• LMS: On-Demand Training

• Mock Exam

• Duration: 24hrs

• TÜV SÜD Exam with 2 attempts

Course outline

Day 1:

• ISMS overview - definitions, information security concepts & history of ISMS

• Benefits and purpose of Information Security Management System (ISMS)

• Changes in the requirements of ISO/IEC 27001 clauses and controls

• Understanding ISO/IEC 27001 framework requirements

Day 2:

• Risk assessment and treatment process

• Understanding ISO/IEC 27001 Annex A control requirements

Day 3:

• Formulating ISMS scope statement

• Formulating IS policy and objectives

• Preparing SoA (Statement of Applicability)

• ISMS documentation

Day 4:

• Incident management process

• Internal audit planning and requirements

• Management review requirements

• Continual improvement process

• Final examination

Note: Exercises, assignments, group discussions, and case studies will be spread across all days

Who Should Attend?

• Project managers or consultants wanting to prepare and support an organisation in implementing an information security management system (ISMS)

• Professionals who have a role in establishing, implementing, maintaining, and improving ISMS in an organisation. (E.g., Expert advisors, management representatives, practitioners, security managers, CISO, etc.)

• Members of the information security team

Examination & Certification

• Exam format: Two sections with a total of 70 marks

• Type of questions: Multiple choice

• Exam duration: 1 hour 30 minutes

• Passing criteria: Participants must achieve an overall score of 49 marks (70%) to pass the exam successfully

• Exam mode: Open book online exam

Note:

• The course material and the notes can be referred to during the exam.

• You must have access to a clean, unmarked copy of the relevant ISO management system requirement standard (e.g. ISO/IEC 27001:2022)

Certification:

• Certificate of Successful Completion: Will be awarded only if an overall score of 49 marks (70%) is achieved in the written online exam.

• Certificate of Attendance: Will be awarded only if the attendance requirements are satisfied and if the participant is unsuccessful in the online final examination.

• LMS: On-Demand Training

• Mock Exam

• Duration: 24hrs

• TÜV SÜD Exam with 2 attempts

• IT Experience of 3+ years is required

Course outline

Topics to be covered in this course include:

• Introduction to Artificial Intelligence (AI)

• Introduction to Machine Learning (ML)

• The concept of data science

• AI concepts and terminologies

  • • Generative AI

    • Discriminative AI

• Understand how AI becomes disruptive

• AI considerations

• Regulatory stipulations

• Transparency needs

• Introduction to ISO/IEC 42001:2023 standard Applicability of the standard

• Relationship between Information Security, Data Privacy and AI

• Benefits

• Responsible use of AI

• Efficiency factors

• Risk-based approach

• Traceability, transparency, and reliability

• Clauses and requirements

• ISO/IEC 22989:2022 standard – key terms explanation

• ISO/IEC 23053:2022 standard

• Framework for Artificial Intelligence (AI) Systems Using Machine Learning (ML)

• ISO/IEC 23894:2023 standard

• Artificial intelligence - Guidance on risk management

• ISO/IEC 42001:2023 Implementation steps

• Case studies and exercises

Who Should Attend?

• AI Developers, AI Operators

• Business Function Managers

• Quality Managers

• Business Excellence Professionals

• Information Security Professionals

• Consultants

• AI Service Vendors

• Any AI Stakeholder, in any manner

• Management System Auditors

Examination & Certification

Examination:

• Mode: Online

• 50 Questions, MCQs

• 70% to pass (49 marks)

• 5 scenario-based questions.

• Total marks: 70 (45x1 + 5x5).

Note:

• The course material and the notes can be referred to during the exam.

• You must have access to a clean, unmarked copy of the relevant ISO management system requirement standard (e.g. ISO/IEC 42001:2023)

Certification:

• Certificate of Successful Completion will be awarded only if an overall score of 49 marks (70%) is achieved in the written online exam.

• Certificate of Attendance will be awarded only if the attendance requirements are satisfied and if the participant is unsuccessful in the online final examination.

• LMS: On-Demand Training

• Mock Exam

• Duration: 24hrs

• TÜV SÜD Exam with 2 attempts

Course outline

Topics to be covered in this course include:

• GDPR Introduction

• GDPR and Privacy Alignment

• GDPR Data Categories & Subject Rights

• Rights of Data Subject

• Data Privacy Impact Assessment

• Data Protection Officer

• GDPR – Breach Reporting and Penalty

Who Should Attend?

• Professionals who wish to have the detailed knowledge on data privacy and looking forward to work in the projects of GDPR

• Security consultants

• Data analysts

• Data protection consultants

• Information security managers

• IT & Project managers

• Privacy Managers

• Corporate governance managers

• Risk and compliance managers

• CISOs and CROs

• Professionals who wish to work on GDPR

Examination & Certification

• Examination is divided into two parts A & B. Part A is multiple choice answer-based questions and part B contains subjective answers questions.

• Part A - 40 Multiple-choice answers-based questions, each question is of one mark; total 40 marks

• Part B - 6 subjective answers-based questions, each of 5 marks; total 30 marks

• Duration of exam: 120 minutes

• Passing criteria: 70% or above (49 marks or above out of 70 marks)

• Re-sit in the exam for all the certifications in GDPR

  • If a Candidate does not pass the exam in the first (1st) attempt, the candidate can appear for ONLY second (2nd) attempt at no additional cost.

  • From third attempt the fees are applicable

Certification

• Candidates who successfully passes the examination will be awarded TÜV SÜD’s Data Privacy and EU GDPR Practitioner Certificate

• Unsuccessful candidates will be issued a certificate of attendance

• LMS: On-Demand Training

• Mock Exam

• Duration: 24hrs

• TÜV SÜD Exam with 2 attempts

• IT Experience of 3+ years is required

Course outline

The risk management certification course consists of the following training curriculum:

• Terminology and definitions related to Risk Management.

• ISO 31000 - Relationship between principles, framework and process of risk management.

• Context of the organisation - Internal and External issues.

• Risk Assessment process - Risk Identification, Risk Analysis, Risk Evaluation, Risk Treatment.

• Importance of planning and implementing identified risk management actions.

• Conduct risk assessment with respect to ISO 31000 followed by understanding the mapping of three standards (ISO 31000, ISO 27001 and ISO 22301).

Who Should Attend?

• Information security practitioners

• Business continuity practitioners

• Chief information security officer

• Management representative of Management Systems (ISMS, BCMS)

• Management consultants (ISMS, BCMS)

• Core group members responsible for establishing, implementing, maintaining, auditing and improving Management Systems (ISMS, BCMS)

• Professionals who play role in implementation of Management Systems (ISMS, BCMS)

• Examination & Certification

• Candidates will be assessed through 40 marks multiple choice questions based online examination at the end of the course. Exam duration is for 60 minutes. Minimum passing criteria is 70% or above. The risk management professional certificate will be provided upon completing the risk management course. Others will get a certificate of attendance.

• LMS: On-Demand Training

• Mock Exam

• Duration: 16hrs

• TÜV SÜD Exam with 2 attempts

Course outline

• Acquire knowledge on functioning of Payment Card Industry and the transaction flows.

• Be acquainted with the roles and responsibilities of various organization in Payment Card Industry and figure out different standards for different organizations.

• Understand what Cardholder Data and Sensitive Authentication Data and risk is associated with same.

• Learn how to minimize the possibility of card breach, improve security, reduce the risk of data loses.

• Gaining a thorough understanding of the intent behind each requirement.

• Comprehend the complete PCI DSS compliance process and make informed decision regarding compliance efforts.

• Learn about Merchants and Service Provider Levels and their Compliance requirement.

Who Should Attend?

• Managers overseeing PCI DSS compliance

• External auditors performing PCI DSS validation

• Security professionals operating in a PCI DSS compliant environment

• Internal auditors desiring to validate interim compliance

• IT staff, project managers & Risk Managers

Examination & Certification

Candidates will be assessed through an objective based online examination at the end of the course.

• Exam duration is for 40 minutes.

• Minimum passing criteria is 70% or above.

Certification

Candidates who score minimum or above 70% in the online examination will be issued TÜV SÜD’s “Certified PCI DSS implementer” certificate. Unsuccessful candidates will be issued a certificate of attendance.

• LMS: On-Demand Training

• Mock Exam

• Duration: 24hrs

• TÜV SÜD Exam with 2 attempts

• IT Experience of 3+ years is required

• LMS: On-Demand Training

• Mock Exam

• Duration: 18hrs

• TÜV SÜD Exam with 2 attempts

Course outline

Day One

• Cloud fundamentals

• Key terms and definitions

• Benefits of ISO 27017

• Relationship between ISO 27001 and 27018

• Managing information security risks in cloud services

Day Two

Selecting and implementing ISO 27002 controls when extended to cloud services:

• Information Security Policies

• Organisation of information security policies

• HR security

• Asset management

• Access control

• Cryptography

• Physical and environmental security

• Operations security

• Communication security

• SAcDM

Day Three

Continued – Selecting and implementing ISO 27002 controls when extended to cloud services:

• Supplier relationships

• Incident management

• Business continuity

• Compliances

• Cloud services extended control set (Annex A)

Exercises
Practice exam
Certification exam

• Who Should Attend?

• Anyone who plans, implements, monitors, assesses an information security management system either as a customer or service provider of cloud services.

• Examination & Certification

• Participants will be assessed through a 40 marks objective type examination (open book) at the end of the course. Minimum passing% criteria: 70% (28 Marks). A course completion certificate of ISO/IEC 27017 Cloud Security Manager will be issued to participants after successful completion of the course.

• 
  

• LMS: On-Demand Training

• Mock Exam

• Duration: 24hrs

• TÜV SÜD Exam with 2 attempts

• IT Experience of 3+ years is required

• LMS: On-Demand Training

• Mock Exam

• Duration: 18hrs

• TÜV SÜD Exam with 2 attempts

Course outline

Topics to be covered in this course include:

• Understanding the of threats, vulnerabilities, incidents, impact

• Fundamental Principles and Concepts in Business Continuity (BC)

• Business Continuity Best Practices - overview

• Planning and Implementing BCMS

• Performance Evaluation, Monitoring and Measurement of a BCMS

• Continual Improvement of a BCMS

• Preparation for a BCMS Certification audit

• Crisis management plan

• BC and Disaster recovery planning

• Business continuity plan and Disaster Recovery Plan (DRP)

• Maintenance of BCM and DR plan

• Conducting Internal audits and Management Review

• Corrective action and effectiveness of Corrective action.

• Case studies

Who Should Attend?

• Personnel responsible for implementing Business Continuity management system.

• The Business Continuity team (which may include any of the consultants, project managers, organizational staff, etc) responsible or wanting to support the organization in implementing and identifying risks and ensuring business continuity in case of any disaster.

Examination & Certification

Candidates will be assessed by the following methods:

• Continuous assessment: This includes assessment throughout the course for punctuality, presentation skills, interactive approach, involvement, role-play, classroom exercises, assignments etc.

• Online examination: This will be at the end of the course.

Total marks: 70

Duration of the exam: 90 minutes (1.5 hours)

Use of only ISO 22301 standard is permissible.

Minimum passing criteria is 70% in both continuous assessment and examination.

Certification

Candidates who score 70% and above in both the continuous assessment and examination will be issued a Certified Business Continuity Management System Lead Implementer certificate based on ISO 22301. Candidates who are not able to clear the examination will be issued a certificate of attendance.

• LMS: On-Demand Training

• Mock Exam

• Duration: 24hrs

• TÜV SÜD Exam with 2 attempts

• IT Experience of 3+ years is required

Course outline

Topics to be covered in this course include:

• IT Service Management concepts.

• Benefits and history of Information Technology Service Management System (ITSMS).

• IT Service Management System requirements.

• Management process areas.

• Auditing terminologies.

• Principles of auditing.

• Audit planning.

• Conducting an internal audit.

• Audit findings & reporting.

• Preparation of non-conformance report.

• Do’s and Don’t’s of auditing.

• Classroom exercises and case studies.

Who Should Attend?

• IT service managers

• Information Security Practitioners or Managers

• Professionals responsible for Information Security practices

• Management Representatives

• ISO 20000-1 Implementation teams

• Any personnel who wish to pursue a career in the field of IT services

• Any personnel who has a role to play in the implementation of Information Security Management System

• Examination & Certification

• Candidates will be assessed through an objective based online examination at the end of the course. Exam duration is for 90 minutes. Minimum passing criteria is 60%. Use of ISO 20000-1 standard is only permissible. Candidates who score 60% in the online examination will be issued TÜV SÜD certificate. Unsuccessful candidates will be issued a certificate of attendance.