Security Management Training Course

This instructor-led, live training in Malaysia (online or onsite) is aimed at intermediate-level IT auditors who wish to effectively incorporate AI tools in their audit practices.

By the end of this training, participants will be able to:

• Grasp the core concepts of artificial intelligence and how it is applied in the context of IT auditing.
• Utilize AI technologies such as machine learning, NLP, and RPA to improve audit efficiency, accuracy, and scope.
• Perform risk assessments using AI tools, enabling continuous monitoring and proactive risk management.
• Integrate AI into audit planning, execution, and reporting, enhancing the overall effectiveness of IT audits.

This instructor-led live training in Malaysia (online or onsite) is designed for advanced-level security analysts who wish to upgrade their skills in leveraging advanced Micro Focus ArcSight ESM features to enhance an organisation's ability to detect, respond to, and mitigate cyber threats with improved precision and speed.

By the end of this training, participants will be able to:

• Optimise the use of Micro Focus ArcSight ESM to enhance monitoring and threat detection capabilities.
• Construct and manage advanced ArcSight variables to refine event streams for more precise analysis.
• Develop and implement ArcSight lists and rules for effective event correlation and alerting.
• Apply advanced correlation techniques to identify complex threat patterns and reduce false positives.

This instructor-led, live training in Malaysia (online or onsite) is designed for security managers who wish to develop basic to intermediate-level skills in CCTV security surveillance and management.

By the end of this training, participants will be able to:

• Identify various types of CCTV systems and understand their benefits and features.
• Grasp the requirements for cabling and CCTV system setup.
• Install, configure, and manage CCTV systems.

This instructor-led live training in Malaysia (online or onsite) is designed for advanced-level professionals seeking a thorough understanding of fraud examination concepts and preparation for the Certified Fraud Examiner (CFE) exam.

Upon completion of this training, participants will be able to:

• Gain a comprehensive grasp of fraud examination principles and the examination process.
• Learn to identify, investigate, and prevent various financial fraud schemes.
• Understand the legal landscape surrounding fraud, including its legal elements, applicable laws, and regulations.
• Develop practical skills for conducting fraud investigations, such as evidence collection, interviewing techniques, and data analysis.
• Design and implement effective fraud prevention and deterrence programs within organizations.
• Build the confidence and knowledge necessary to successfully pass the Certified Fraud Examiner (CFE) exam.

Description:

This intensive four-day CGEIT training program serves as the ultimate preparation for the examination, designed to equip you with the knowledge needed to pass the challenging CGEIT exam on your first attempt.
The CGEIT qualification is an internationally recognised symbol of excellence in IT governance, awarded by ISACA. It is tailored for professionals responsible for managing IT governance or holding significant advisory or assurance roles related to IT governance.
Achieving CGEIT status will enhance your recognition in the marketplace and increase your influence at the executive level.

Objectives:

This seminar is designed to prepare delegates for the CGEIT examination by enabling them to supplement their existing knowledge and understanding, thereby improving their readiness to pass the exam as defined by ISACA.

Target Audience:

Our training course is suitable for IT and business professionals who have significant IT governance experience and are undertaking the CGEIT exam.

This instructor-led, live training in Malaysia (online or onsite) is tailored for IT professionals seeking to understand how to leverage the CipherTrust Solution suite.

By the end of this training, participants will be capable of:

• Understanding the CipherTrust Solution and its fundamental functions.
• Evaluating device architecture and usage patterns.
• Managing the CipherTrust product suite.

Description:

Please note: This updated CISM exam content outline applies to examinations commencing from 1 June 2022.

CISM® stands as the most prestigious and rigorous qualification for Information Security Managers globally today. This credential offers you a platform to join an elite peer network, empowering you to continuously learn and adapt to the evolving opportunities and challenges in Information Security Management.

Our CISM training methodology delivers comprehensive coverage of the four CISM domains, with a clear focus on building conceptual understanding and solving ISACA-released CISM exam questions. The course provides intensive training and robust exam preparation for ISACA’s Certified Information Security Manager (CISM®) Examination.

Our instructors encourage all participants to review the ISACA-released CISM QA&E (Questions, Answers and Explanations) as part of their exam preparation. This resource is invaluable for helping delegates understand the ISACA style of questioning, the approach to solving these questions, and aids in the rapid assimilation of CISM concepts during live classroom sessions.
All our trainers possess extensive experience in delivering CISM training. We are committed to thoroughly preparing you for the CISM examination.

Goal:

The primary objective is for you to pass your CISM examination on the first attempt.

Objectives:

• Apply the acquired knowledge practically to benefit your organisation
• Establish and maintain an Information Security governance framework to achieve your organization’s goals and objectives
• Manage Information risk to an acceptable level to meet business and compliance requirements
• Establish and maintain information security architectures (covering people, process, and technology)
• Integrate information security requirements into the contracts and activities of third parties and suppliers
• Plan, establish, and manage the capability to detect, investigate, respond to, and recover from information security incidents to minimize business impact

Target Audience:

• Security professionals with 3-5 years of front-line experience
• Information security managers or individuals with management responsibilities
• Information security staff and assurance providers who require a deep understanding of information security management, including: CISO’s, CIO’s, CSO’s, privacy officers, risk managers, security auditors, compliance personnel, BCP/DR personnel, and executive and operational managers responsible for assurance functions

This instructor-led live training in Malaysia (online or onsite) is designed for compliance professionals in the payment services sector who wish to establish, implement, and enforce a compliance program within their organizations.

By the end of this training, participants will be able to:

• Understand the rules set forth by government regulators for payment service providers.
• Create the internal policies and procedures needed to satisfy government regulations.
• Implement a compliance program that adheres to relevant laws.
• Ensures that all corporate processes and procedures comply with the compliance program.
• Uphold the business's reputation while protecting it from lawsuits.

This instructor-led live training in Malaysia (online or onsite) is aimed at intermediate-level cybersecurity professionals who wish to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

By the end of this training, participants will be able to:

• Understand the key components of cybersecurity governance, risk, and compliance.
• Conduct risk assessments and develop risk mitigation strategies.
• Implement compliance measures and manage regulatory requirements.
• Develop and enforce security policies and procedures.

Description:

Cybersecurity expertise is in high demand as threats continue to plague enterprises around the world. An overwhelming majority of professionals surveyed by ISACA recognise this and plan to work in a position that requires cybersecurity knowledge.
To fill this gap, ISACA has developed the Cybersecurity Fundamentals Certificate, which provides education and verification of skills in this area.

Objectives:

With cybersecurity threats continuing to rise and the shortage of appropriately-equipped security professionals growing worldwide, ISACA's Cybersecurity Fundamentals Certificate programme is the perfect way to quickly train entry-level employees and ensure they have the skills and knowledge they need to successfully operate in the Cyber arena.

Target Audience:

The certificate program is also one of the best ways to gain foundational knowledge in cybersecurity and begin to build your skills and knowledge in this crucial area.

This course offers an expert introduction to the recently enacted Accessibility Law, empowering developers with the practical skills needed to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the law's significance and implications, the course swiftly transitions to hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

This instructor-led, live training in Malaysia (online or onsite) is designed for developers and administrators who aim to develop software and products that are HiTRUST compliant.

Upon completion of this training, participants will be able to:

• Grasp the fundamental concepts of the HiTrust CSF (Common Security Framework).
• Identify the administrative and security control domains within the HITRUST CSF.
• Gain insight into the various types of HiTrust assessments and scoring mechanisms.
• Understand the certification process and requirements for HiTrust compliance.
• Master best practices and tips for adopting the HiTrust approach.

Audience

This programme is designed for all staff members who need a practical grasp of Compliance and effective Risk Management.

Course Structure

The training utilises a blended methodology incorporating:

• Facilitated group discussions
• Slide-based presentations
• Case studies
• Real-world examples

Learning Outcomes

Upon completion, participants will be able to:

Gain a robust understanding of the core elements of Compliance, alongside national and international initiatives designed to manage related risks.

Articulate how organisations and their teams can construct an effective Compliance Risk Management Framework.

Outline the duties of the Compliance Officer and the Money Laundering Reporting Officer, and appreciate how these roles integrate within a corporate structure.

Recognise significant risk areas within Financial Crime, particularly concerning international operations, offshore jurisdictions, and high-net-worth clients.

Managing Open Source Software (OSS) involves overseeing the entire lifecycle of open-source components within an organisation to ensure they are used securely, compliantly, and efficiently.

This instructor-led live training, available online or onsite, is designed for IT professionals with intermediate-level expertise who aim to implement best practices for managing open-source software in enterprise and government sectors.

Upon completion of this training, participants will be equipped to:

• Develop effective OSS policies and governance frameworks.
• Utilise SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Reduce risks related to licensing issues and security vulnerabilities.
• Optimize OSS adoption to maximise innovation and cost efficiencies.

Course Format

• Interactive lectures and discussions.
• Case studies and scenario-based exercises.
• Practical demonstrations using OSS management tools.

Customization Options

• The course can be tailored to fit specific organisational OSS policies and toolchains. Please contact us to arrange.

This instructor-led, live Payment Card Industry Professional training in Malaysia (online or onsite) offers a professional qualification for industry practitioners seeking to showcase their expertise and understanding of the PCI Data Security Standard (PCI DSS).

Upon completion of this training, participants will be able to:

• Comprehend the payment process and the PCI standards established to safeguard it.
• Grasp the roles and responsibilities of entities operating within the payment industry.
• Gain profound insight into and understanding of the 12 PCI DSS requirements.
• Demonstrate knowledge of PCI DSS and its application to organisations involved in the transaction process.