ISO/IEC 27005 Lead Risk Manager Training Course

This instructor-led, live training in Brazil (online or onsite) is aimed at beginner-level professionals who wish to gain an understanding of ISO 27001 and its role in enhancing information security within an organization.

By the end of this training, participants will be able to:

• Understand the purpose and benefits of an ISMS.
• Familiarize themselves with key ISO 27001 concepts, terms, and principles.
• Recognize the role of an auditor in ensuring compliance.
• Gain insight into the audit process and continual improvement within ISO 27001.

Accountability in Professional Regulatory Boards is an applied course focusing on the legal framework, procedural duties, and TCU jurisprudence that guide oversight and accountability for professional councils in Brazil.

This instructor-led, live training (online or onsite) is aimed at intermediate-level to advanced-level professionals who wish to understand TCU oversight, prevent common irregularities, and strengthen internal controls and responses to audit findings.

By the end of this training, participants will be able to:

• Explain the institutional role of the TCU and the legal nature of professional councils.
• Identify common irregularities found by the TCU and understand relevant jurisprudence.
• Design internal control measures and segregation of duties to mitigate accountability risks.
• Prepare compliant annual accountability submissions (SISTC / e-Contas) and structured responses to TCU determinations.

Format of the Course

• Interactive lecture and legal analysis.
• Case study review and group discussion.
• Practical workshop and simulation exercises.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

Description:

Basel III serves as a global regulatory framework addressing bank capital adequacy, stress testing, and market liquidity risk. Originally established by the Basel Committee on Banking Supervision between 2010 and 2011, the implementation timeline for the Accord was extended to March 31, 2019. The framework enhances bank capital requirements by boosting liquidity and reducing leverage.
Unlike its predecessors, Basel I and II, Basel III mandates varying reserve levels for different types of deposits and borrowings. Rather than replacing earlier standards, it complements them by working in conjunction with Basel I and II.
Navigating this complex and evolving regulatory landscape can be challenging. Our course and training programs are designed to help you anticipate changes and manage their impact on your institution. As an accredited training partner of the Basel Certification Institute, we guarantee that our training materials and quality remain current and effective.

Objectives:

• Prepare participants for the Certified Basel Professional Examination.
• Establish practical strategies and techniques for defining, measuring, analyzing, improving, and controlling operational risk within banking organizations.

Target Audience:

• Board members with risk oversight responsibilities
• Chief Risk Officers (CROs) and Heads of Risk Management
• Members of the Risk Management team
• Compliance, legal, and IT support staff
• Equity and Credit Analysts
• Portfolio Managers
• Rating Agency Analysts

Overview:

• Introduction to Basel norms and amendments to the Basel Accord (III)
• Regulations governing market, credit, counterparty, and liquidity risk
• Stress testing for various risk measures, including formulation and delivery of stress tests
• Projected impacts of Basel III on the international banking industry, with demonstrations of practical application
• The necessity for new Basel norms
• Key components of the Basel III norms
• Objectives of the Basel III norms
• Timeline for Basel III implementation

This instructor-led, live training in Brazil (online or onsite) is designed for advanced-level professionals who wish to gain a comprehensive understanding of fraud examination concepts and prepare for the Certified Fraud Examiner (CFE) exam.

Upon completion of this training, participants will be able to:

• Acquire comprehensive knowledge of fraud examination principles and the overall examination process.
• Learn to identify, investigate, and prevent various forms of financial fraud.
• Understand the legal landscape surrounding fraud, including the legal components of fraud, applicable laws, and regulations.
• Develop practical skills for conducting fraud investigations, such as evidence collection, interviewing techniques, and data analysis.
• Learn to design and implement effective fraud prevention and deterrence programs within organizations.
• Gain the confidence and knowledge necessary to successfully pass the Certified Fraud Examiner (CFE) exam.

Description:

This four-day event (CGEIT training) serves as the ultimate preparation for the exam, designed to ensure you pass the challenging CGEIT exam on your first attempt.
The CGEIT qualification is an internationally recognized symbol of excellence in IT governance, awarded by ISACA. It is intended for professionals responsible for managing IT governance or who hold significant advisory or assurance responsibilities related to IT governance.
Achieving CGEIT status will provide you with broader recognition in the marketplace, as well as increased influence at the executive level.

Objectives:

This seminar is designed to prepare delegates for the CGEIT examination by enabling them to supplement their existing knowledge and understanding to be better prepared to pass the exam, as defined by ISACA.

Target Audience:

Our training course is for IT and business professionals, with significant IT governance experience who are undertaking the CGEIT exam.

This instructor-led, live training in Brazil (online or onsite) is designed for payment services compliance professionals who wish to create, implement, and enforce a robust compliance program within their organization.

By the end of this training, participants will be able to:

• Understand the rules set forth by government regulators for payment service providers.
• Create the internal policies and procedures needed to satisfy government regulations.
• Implement a compliance program that adheres to relevant laws.
• Ensures that all corporate processes and procedures comply with the compliance program.
• Uphold the business's reputation while protecting it from lawsuits.

This instructor-led, live training in Brazil (online or onsite) is aimed at intermediate-level cybersecurity professionals who wish to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

By the end of this training, participants will be able to:

• Understand the key components of cybersecurity governance, risk, and compliance.
• Conduct risk assessments and develop risk mitigation strategies.
• Implement compliance measures and manage regulatory requirements.
• Develop and enforce security policies and procedures.

Course Objectives

• Acquire comprehensive knowledge of ISO 27001:2023.
• Understand the methodology for conducting audits in compliance with the standard.
• Learn and apply industry best practices.

Objectives

• Acquiring a solid understanding of ISO 27001:2023
• Learning how to conduct audits in compliance with the standard
• Understanding industry best practices

Objectives

• Understand the updates in the 2023 edition of ISO 27001
• Learn how to conduct audits in compliance with the standard
• Discover industry best practices

Why should you attend?

The ISO/IEC 27001 Foundation training provides you with the essential knowledge to implement and manage an Information Security Management System (ISMS) in accordance with ISO/IEC 27001 standards. Throughout this course, you will gain a comprehensive understanding of the various components of an ISMS, including ISMS policy, procedures, performance metrics, management commitment, internal audits, management reviews, and the cycle of continual improvement.

Upon completion of this course, you will be eligible to take the exam and apply for the "PECB Certified ISO/IEC 27001 Foundation" credential. Holding a PECB Foundation Certificate demonstrates that you have mastered the fundamental methodologies, requirements, framework, and management approach necessary for information security.

Who should attend?

• Professionals involved in Information Security Management
• Individuals seeking to acquire knowledge about the core processes of Information Security Management Systems (ISMS)
• Those interested in pursuing a career in Information Security Management

Educational approach

• Lecture sessions are reinforced with practical questions and real-world examples
• Practical exercises feature case studies and group discussions
• Practice tests mirror the format and difficulty of the Certification Exam

Information security threats and attacks are constantly evolving and becoming more sophisticated. The most effective defense against these risks is the proper implementation and management of information security controls and best practices. Additionally, robust information security is a key expectation and requirement from customers, regulators, and other stakeholders.

This training course is designed to equip participants with the skills needed to implement an Information Security Management System (ISMS) based on ISO/IEC 27001. It aims to provide a comprehensive understanding of ISMS best practices and a framework for its ongoing management and improvement.

Upon completing the training course, you can take the associated exam. If you pass successfully, you may apply for the “PECB Certified ISO/IEC 27001 Lead Implementer” credential, demonstrating your ability and practical knowledge to implement an ISMS in accordance with the requirements of ISO/IEC 27001.

Who Can Attend?

• Project managers and consultants involved in or responsible for the implementation of an ISMS
• Expert advisors seeking to master ISMS implementation
• Individuals responsible for ensuring organizational conformity to information security requirements
• Members of an ISMS implementation team

General Information

• Certification fees are included in the exam price
• Training material, comprising over 450 pages of content and practical examples, will be provided
• A participation certificate awarding 31 CPD (Continuing Professional Development) credits will be issued
• In case of exam failure, you can retake the exam free of charge within 12 months

Educational Approach

• This training course includes essay-type exercises, multiple-choice quizzes, examples, and best practices relevant to ISMS implementation.
• Participants are encouraged to communicate and engage in discussions while completing quizzes and exercises.
• The exercises are based on a case study.
• The structure of the quizzes mirrors that of the certification exam.

Learning Objectives

This training course will help you:

• Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for implementing and effectively managing an ISMS
• Recognize the relationship between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
• Understand the operation of an information security management system and its processes as defined by ISO/IEC 27001
• Learn how to interpret and implement the requirements of ISO/IEC 27001 within the specific context of an organization
• Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an ISMS

ISO 9001 and ISO 27001 are globally recognized standards dedicated to quality management systems and information security management systems, respectively.

Delivered by an expert instructor, this live training session (available both online and onsite) targets intermediate-level professionals aiming to master the interpretation of ISO 9001 and ISO 27001 standards and execute internal audits with confidence.

Upon completing this training, participants will be equipped to:

• Grasp the core principles and mandatory requirements of ISO 9001 and ISO 27001.
• Interpret specific clauses and controls within practical, real-world business contexts.
• Effectively plan and conduct internal audits that align with ISO standards.
• Identify nonconformities and propose appropriate corrective actions.

Course Format

• Engaging interactive lectures and group discussions.
• Simulated auditing exercises and in-depth case studies.
• Practical analysis of quality assurance and security management scenarios.

Customization Options

• For organizations seeking a tailored version of this course, please reach out to us to arrange a customized training session.

This training course on ISO/IEC 27001 Transition helps participants gain a comprehensive understanding of the key differences between ISO/IEC 27001:2013 and ISO/IEC 27001:2022. Additionally, it provides valuable insights into the new concepts introduced in the 2022 version.

This instructor-led live training, available in Brazil (online or on-site), is tailored for IT professionals at intermediate to advanced levels who seek to elevate their expertise and qualifications in information security or adjacent fields.

By the conclusion of this training, participants will be able to:

• Clearly distinguish between ISO/IEC 27001:2013 and ISO/IEC 27001:2022.
• Develop the knowledge and skills required to effectively plan and implement the migration from the 2013 to the 2022 version of the standard.
• Utilize this knowledge in real-world contexts, facilitating a smooth transition process within their organizations.