Business Continuity Practitioner Training Course

Course Description

A comprehensive course focused on AI security, governance, compliance, and risk management for enterprise implementations. Designed for security professionals, compliance officers, and technology leaders responsible for secure AI deployment and governance frameworks.

Who is it for:

This course is designed for anyone involved in the fields of information security and information assurance.

What will I learn:

Upon completion, participants should be able to demonstrate:

• The ways in which managing information risk can bring significant business benefits.
• How to effectively use and explain information risk management terminology.
• Techniques for conducting threat and vulnerability assessments, business impact analyses, and risk assessments.
• An understanding of the principles of controls and risk treatment.
• The ability to present assessment results in a format that can serve as the foundation for a risk treatment plan.
• The application of information classification schemes.

EC-Council’s CCISO Program has certified top-tier information security professionals globally. A select group of high-level information security executives, known as the CCISO Advisory Board, played a crucial role in shaping the program. They laid the groundwork for the program and defined the content that would be covered in the exam, body of knowledge, and training. Some members of the Board served as authors, others as exam writers, some as quality assurance reviewers, and still others as trainers. Each part of the program was designed with aspiring CISOs in mind, aiming to pass on the expertise of seasoned professionals to the next generation in the most critical areas for developing and maintaining a successful information security program.

The Certified CISO (CCISO) program is a pioneering training and certification initiative focused on producing top-tier information security executives. Unlike other certifications, the CCISO emphasizes not just technical knowledge but also the practical application of information security management principles from an executive perspective. Developed by current CISOs for both existing and aspiring CISOs, this program ensures that participants gain the necessary skills to lead effective information security initiatives.

A CISSP is an information assurance professional responsible for defining the architecture, design, management, and controls that ensure the security of business environments. The extensive knowledge and experience required to pass the exam distinguish a CISSP from other professionals. This credential, recognized globally, is provided by the (ISC)²® CBK®, covering critical areas in modern security such as cloud computing, mobile security, application development security, risk management, and more.

This course helps you review the 10 domains of information security practices and serves as a robust learning tool for mastering concepts and topics related to all aspects of information systems security.

Objectives:

• To review the main topics covered in the CISSP CBK (Common Body of Knowledge).
• To prepare you for the CISSP examination.

This instructor-led, live training in Uzbekistan (online or onsite) is aimed at beginner to intermediate-level system administrators and security professionals who wish to learn how to implement Cloudflare for content delivery and cloud security, as well as mitigate DDoS attacks.

By the end of this training, participants will be able to:

• Configure Cloudflare for their websites.
• Set up DNS records and SSL certificates.
• Implement Cloudflare for content delivery and caching.
• Protect their websites from DDoS attacks.
• Implement firewall rules to restrict traffic to their websites.

Description:

This course is designed as an intense and rigorous preparation for ISACA’s Certified Information Systems Auditor (CRISC) Examination. The latest four domains of ISACA’s CRISC syllabus will be thoroughly covered, with a strong emphasis on exam readiness. When you attend the class, you will also receive the Official ISACA CRISC Review Manual and the Question, Answer, and Explanation (Q,A&E) supplements. The Q,A&E is particularly useful for helping delegates understand the style of questions asked by ISACA, the type of answers they are looking for, and it aids in rapid memory retention of the material.

The technical skills and practices promoted and evaluated by ISACA within the CRISC certification form the foundation of success in the field. Achieving the CRISC certification demonstrates your expertise and dedication to the profession. With a growing demand for professionals with risk and control knowledge, ISACA’s CRISC has become the preferred certification program for individuals and organizations worldwide. The CRISC certification signifies a commitment to serving an enterprise and the chosen profession with excellence.

Objectives:

• To help you pass the CRISC examination on your first attempt.
• To demonstrate your dedication to serving an enterprise with distinction through this certification.
• To capitalize on the growing demand for professionals with risk and control skills, allowing holders of this certification to secure better positions and higher salaries.

You will learn:

• How to assist enterprises in achieving their business objectives by designing, implementing, monitoring, and maintaining risk-based, efficient, and effective IS controls.
• The technical skills and practices promoted by CRISC, which are essential for success in the field.

This instructor-led, live training in Uzbekistan (online or onsite) is aimed at intermediate-level IT professionals who wish to enhance their skills in identifying and managing IT risk and implementing information systems controls, and prepare for the CRISC certification exam.

By the end of this training, participants will be able to:

• Understand the governance and risk management aspects of IT.
• Conduct IT risk assessments and implement risk responses.
• Design and implement information systems controls.
• Prepare effectively for the CRISC certification exam.

This instructor-led, live training in Uzbekistan (online or onsite) is aimed at supply chain professionals who wish to establish effective control and oversight of their supply chain, especially as it relates to cybersecurity.

By the end of this training, participants will be able to:

• Understand the security oversights that can bring about significant damage and disruption to a supply chain.
• Break down a complex security problem into manageable and actionable parts.
• Address common supply chain vulnerabilities by analyzing high risk areas and engaging with stakeholders.
• Adopt best practices in securing a supply chain.
• Noticeably reduce or eliminate the biggest risks to an organization's supply chain.

This instructor-led, live training in Uzbekistan (online or onsite) is aimed at intermediate-level to advanced-level IT professionals and business leaders who wish to develop a structured approach to handling data breaches.

By the end of this training, participants will be able to:

• Understand the causes and consequences of data breaches.
• Develop and implement data breach prevention strategies.
• Establish an incident response plan to contain and mitigate breaches.
• Conduct forensic investigations and assess the impact of breaches.
• Comply with legal and regulatory requirements for breach notification.
• Recover from data breaches and strengthen security postures.

This instructor-led, live training in Uzbekistan (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

This training course teaches how risk assessment for information security is done by combining the information on ISO/IEC 27005:2022 and ISO/IEC 27001. In addition to theoretical knowledge, this training course is equipped with practical exercises, quizzes, case studies, all of which make it a very engaging training course.

Description:

This is a 'Practitioner' course that emphasizes practical exercises to reinforce the concepts being taught and to build delegates' confidence in implementing business continuity management. The course also encourages debate and the sharing of knowledge and experience among participants. Delegates will benefit from the practical and extensive experiences of our trainers, who are active business continuity management and ISO 22301:2019 specialists.

Delegates will learn how to:

• Explain the importance of business continuity management (BCM) in all organizations
• Define the business continuity lifecycle
• Manage a business continuity program
• Understand their organization well enough to identify mission-critical impact areas
• Determine their organization's business continuity strategy
• Establish a business continuity response plan
• Conduct, maintain, and review plans
• Integrate business continuity into an organization
• Define terms and definitions relevant to business continuity

By the end of the course, delegates will have a comprehensive understanding of all key components of business continuity management and will be able to return to their work, making significant contributions to the business continuity management process.

This instructor-led, live training in Uzbekistan (online or onsite) is aimed at security engineers who wish to use IBM Qradar SIEM to address pressing security use cases.

By the end of this training, participants will be able to:

• Gain visibility into enterprise data across on-premise and cloud environments.
• Automate security intelligence to hunt threats and to contain risks.
• Detect, identify, and prioritize threats.

This instructor-led, live training in Uzbekistan (online or onsite) is aimed at developers who wish to integrate Snyk into their development tools to find and fix security issues in their code.

By the end of this training, participants will be able to:

• Understand the features and structure of Snyk.
• Use Snyk to find and fix code security issues.
• Integrate Snyk in a software development lifecycle.

This course delves into the fundamental principles of security and IT Security, focusing on protecting networks from various attacks. Participants will acquire a solid understanding of key security protocols and the essential security concepts underlying web services. The course will also reference recent attacks on cryptosystems and highlight some of the associated vulnerabilities.