercises based on a case study that includes role-playing and discussions.
• Participants are encouraged to communicate and engage in discussions and exercises.
• The exercises closely mirror the certification exam format.

General Information

• Certification fees are included in the exam price. After completing the course, you will be able to schedule your exam.
• Participants will receive training materials containing over 450 pages of explanatory information and practical examples.
• An Attendance Record worth 31 CPD (Continuing Professional Development) credits will be issued to participants who have attended the training course.
• If candidates do not pass the exam, they can retake it within 12 months following the initial exam at no additional cost.

This course is designed for government professionals and aligns with public sector workflows, governance, and accountability standards.

Why Should You Attend?

The ISO/IEC 27001 Foundation training provides a comprehensive understanding of the essential elements required to implement and manage an Information Security Management System (ISMS) as outlined in ISO/IEC 27001. This training course will cover various components of the ISMS, such as policy development, procedures, performance measurement, management commitment, internal audits, management reviews, and continuous improvement.

Upon completion of this course, you will be eligible to take the certification exam and apply for the “PECB Certified ISO/IEC 27001 Foundation” credential. This certification demonstrates your proficiency in the fundamental methodologies, requirements, framework, and management approaches necessary for government and public sector organizations.

Who Should Attend?

• Individuals involved in Information Security Management within their organizations
• Professionals seeking to gain knowledge about the core processes of Information Security Management Systems (ISMS)
• Those interested in advancing their careers in Information Security Management for government and other public sector entities

Educational Approach

• Lecture sessions are enriched with practical questions and real-world examples to enhance understanding.
• Practical exercises include case studies and group discussions to reinforce learning.
• Practice tests simulate the Certification Exam environment, providing a realistic assessment of your knowledge and readiness.

ISO/IEC 27001 Lead Auditor Training

The ISO/IEC 27001 Lead Auditor training equips participants with the essential expertise to conduct Information Security Management System (ISMS) audits by applying widely recognized audit principles, procedures, and techniques.

Why Should You Attend?

This training course will provide you with the knowledge and skills necessary to plan and execute internal and external audits in accordance with ISO 19011 and the ISO/IEC 17021-1 certification process.

Through practical exercises, you will gain mastery of audit techniques and become competent in managing an audit program, leading an audit team, communicating effectively with customers, and resolving conflicts.

After acquiring the necessary expertise to perform these audits, you can take the examination and apply for the “PECB Certified ISO/IEC 27001 Lead Auditor” credential. Holding a PECB Lead Auditor Certificate will demonstrate your capabilities and competencies in auditing organizations based on best practices.

Who Should Attend?

• Auditors aiming to perform and lead ISMS certification audits
• Managers or consultants seeking to master the ISMS audit process
• Individuals responsible for maintaining compliance with ISMS requirements
• Technical experts preparing for an ISMS audit
• Expert advisors in Information Security Management

Learning Objectives

• Understand the operations of an ISMS based on ISO/IEC 27001
• Recognize the relationship between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand an auditor’s role in planning, leading, and following up on a management system audit according to ISO 19011
• Learn how to lead an audit and manage an audit team
• Learn how to interpret the requirements of ISO/IEC 27001 in the context of an ISMS audit
• Acquire the competencies of an auditor to plan, lead, draft reports, and follow up on audits in compliance with ISO 19011

Educational Approach

• This training combines theoretical knowledge with best practices used in ISMS audits
• Lecture sessions are supplemented with examples based on case studies
• Practical exercises include role-playing and discussions based on a case study
• Practice tests mirror the Certification Exam to prepare participants for government and industry certification requirements

The ISO/IEC 27002 Lead Manager training equips individuals with the essential expertise and knowledge required to support organizations in implementing and managing Information Security controls as outlined in ISO/IEC 27002.

Upon completion of this course, participants are eligible to sit for the exam and apply for the “PECB Certified ISO/IEC 27002 Lead Manager” credential. This certification demonstrates a mastery of the principles and techniques necessary for the implementation and management of Information Security Controls based on ISO/IEC 27002.

Who Should Attend?

• Managers or consultants aiming to implement an Information Security Management System (ISMS) in alignment with ISO/IEC 27001 and ISO/IEC 27002
• Project managers or consultants seeking to excel in the ISMS implementation process
• Individuals responsible for information security, compliance, risk management, and governance within an organization
• Members of information security teams
• Expert advisors in information technology
• Information Security officers
• Privacy officers
• IT professionals
• Chief Technology Officers (CTOs), Chief Information Officers (CIOs), and Chief Information Security Officers (CISOs)

Learning Objectives

• Acquire expertise in the implementation of Information Security controls by adhering to the framework and principles of ISO/IEC 27002
• Gain a thorough understanding of the concepts, approaches, standards, methods, and techniques necessary for the effective implementation and management of Information Security controls
• Understand the interrelationships among the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance, and human behavior
• Appreciate the significance of information security in organizational strategy
• Mastery of the processes involved in managing information security
• Proficiency in formulating and implementing security requirements and objectives

Educational Approach

• This training combines theoretical instruction with practical application
• Lectures enriched with real-world examples
• Practical exercises based on case studies
• Review sessions to aid in exam preparation
• A practice test that mirrors the certification exam format

General Information

• Certification fees are included in the exam price
• Participants will receive a comprehensive training manual containing over 500 pages of information and practical examples
• A certificate of participation, awarding 31 CPD (Continuing Professional Development) credits, will be provided to all attendees
• In the event of an exam failure, participants are entitled to retake the exam within 12 months at no additional cost

This training is designed to enhance the capabilities of professionals in the public sector, ensuring they have the necessary skills and knowledge to effectively manage information security for government agencies.

The ISO/IEC 27005 Lead Risk Manager training equips participants with the essential expertise to support organizations in the risk management process related to all assets critical for Information Security. This training utilizes the ISO/IEC 27005 standard as a reference framework, providing a comprehensive understanding of designing and developing an Information Security Risk Management program. The course also delves into best practices for risk assessment methods such as OCTAVE, EBIOS, MEHARI, and harmonized TRA. This training facilitates the implementation process of the ISMS framework outlined in the ISO/IEC 27001 standard.

Upon mastering the necessary concepts of Information Security Risk Management based on ISO/IEC 27005, participants can sit for the exam and apply for the “PECB Certified ISO/IEC 27005 Lead Risk Manager” credential. By obtaining a PECB Lead Risk Manager Certificate, individuals will demonstrate their practical knowledge and professional capabilities to support and lead teams in managing Information Security Risks, particularly relevant for government agencies and other public sector entities.

Who Should Attend?

• Information Security risk managers
• Information Security team members
• Individuals responsible for Information Security, compliance, and risk within an organization
• Individuals implementing ISO/IEC 27001 or seeking to comply with it, as well as those involved in a risk management program
• IT consultants
• IT professionals
• Information Security officers
• Privacy officers

Examination - Duration: 3 Hours

The “PECB Certified ISO/IEC 27005 Lead Risk Manager” exam fully aligns with the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains:

• Domain 1: Fundamental principles and concepts of Information Security Risk Management
• Domain 2: Implementation of an Information Security Risk Management program
• Domain 3: Information security risk assessment
• Domain 4: Information security risk treatment
• Domain 5: Information security risk communication, monitoring, and improvement
• Domain 6: Information security risk assessment methodologies

General Information

• Certification fees are included in the exam price
• Participants will receive training material containing over 350 pages of information and practical examples
• A participation certificate with 21 CPD (Continuing Professional Development) credits will be issued
• In the event of exam failure, participants can retake the exam within 12 months at no additional cost

Information security threats and attacks are evolving continuously. The most effective defense against these challenges is the proper implementation and management of information security controls and best practices. Information security is also a critical expectation and requirement set by customers, legislators, and other stakeholders. This training course is designed to prepare participants in implementing an information security management system (ISMS) based on ISO/IEC 27001. It aims to provide a comprehensive understanding of the best practices for managing an ISMS and a framework for its ongoing improvement. After completing the training course, participants can take the exam. Successful completion of the exam allows you to apply for the “PECB Certified ISO/IEC 27001 Lead Implementer” credential, which demonstrates your ability and practical knowledge to implement an ISMS in accordance with the requirements of ISO/IEC 27001. ### Who Can Attend? - Project managers and consultants involved in or concerned with the implementation of an ISMS - Expert advisors seeking to master the implementation of an ISMS - Individuals responsible for ensuring compliance with information security requirements within an organization - Members of an ISMS implementation team ### General Information - Certification fees are included in the exam price. - Training materials containing over 450 pages of information and practical examples will be provided. - A participation certificate with 31 CPD (Continuing Professional Development) credits will be issued. - In the event of exam failure, you can retake the exam within 12 months at no additional cost. ### Educational Approach - The training course includes essay-type exercises, multiple-choice quizzes, examples, and best practices used in the implementation of an ISMS. - Participants are encouraged to communicate with each other and engage in discussions while completing quizzes and exercises. - Exercises are based on a case study. - The structure of the quizzes mirrors that of the certification exam. ### Learning Objectives This training course will help you: - Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS. - Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks. - Understand the operation of an information security management system and its processes based on ISO/IEC 27001. - Learn how to interpret and implement the requirements of ISO/IEC 27001 in the specific context of an organization. - Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an ISMS for government.

The ISO 28000 Lead Implementer training equips participants with the essential expertise to assist organizations in establishing, implementing, managing, and maintaining a Supply Chain Security Management System (SCSMS) based on ISO 28000. Throughout this training course, participants will gain a comprehensive understanding of best practices in Supply Chain Security Management Systems and enhance their ability to manage potential security risks and their impacts within an organization’s supply chain.

Upon mastering the necessary concepts of Supply Chain Security Management Systems, individuals can sit for the exam and apply for the “PECB Certified ISO 28000 Lead Implementer” credential. By obtaining a PECB Lead Implementer Certificate, professionals will demonstrate their practical knowledge and professional capabilities to implement ISO 28000 in an organization.

Who Should Attend?

• Managers or consultants involved in Supply Chain Security Management
• Expert advisors seeking to master the implementation of a Supply Chain Security Management System
• Individuals responsible for maintaining conformance with SCSMS requirements
• SCSMS team members

Learning Objectives

• Acknowledge the correlation between ISO 28000 and other standards and regulatory frameworks, particularly those relevant for government operations.
• Master the concepts, approaches, methods, and techniques used for the implementation and effective management of a SCSMS, ensuring alignment with public sector workflows and governance.
• Learn how to interpret ISO 28000 requirements in the specific context of an organization, including those for government agencies.
• Acquire the skills to support an organization in effectively planning, implementing, managing, monitoring, and maintaining a SCSMS, with a focus on accountability and transparency.
• Gain the expertise to advise organizations in implementing Supply Chain Security Management System best practices, ensuring compliance with regulatory requirements for government.

Educational Approach

• This training combines theoretical knowledge with practical applications used in the implementation of a SCSMS, tailored to meet the needs of public sector entities.
• Lecture sessions are enriched with real-world examples and case studies that highlight best practices for government operations.
• Practical exercises include role-playing and discussions based on a detailed case study, providing hands-on experience in managing supply chain security for government agencies.
• Practice tests simulate the Certification Exam to prepare participants thoroughly for the assessment.

General Information

• Certification fees are included in the exam price, ensuring transparency and cost-effectiveness for all attendees.
• A comprehensive training material set, containing over 450 pages of information and practical examples, will be provided to each participant.
• A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued upon completion of the course.
• In the event of exam failure, participants have the option to retake the exam within 12 months at no additional cost.

ISO 9001 Foundation training equips participants with the essential elements required to implement and manage a Quality Management System (QMS) as outlined in ISO 9001. This course provides an understanding of various QMS components, including policy, procedures, performance measurements, management commitment, internal audits, management reviews, and continual improvement. Upon completing this training, participants are eligible to take the exam and apply for the “PECB Certified ISO 9001 Foundation” credential. A PECB Foundation Certificate demonstrates that you have grasped the fundamental methodologies, requirements, framework, and management approaches of QMS, which is particularly valuable for government agencies seeking to enhance their quality management practices. ### Who Should Attend? - Individuals involved in Quality Management - Professionals aiming to gain knowledge about the primary processes of Quality Management Systems (QMS) - Those interested in pursuing a career in Quality Management The “PECB Certified ISO 9001 Foundation” exam fully complies with the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains: - Domain 1: Fundamental principles and concepts of a Quality Management System (QMS) - Domain 2: Quality Management System (QMS) Upon successfully passing the exam, you can apply for the “PECB Certified ISO 9001 Foundation” credential. ### General Information - Certification fees are included in the exam price. - Training materials, consisting of over 200 pages of information and practical examples, will be provided. - A participation certificate with 14 CPD (Continuing Professional Development) credits will be issued. - In the event of an exam failure, you have the option to retake the exam within 12 months at no additional cost.

The ISO 9001 Lead Auditor training equips participants with the essential expertise to conduct Quality Management System (QMS) audits by applying widely recognized audit principles, procedures, and techniques. This course will provide you with the knowledge and skills necessary to plan and execute internal and external audits in compliance with ISO 19011 and the certification process according to ISO/IEC 17021-1. Through practical exercises, you will gain mastery of audit techniques and become competent in managing an audit program, leading an audit team, communicating effectively with customers, and resolving conflicts. Upon completing this training and acquiring the necessary expertise to perform these audits, you can take the exam and apply for a “PECB Certified ISO 9001 Lead Auditor” credential. Holding a PECB Lead Auditor Certificate will demonstrate your capabilities and competencies to audit organizations based on best practices, which is particularly valuable for government agencies striving for quality and efficiency in their operations. ### Who Should Attend? - Auditors seeking to perform and lead Quality Management System (QMS) certification audits - Managers or consultants aiming to master the QMS audit process - Individuals responsible for maintaining compliance with QMS requirements - Technical experts preparing for a QMS audit - Expert advisors in Quality Management ### General Information - Certification fees are included in the exam price. - Training materials containing over 450 pages of information and practical examples will be provided. - A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued. - In the event of exam failure, you can retake the exam within 12 months at no additional cost.

The ISO 9001 Lead Implementer training equips participants with the essential expertise to assist organizations in establishing, implementing, managing, and maintaining a Quality Management System (QMS) based on ISO 9001. Throughout this training course, attendees will gain a comprehensive understanding of best practices for QMS, which can enhance an organization’s customer satisfaction and overall performance and effectiveness.

Upon mastering the necessary concepts of Quality Management Systems, participants are eligible to sit for the exam and apply for the “PECB Certified ISO 9001 Lead Implementer” credential. Holding a PECB Lead Implementer Certificate demonstrates practical knowledge and professional capabilities to implement ISO 9001 in an organization, ensuring alignment with public sector workflows, governance, and accountability.

Who Should Attend?

• Managers or consultants involved in Quality Management
• Expert advisors seeking to master the implementation of a Quality Management System
• Individuals responsible for maintaining conformance with QMS requirements
• Members of QMS teams

General Information

• Certification fees are included in the exam price.
• Training materials, including over 450 pages of information and practical examples, will be provided.
• A participation certificate with 31 CPD (Continuing Professional Development) credits will be issued.
• In the event of exam failure, participants can retake the exam within 12 months at no additional cost.

Why Should You Attend?

The Certified Lead Ethical Hacker training course equips you with the essential expertise to conduct information system penetration tests by applying recognized principles, procedures, and techniques. This course will help you identify potential threats on computer networks and manage a penetration testing project or team effectively. During the training, you will learn how to plan and perform both internal and external penetration tests in compliance with standards such as the Penetration Testing Execution Standard (PTES) and the Open Source Security Testing Methodology Manual (OSSTMM). Additionally, you will gain a comprehensive understanding of drafting reports and proposing countermeasures. Through practical exercises, you will master penetration testing techniques and develop skills in managing a pentest team, customer communication, and conflict resolution.

This training provides a technical overview of information security through ethical hacking, using common methods like information gathering and vulnerability detection within and outside business networks. The course is aligned with the NICE (National Initiative for Cybersecurity Education) Protect and Defend framework, ensuring that it meets industry standards and best practices.

After acquiring the necessary knowledge and skills in ethical hacking, you can take the exam to earn the "PECB Certified Lead Ethical Hacker" credential. Holding this certificate demonstrates your proficiency in performing and managing penetration tests according to established best practices, which is crucial for government and private sector roles alike.

Who Should Attend?

• Individuals interested in IT security and ethical hacking, whether to deepen their knowledge or explore a career change.
• Information security officers and professionals seeking to master ethical hacking and penetration testing techniques.
• Managers and consultants who want to learn how to oversee the penetration testing process effectively.
• Auditors aiming to conduct professional penetration tests.
• Personnel responsible for maintaining the security of information systems in an organization.
• Technical experts looking to prepare for and execute pentests.
• Cybersecurity professionals and members of information security teams who need advanced skills for their roles.

This course equips participants with the essential knowledge needed to approach, understand, manage, and successfully execute a digitalization and retention/archiving project for government. It covers critical areas such as security, search, and risk analysis techniques, along with the identification of legal, regulatory, contractual, and insurance issues. The curriculum includes methodological tools designed to effectively digitize any process and select appropriate solutions without delving into technical details. Additionally, the course provides insights into future trends in digital data and emerging technologies that are crucial for establishing robust data governance. Upon mastering all the concepts required for a digitalization project, participants will be eligible to take the exam and apply to become a PECB Certified Lead Digitalization and Electronic Archiving Manager. Achieving this certification demonstrates a practical understanding and professional capability to lead and support teams responsible for executing digitalization and electronic retention/archiving projects for government.

The PECB Certified Data Protection Officer training course equips you with the essential knowledge and skills required to effectively serve as a Data Protection Officer (DPO) in the implementation of a General Data Protection Regulation (GDPR) compliance program. ### Why Should You Attend? As data protection becomes increasingly vital, organizations must prioritize safeguarding this information. Non-compliance with data protection regulations not only infringes on individuals' fundamental rights and freedoms but also poses significant risks to an organization's credibility, reputation, and financial stability. Your expertise as a Data Protection Officer is crucial in mitigating these risks. The PECB Certified Data Protection Officer training course will provide you with the knowledge and skills necessary to serve as a DPO and assist organizations in ensuring adherence to GDPR requirements. Through practical exercises, you will gain mastery over the role of the DPO, enabling you to inform, advise, and monitor compliance with the GDPR, as well as collaborate effectively with supervisory authorities. Upon completing the training course, you can take the exam. Successfully passing the exam allows you to apply for the “PECB Certified Data Protection Officer” credential. This internationally recognized certification demonstrates your professional capabilities and practical knowledge in advising controllers and processors on meeting their obligations under GDPR compliance. ### Who Should Attend? - Managers or consultants aiming to prepare and support an organization in planning, implementing, and maintaining a GDPR-based compliance program - DPOs and individuals responsible for ensuring conformance with GDPR requirements - Members of information security, incident management, and business continuity teams - Technical and compliance experts preparing for a data protection officer role - Expert advisors involved in personal data security ### Learning Objectives - Understand the principles of the GDPR and interpret its requirements accurately - Grasp the content and interrelation between the General Data Protection Regulation and other regulatory frameworks and applicable standards, such as ISO/IEC 27701 and ISO/IEC 29134 - Develop the competence to perform the role and daily tasks of a data protection officer within an organization - Enhance your ability to inform, advise, and monitor compliance with the GDPR, while effectively cooperating with supervisory authorities This training is specifically designed to align with the stringent standards required for government and public sector workflows, governance, and accountability.