Security Policy Management Training Course

This instructor-led, live training in Taiwan (online or on-site) is aimed at beginner-level professionals who wish to gain an understanding of ISO 27001 and its role in enhancing information security within an organization.

By the end of this training, participants will be able to:

• Understand the purpose and benefits of an ISMS.
• Familiarize themselves with key ISO 27001 concepts, terms, and principles.
• Recognize the role of an auditor in ensuring compliance.
• Gain insight into the audit process and continual improvement within ISO 27001.

This instructor-led, live training in Taiwan (online or onsite) is designed for intermediate-level IT auditors who wish to effectively integrate AI tools into their audit practices.

Upon completion of this training, participants will be able to:

• Understand the fundamental concepts of artificial intelligence and its application within IT auditing.
• Leverage AI technologies like machine learning, NLP, and RPA to enhance audit efficiency, accuracy, and scope.
• Conduct risk assessments using AI tools, facilitating continuous monitoring and proactive risk management.
• Embed AI into audit planning, execution, and reporting, thereby improving the overall effectiveness of IT audits.

This instructor-led live training in Taiwan (available online or on-site) is designed for advanced security analysts seeking to elevate their proficiency in leveraging advanced Micro Focus ArcSight ESM features to enhance an organization's capacity to detect, respond to, and mitigate cyber threats with greater precision and speed.

By the end of this training, participants will be able to:

• Optimize the use of Micro Focus ArcSight ESM to enhance monitoring and threat detection capabilities.
• Construct and manage advanced ArcSight variables to refine event streams for more precise analysis.
• Develop and implement ArcSight lists and rules for effective event correlation and alerting.
• Apply advanced correlation techniques to identify complex threat patterns and reduce false positives.

Description:

Basel III represents a global regulatory framework concerning bank capital adequacy, stress testing, and market liquidity risk. Originally agreed upon by the Basel Committee on Banking Supervision during 2010–2011, the implementation timeline for the Accord has been extended to March 31, 2019. Basel III bolsters bank capital requirements by enhancing liquidity levels while reducing leverage.
Unlike Basel I and II, Basel III mandates varying reserve levels for different types of deposits and borrowings. Rather than replacing its predecessors, it operates in conjunction with Basel I and Basel II.
Navigating this complex and evolving regulatory landscape can be challenging. Our course and training programs are designed to assist you in managing anticipated changes and their effects on your institution. As an accredited training partner of the Basel Certification Institute, we guarantee that our training materials and quality remain current and effective.

Objectives:

• Prepare for the Certified Basel Professional Examination.
• Define practical strategies and techniques for defining, measuring, analyzing, improving, and controlling operational risk within banking organizations.

Target Audience:

• Board members responsible for risk
• Chief Risk Officers (CROs) and Heads of Risk Management
• Members of the Risk Management team
• Compliance, legal, and IT support staff
• Equity and Credit Analysts
• Portfolio Managers
• Rating Agency Analysts

Overview:

• Introduction to Basel standards and amendments to the Basel Accord (III)
• Regulations addressing market, credit, counterparty, and liquidity risk
• Stress testing for various risk metrics, including formulation and delivery methods
• The anticipated impact of Basel III on the international banking sector, including demonstrations of practical application
• The rationale for the new Basel norms
• Key features of the Basel III norms
• Objectives of The Basel III Norms
• Basel III – Implementation Timeline

This instructor-led, live training in Taiwan (online or onsite) is aimed at security managers who wish to learn basic to intermediate-level CCTV security surveillance and management skills.

By the end of this training, participants will be able to:

• Familiarize the types of CCTV systems and know their benefits and features.
• Understand cabling and CCTV systems setup requirements.
• Install, configure, and manage CCTV systems.

This instructor-led, live training in Taiwan (online or on-site) is designed for advanced-level professionals seeking a comprehensive understanding of fraud examination concepts and preparation for the Certified Fraud Examiner (CFE) exam.

Upon completion of this training, participants will be able to:

• Gain in-depth knowledge of fraud examination principles and processes.
• Learn to identify, investigate, and prevent various financial fraud schemes.
• Understand the legal framework surrounding fraud, including its legal elements, applicable laws, and regulations.
• Acquire practical skills in conducting fraud investigations, such as evidence collection, interviewing techniques, and data analysis.
• Learn to design and implement effective fraud prevention and deterrence programs within organizations.
• Gain the confidence and knowledge needed to successfully pass the Certified Fraud Examiner (CFE) exam.

Description:

This four-day CGEIT training course serves as the ultimate preparation for the exam, meticulously designed to ensure you pass the challenging CGEIT examination on your first attempt.
The CGEIT qualification is an internationally recognized symbol of excellence in IT governance, awarded by ISACA. It is tailored for professionals tasked with managing IT governance or holding significant advisory or assurance responsibilities in this domain.
Earning CGEIT status enhances your marketplace recognition and increases your influence at the executive level.

Objectives:

This seminar is designed to prepare delegates for the CGEIT examination by enabling them to supplement their existing knowledge and understanding, ensuring they are better equipped to pass the exam as defined by ISACA.

Target Audience:

Our training course is intended for IT and business professionals who possess significant IT governance experience and are undertaking the CGEIT exam.

This instructor-led, live training in Taiwan (available online or on-site) is designed for compliance professionals in the payment services sector who aim to develop, implement, and enforce a robust compliance framework within their organizations.

Upon completion of this training, participants will be equipped to:

• Grasp the regulatory requirements established by government authorities for payment service providers.
• Formulate internal policies and procedures necessary to meet governmental regulations.
• Implement a compliance program that aligns with applicable laws.
• Ensure that all corporate processes and procedures adhere to the established compliance framework.
• Safeguard the company’s reputation while mitigating the risk of litigation.

This instructor-led, live training in Taiwan (online or onsite) is designed for intermediate-level cybersecurity professionals who wish to deepen their understanding of GRC frameworks and apply them to secure and compliant business operations.

Upon completion of this training, participants will be able to:

• Understand the essential components of cybersecurity governance, risk, and compliance.
• Conduct risk assessments and formulate risk mitigation strategies.
• Implement compliance measures and manage regulatory requirements.
• Develop and enforce security policies and procedures.

This course offers an expert overview of the newly enacted Accessibility Law, empowering developers with the practical skills needed to design, develop, and maintain fully accessible applications. Beginning with a contextual discussion on the law's significance and implications, the curriculum quickly transitions into hands-on coding practices, tools, and testing techniques to ensure both compliance and inclusivity for users with disabilities.

Course Objective:

This course aims to equip individuals with a foundational understanding of GRC processes and capabilities, along with the skills necessary to integrate governance, performance management, risk management, internal control, and compliance activities.

Overview:

• Basic GRC terminology and definitions
• Core GRC principles
• Key components, practices, and activities
• The relationship between GRC and other disciplines

This instructor-led, live training in Taiwan (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

Audience

This course is designed for all employees seeking a practical understanding of Compliance and effective Risk Management.

Course Format

The training utilizes a blended learning approach that includes:

• Facilitated discussions
• Slide-based presentations
• Case studies
• Real-world examples

Course Objectives

Upon completion of the course, participants will be able to:

Develop a comprehensive understanding of key Compliance aspects, alongside national and international initiatives aimed at managing associated risks.

Explain how organizations and their teams can establish an effective Compliance Risk Management Framework.

Describe the responsibilities of the Compliance Officer and the Money Laundering Reporting Officer, and understand how these roles integrate within a business structure.

Identify critical risk areas in Financial Crime, particularly in the context of international operations, offshore centres, and high-net-worth clients.

Open Source Software (OSS) Management involves overseeing the entire lifecycle of open-source components within an organization to ensure they are used securely, compliantly, and efficiently.

This instructor-led live training, available online or onsite, targets intermediate-level IT professionals aiming to implement best practices for managing open-source software in enterprise and government settings.

Upon completion of this training, participants will be capable of:

• Implementing robust OSS policies and governance frameworks.
• Utilizing SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Addressing risks linked to licensing and security vulnerabilities.
• Streamlining OSS adoption to maximize innovation and cost efficiency.

Course Format

• Interactive lectures and discussions.
• Case studies and scenario-based exercises.
• Hands-on demonstrations using OSS management tools.

Course Customization Options

• This course can be tailored to align with specific organizational OSS policies and toolchains. Please contact us to arrange.

This instructor-led, live Payment Card Industry Professional training in Taiwan (online or on-site) provides a professional credential for industry practitioners seeking to demonstrate their expertise and comprehension of the PCI Data Security Standard (PCI DSS).

Upon completion of this training, participants will be able to:

• Grasp the payment processing workflow and the PCI standards established to safeguard it.
• Comprehend the roles and responsibilities of entities within the payment industry.
• Gain deep insight into and understanding of the 12 PCI DSS requirements.
• Demonstrate knowledge of PCI DSS and its application to organizations involved in the transaction process.