Get in Touch

Course Outline

Module 1: Threats and Vulnerability Analysis (BKA)

  • The significance, necessity, and purpose of a BKA for government operations.
  • Steps to prepare a BKA and compile BKA reports for government use.
  • Perspectives on threats and vulnerabilities within your organization for government purposes.
  • The distinction between quantitative and qualitative assessments of threats and vulnerabilities in the context of government security.
  • Strategies to make threats and vulnerabilities more manageable for government agencies.

Module 2: Business Impact Analysis (BIA)

  • The significance, necessity, and purpose of a BIA for government operations.
  • Methods for conducting a BIA and preparing subsequent damage assessments for government use.
  • Understanding Maximum Tolerable Period of Disruption (MTPD), Recovery Time Objective (RTO), and Recovery Point Objective (RPO) in the context of government continuity planning.
  • Types of consequential damage and methods for determining a consequential damage picture for government agencies.
  • The disciplines required for the effective implementation of a BIA within government organizations.
  • Preparing BIA reports for government use.

Module 3: Introduction to Business Continuity Plan (BCP)

  • Definition and characteristics of crisis management for government operations.
  • The difference between an incident and a crisis in the context of government response.
  • The importance and necessity of crisis communication for government agencies.
  • The distinction between image and reputation management for government entities.
  • Developing a crisis management plan for government use.
  • The structure of the crisis organization, including the role of social media during crises for government operations.
  • Creating a Crisis Stakeholder Map for government agencies.
  • The role of Behavioral Health and Violence (BHV) in crisis management for government response.

Module 4: Emergency Response Plan (ER)

  • Transitioning from company self-protection to company emergency response, including the role of Behavioral Health and Violence (BHV).
  • A historical overview and exploration of first aid for incidents in the context of government operations.
  • Requirements set for the emergency response team within government agencies.
  • Setting up an emergency response organization for government use.
  • Emergency Response from a Government Perspective.

Module 5: Crisis Management Plan (CMP)

Module 6: Continuity of Operations Plan (COOP)

  • Definition and purpose of a COOP for government continuity planning.
  • The various plans included within the COOP for government operations.
  • Formulating and establishing basic requirements for a recovery plan in the context of government agencies.
  • Different types of recovery strategies and their associated quality features for government use.
  • The importance of backup and recovery of both digital and non-digital data, including the need for external storage solutions for government operations.
  • Translating processes into underlying information systems and implementing remedial measures for government agencies.
  • The significance and composition of a recovery organization for government continuity planning.

Requirements

The SECO-Business Continuity Foundation (S-BCF) certification or an equivalent is recommended for government professionals to ensure preparedness and continuity in critical operations.
 35 Hours

Number of participants


Price per participant

Runs with a minimum of 4 + people. For 1-to-1 or private group training, request a quote.

Testimonials (2)

1. The BCS test exam questions were often incoherent or not related to the syllabus - which appears to be a trait of BCS course and exams 2. the subject matter was taught reading powerpoint slides full of text - the BCS should be providing at least some diagrammatic content and other visual aids especially as many people learn in very different ways - more than just reading text.

john - UKHO
Course - BCS Practitioner Certificate in Information Assurance Architecture (CIAA)

Overview of Risk topics and preparing for exam

Leszek - EY GLOBAL SERVICES (POLAND) SP Z O O
Course - CRISC - Certified in Risk and Information Systems Control

Upcoming Courses

Business Continuity Practitioner (S-BCP)

2026-07-13 09:30
35 hours
Sioux Falls, SD - Regus - CNA Building
$ 6757 (Online)
$ 9757 (Classroom)

Business Continuity Practitioner (S-BCP)

2026-07-27 09:30
35 hours
Sioux Falls, SD
$ 6757 (Online)
$ 9757 (Classroom)

Business Continuity Practitioner (S-BCP)

2026-08-10 09:30
35 hours
Louis, MO - Regus – Central West End
$ 6757 (Online)
$ 9757 (Classroom)

Business Continuity Practitioner (S-BCP)

2026-08-24 09:30
35 hours
Chattanooga, TN – Regus Tallan Financial Center
$ 6757 (Online)
$ 9757 (Classroom)

Related Courses

AI Security & Governance: Enterprise Implementation

 7 Hours

Course Description

This comprehensive course is tailored to address AI security, governance, compliance, and risk management in enterprise settings. It is specifically designed for security professionals, compliance officers, and technology leaders who are responsible for the secure deployment and governance frameworks of AI systems. The curriculum aligns with best practices and standards for government and industry, ensuring participants are well-equipped to manage AI-related risks and ensure compliance with regulatory requirements.

Read more...

Business Continuity Practitioner

 14 Hours
This course is designed to enhance organizational resilience against various threats, ensuring that entities can respond effectively to incidents, maintain the continuity of business operations, and protect their interests. The curriculum is tailored to align with best practices for government and industry, providing attendees with the tools necessary to fortify their organizations against potential challenges.
Read more...

BCS Practitioner Certificate in Business Continuity Management

 21 Hours

Who is it For:

This certificate is designed for individuals involved in information security and information assurance. It is also relevant to those who require a comprehensive understanding of Business Continuity Management, particularly for government and other public sector roles.

What Will I Learn:

Candidates will be able to demonstrate:

  • The function and importance of business continuity management within an organization
  • The stages of the business continuity management life cycle
  • The key components of a business continuity management program
  • The significance of risk assessment in business continuity management
  • The various options for developing a business continuity management strategy
  • How to prepare and develop response plans for business continuity management
  • The necessity of testing, maintaining, and reviewing these plans
  • The importance of fostering business continuity management awareness within the organization
Read more...

BCS Practitioner Certificate in Information Assurance Architecture (CIAA)

 35 Hours

Who is it for:

This program is designed for security professionals aiming to understand the technical and business dimensions of the field, as well as individuals interested in pursuing a career in security architecture. It is particularly suitable for:

  • System Administrators seeking to transition into roles as security architects
  • Technical architects looking to specialize in security architecture

This certificate also serves as a complementary credential for those who have been awarded or are pursuing Certified Cloud Professional (CCP) status in Information Assurance.

What will I learn:

Upon completion of this program, candidates should be able to:

  • Describe the business environment and identify information risks associated with systems
  • Explain and implement security design principles
  • Identify information risks arising from potential solution architectures
  • Design alternative architectures or countermeasures to mitigate identified information risks
  • Ensure that proposed architectures and countermeasures effectively address identified information risks
  • Apply standard security techniques and architectures to manage security risks
  • Develop new architectures to mitigate risks posed by emerging technologies and business practices
  • Provide consultancy and advice on Information Assurance and architectural challenges
  • Configure ICT systems in compliance with approved security architectures
This program is tailored to enhance the skills of professionals in the public sector, ensuring alignment with the rigorous standards required for government operations.
Read more...

BCS Practitioner Certificate in Information Risk Management (CIRM)

 35 Hours

Who is it for:

This program is designed for individuals involved in information security and information assurance, particularly those working in or supporting government agencies.

What will I learn:

Candidates should be able to demonstrate:

  • The ways in which managing information risk can bring significant benefits to public sector organizations.
  • The ability to explain and effectively utilize terminology related to information risk management for government use.
  • How to conduct threat and vulnerability assessments, business impact analyses, and risk assessments within a governmental context.
  • An understanding of the principles of controls and risk treatment in government settings.
  • The skill to present assessment results in a format that can serve as the foundation for a risk treatment plan tailored for government operations.
  • The application of information classification schemes appropriate for government agencies.
Read more...

Certified Chief Information Security Officer (CCISO)

 35 Hours
The EC-Council’s Certified Chief Information Security Officer (CCISO) Program has certified leading information security professionals across the globe. A distinguished group of high-level information security executives, known as the CCISO Advisory Board, played a crucial role in establishing the foundation of the program and defining its content, exam structure, body of knowledge, and training modules. Members of this board contributed in various capacities—some as authors, others as exam writers, quality assurance reviewers, and trainers. Each component of the program was meticulously crafted with the aspiring CISO in mind, aiming to transfer the invaluable knowledge of seasoned professionals to the next generation in critical areas essential for developing and maintaining a robust information security program. The Certified CISO (CCISO) program is a pioneering training and certification initiative designed to produce top-tier information security executives. Unlike other certifications that focus primarily on technical skills, the CCISO emphasizes the application of information security management principles from an executive perspective. This program was developed by current CISOs for government and industry professionals who are either serving in or aspiring to these roles.
Read more...

Cloudflare Essentials: CDN, Security, and DDoS Mitigation

 14 Hours

This instructor-led, live training in US (online or onsite) is aimed at beginner to intermediate-level system administrators and security professionals who wish to learn how to implement Cloudflare for content delivery and cloud security, as well as mitigate DDoS attacks.

By the end of this training, participants will be able to:

  • Configure Cloudflare for their websites for government use.
  • Set up DNS records and SSL certificates in alignment with public sector standards.
  • Implement Cloudflare for content delivery and caching to enhance performance for government services.
  • Protect their websites from DDoS attacks, ensuring continuity of operations for government.
  • Implement firewall rules to restrict traffic to their websites, maintaining security and compliance for government systems.
Read more...

CRISC - Certified in Risk and Information Systems Control

 21 Hours

Description:

This course is designed as an intensive exam preparation for ISACA’s Certified Information Systems Auditor (CRISC) Examination. It covers the latest four domains of ISACA’s CRISC syllabus, with a strong emphasis on exam readiness. Participants will receive the Official ISACA CRISC Review Manual and the Question, Answer, and Explanation (Q&A&E) supplement. The Q&A&E is particularly valuable for helping delegates understand the style of questions posed by ISACA, the types of answers expected, and for facilitating rapid assimilation of the material.

The technical skills and practices promoted by ISACA within the CRISC certification are foundational to success in the field. Achieving the CRISC certification demonstrates a high level of expertise and commitment. With an increasing demand for professionals with risk and control knowledge, ISACA’s CRISC certification has become a preferred credential for individuals and organizations globally. The CRISC certification signifies a dedication to serving enterprises and the profession with distinction.

Objectives:

  • To assist participants in passing the CRISC examination on their first attempt.
  • To signify commitment to serving an enterprise with distinction through the possession of this certification.
  • To enable holders of this certification to secure better positions and salaries due to the growing demand for professionals with risk and control expertise.

You will learn:

  • How to help enterprises achieve their business objectives by designing, implementing, monitoring, and maintaining risk-based, efficient, and effective IS controls.
  • The technical skills and practices that CRISC promotes, which are essential for success in the field.
This course is tailored to support professionals in enhancing their capabilities and meeting the rigorous standards required for government service.
Read more...

CRISC - Certified in Risk and Information Systems Control - 4 Days

 28 Hours
This instructor-led, live training in US (online or onsite) is aimed at intermediate-level IT professionals who wish to enhance their skills in identifying and managing IT risk and implementing information systems controls, as well as prepare for the CRISC certification exam. By the end of this training, participants will be able to: - Understand the governance and risk management aspects of IT for government. - Conduct IT risk assessments and implement appropriate risk responses. - Design and implement effective information systems controls. - Prepare thoroughly for the CRISC certification exam.
Read more...

Data Breach Management

 14 Hours
This instructor-led, live training in US (online or onsite) is designed for intermediate to advanced IT professionals and business leaders who aim to develop a structured approach to managing data breaches. By the end of this training, participants will be able to: - Understand the causes and consequences of data breaches. - Develop and implement effective data breach prevention strategies. - Establish an incident response plan to contain and mitigate breaches. - Conduct forensic investigations and evaluate the impact of breaches. - Ensure compliance with legal and regulatory requirements for breach notification. - Recover from data breaches and enhance security measures. This training is tailored to support professionals in aligning their practices with public sector workflows, governance, and accountability standards for government.
Read more...

HiTrust Common Security Framework Compliance

 14 Hours

This instructor-led, live training in US (online or onsite) is designed for developers and administrators who aim to produce software and products that comply with HiTRUST standards.

By the end of this training, participants will be able to:

  • Comprehend the fundamental principles of the HiTrust Common Security Framework (CSF).
  • Recognize the administrative and security control domains outlined in the HITRUST CSF.
  • Understand the various types of HiTrust assessments and scoring methodologies.
  • Familiarize themselves with the certification process and requirements for achieving HiTrust compliance.
  • Learn best practices and strategies for implementing the HiTrust approach effectively, ensuring alignment with public sector workflows and governance standards for government.
Read more...

PECB ISO 27005 Risk Manager

 21 Hours
This training course provides comprehensive instruction on conducting risk assessments for information security by integrating the guidelines from ISO/IEC 27005:2022 and ISO/IEC 27001. In addition to theoretical knowledge, the course includes practical exercises, quizzes, and case studies, ensuring an engaging and interactive learning experience that aligns with best practices for government agencies.
Read more...

Business Continuity Management

 35 Hours

Description:

This is a 'Practitioner' course that emphasizes practical exercises designed to reinforce the concepts being taught and build participants' confidence in implementing business continuity management. The course also encourages debate and the sharing of knowledge and experience among students. Participants will benefit from the extensive, hands-on experiences of our trainers, who are active experts in business continuity management and ISO 22301:2019 specialists.

Participants will learn how to:

  • Explain the necessity of business continuity management (BCM) for all organizations
  • Define the business continuity lifecycle
  • Manage a business continuity program
  • Understand their organization sufficiently to identify mission-critical impact areas
  • Determine their organization's business continuity strategy
  • Establish a business continuity response
  • Exercise, maintain, and review plans
  • Embed business continuity within an organization
  • Define terms and definitions relevant to business continuity

By the end of the course, participants will have a comprehensive understanding of all key components of business continuity management and be equipped to return to their roles, making significant contributions to the business continuity management process for government.

Read more...

IBM Qradar SIEM: Beginner to Advanced

 14 Hours
This instructor-led, live training in US (online or onsite) is aimed at security engineers who wish to utilize IBM QRadar SIEM to address critical security use cases for government. By the end of this training, participants will be able to: - Achieve comprehensive visibility into enterprise data across both on-premise and cloud environments. - Automate security intelligence processes to effectively hunt threats and mitigate risks. - Detect, identify, and prioritize potential threats.
Read more...

Snyk

 14 Hours
This instructor-led, live training (available online or onsite) is designed for government developers who wish to integrate Snyk into their development tools to identify and resolve security vulnerabilities in their code. By the end of this training, participants will be able to: - Understand the capabilities and architecture of Snyk. - Utilize Snyk to detect and remediate code security issues. - Incorporate Snyk into a software development lifecycle for government.
Read more...

Related Categories

Business Continuity Management
Business Continuity Management
Enterprise Security
Enterprise Security