Building up information security according to ISO 27005 Training Course

This instructor-led live training in Turkey (online or onsite) is designed for beginner-level professionals seeking to understand ISO 27001 and its role in enhancing organizational information security.

By the end of this training, participants will be able to:

• Comprehend the objectives and advantages of implementing an ISMS.
• Become acquainted with fundamental ISO 27001 concepts, terminology, and principles.
• Appreciate the auditor’s role in verifying compliance.
• Gain insights into the audit process and the principles of continuous improvement under ISO 27001.

This live, instructor-led training in Turkey (online or onsite) is designed for intermediate-level IT auditors who wish to effectively incorporate AI tools in their audit practices.

By the end of this training, participants will be able to:

• Grasp the core concepts of artificial intelligence and how it is applied in the context of IT auditing.
• Utilize AI technologies such as machine learning, NLP, and RPA to improve audit efficiency, accuracy, and scope.
• Perform risk assessments using AI tools, enabling continuous monitoring and proactive risk management.
• Integrate AI into audit planning, execution, and reporting, enhancing the overall effectiveness of IT audits.

This instructor-led, live training in Turkey (online or onsite) is aimed at advanced-level security analysts who wish to elevate their skills in utilizing advanced Micro Focus ArcSight ESM content to improve an organization's ability to detect, respond, and mitigate cyber threats with greater precision and speed.

By the end of this training, participants will be able to:

• Optimize the use of Micro Focus ArcSight ESM to enhance monitoring and threat detection capabilities.
• Construct and manage advanced ArcSight variables to refine event streams for more precise analysis.
• Develop and implement ArcSight lists and rules for effective event correlation and alerting.
• Apply advanced correlation techniques to identify complex threat patterns and reduce false positives.

Description:

Basel III serves as a global regulatory framework governing bank capital adequacy, stress testing, and market liquidity risk. Originally established by the Basel Committee on Banking Supervision in 2010–2011, the implementation timeline for the Accord has been extended to March 31, 2019. By enhancing bank liquidity and reducing leverage, Basel III significantly strengthens capital requirements for financial institutions.
Unlike Basel I & II, which applied uniform standards, Basel III mandates varying reserve levels based on the type of deposits and borrowings. Rather than replacing its predecessors, it complements Basel I and Basel II by addressing their limitations.
Navigating this complex and evolving regulatory landscape can be challenging. Our course and training are designed to help you anticipate changes and manage their impact on your institution. As an accredited training partner to the Basel Certification Institute, we guarantee that our materials and training quality remain current and effective.

Objectives:

• Prepare participants for the Certified Basel Professional Examination.
• Provide practical strategies and techniques for defining, measuring, analyzing, improving, and controlling operational risk within banking organizations.

Target Audience:

• Board members with risk management responsibilities
• Chief Risk Officers (CROs) and Heads of Risk Management
• Members of the Risk Management team
• Compliance, legal, and IT support staff
• Equity and Credit Analysts
• Portfolio Managers
• Rating Agency Analysts

Overview:

• Introduction to Basel norms and amendments to the Basel Accord (III)
• Regulations addressing market, credit, counterparty, and liquidity risks
• Stress testing for various risk measures, including formulation and delivery methods
• Anticipated effects of Basel III on the international banking industry, featuring practical application demonstrations
• The need for new Basel norms
• Overview of the Basel III norms
• Objectives of the Basel III norms
• Timeline for Basel III implementation

This instructor-led, live training in Turkey (online or onsite) is designed for security managers who wish to develop foundational to intermediate-level skills in CCTV surveillance and management.

Upon completing this training, participants will be able to:

• Recognize various types of CCTV systems and understand their benefits and features.
• Grasp the requirements for cabling and setting up CCTV systems.
• Install, configure, and manage CCTV systems.

This instructor-led, live training in Turkey (online or onsite) is aimed at advanced-level professionals who wish to gain a comprehensive understanding of fraud examination concepts and prepare for the Certified Fraud Examiner (CFE) exam.

By the end of this training, participants will be able to:

• Gain comprehensive knowledge of fraud examination principles and the fraud examination process.
• Learn to identify, investigate, and prevent various types of financial fraud schemes.
• Understand the legal environment related to fraud, including the legal elements of fraud, relevant laws, and regulations.
• Acquire practical skills in conducting fraud investigations, including evidence collection, interviewing techniques, and data analysis.
• Learn to design and implement effective fraud prevention and deterrence programs within organizations.
• Gain confidence and knowledge to successfully pass the Certified Fraud Examiner (CFE) exam.

Description:

This intensive four-day program (CGEIT training) serves as the premier preparation for the exam, designed to equip you with the necessary skills to successfully pass the rigorous CGEIT examination on your first try.
The CGEIT certification is an internationally acknowledged mark of excellence in IT governance, conferred by ISACA. It is tailored for professionals tasked with managing IT governance or holding significant advisory and assurance responsibilities within this domain.
Earning the CGEIT designation will enhance your professional recognition in the marketplace and expand your influence at the executive level.

Objectives:

This seminar aims to prepare delegates for the CGEIT exam by helping them build upon their existing knowledge and understanding, ensuring they are well-prepared to meet the standards defined by ISACA.

Target Audience:

The course is designed for IT and business professionals who possess substantial experience in IT governance and are preparing to sit for the CGEIT exam.

This instructor-led, live training in Turkey (online or onsite) is aimed at payment services compliance professionals who wish to create, implement, and enforce a compliance program within an organization.

By the end of this training, participants will be able to:

• Understand the rules set forth by government regulators for payment service providers.
• Create the internal policies and procedures needed to satisfy government regulations.
• Implement a compliance program that adheres to relevant laws.
• Ensures that all corporate processes and procedures comply with the compliance program.
• Uphold the business's reputation while protecting it from lawsuits.

This instructor-led, live training in Turkey (online or onsite) is designed for cybersecurity professionals at an intermediate level who wish to expand their understanding of GRC frameworks and apply them to secure and compliant business operations.

Upon completion of this training, participants will be able to:

• Understand the fundamental elements of cybersecurity governance, risk, and compliance.
• Perform risk assessments and formulate strategies to mitigate those risks.
• Execute compliance measures and handle regulatory obligations effectively.
• Create and enforce robust security policies and procedures.

This course offers an expert-level introduction to the newly enacted Accessibility Law, empowering developers with the practical skills needed to design, build, and maintain fully accessible applications. The session begins with a contextual discussion on the law's significance and implications, then transitions into hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

Course Objective:

Equip participants with a solid grasp of GRC processes and capabilities, enabling them to effectively integrate governance, performance management, risk management, internal control, and compliance functions.

Overview:

• Key terminology and definitions in GRC
• Core principles of GRC
• Essential components, practices, and activities
• Interconnections between GRC and related disciplines

This instructor-led, live training in Turkey (available online or onsite) is designed for developers and administrators seeking to produce software and products that comply with HiTrust standards.

Upon completing this training, participants will be capable of:

• Grasping the core concepts of the HiTrust CSF (Common Security Framework).
• Recognizing the administrative and security control domains within the HITRUST CSF.
• Gaining knowledge regarding various HiTrust assessment types and their scoring mechanisms.
• Understanding the certification process and prerequisites for achieving HiTrust compliance.
• Acquiring best practices and practical advice for implementing the HiTrust approach.

Target Audience

This programme is designed for all staff members who need a practical grasp of Compliance principles and effective Risk Management strategies.

Course Format

The training is delivered via a blended learning method that encompasses:

• Guided discussions
• Slide-based presentations
• Case study analysis
• Real-world examples

Learning Objectives

Upon completion of the course, participants will be able to:

Gain a robust understanding of key Compliance areas, as well as national and international initiatives designed to manage associated risks.

Articulate how organizations and their teams can establish an effective Compliance Risk Management Framework.

Define the responsibilities of the Compliance Officer and the Money Laundering Reporting Officer, and understand how these roles fit into the broader business structure.

Identify critical risk areas within Financial Crime, particularly concerning international operations, offshore centres, and high-net-worth clients.

Managing Open Source Software (OSS) involves overseeing the entire lifecycle of open-source components within an organization to ensure they are used securely, compliantly, and efficiently.

This instructor-led training, available either online or onsite, is designed for intermediate IT professionals looking to implement best practices for managing open-source software in enterprise and government settings.

Upon completing this training, participants will be able to:

• Create effective OSS policies and governance frameworks.
• Utilize SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Reduce risks related to licensing and security vulnerabilities.
• Accelerate OSS adoption to maximize innovation and cost savings.

Course Format

• Interactive lectures and discussions.
• Case studies and scenario-based exercises.
• Hands-on demonstrations using OSS management tools.

Customization Options

• This course can be customized to align with your organization's specific OSS policies and toolchains. Please contact us to arrange.

This instructor-led, live Payment Card Industry Professional training in Turkey (online or onsite) offers a professional qualification for practitioners seeking to showcase their expertise and understanding of the PCI Data Security Standard (PCI DSS).

Upon completion of this training, participants will be able to:

• Grasp the payment process and the PCI standards established to safeguard it.
• Comprehend the roles and responsibilities of entities within the payment industry.
• Gain in-depth insight into the 12 PCI DSS requirements.
• Demonstrate knowledge of PCI DSS and its application to organizations involved in the transaction process.