iTGRC - Corporate Staff Awareness and Professional Training

  A "Risk&Control by Design" Training Curriculum, packaged and delivered to you LIVE Online, Online Distance-Learning or at your Door-Step      ...

Your Staff Awareness and focused End-User training on Information Security/ISO27001/PCI-DSS/ Data Protection Act/GDPR [EU Data-Protection]/Phishing & Ransomware, Professional & Executive Courses for CISOs/Governance, Information Risk and Security Management professional, help a speedy adoption while staying abreast of the prevailing laws, regulation, guidelines; such as Sarbanes Oxley 2017, FDA... 

 

A "Risk&Control by Design" Training Curriculum, packaged and delivered to you LIVE Online, Online Distance-Learning or at your Door-Step

 

  

 

"Qualification & Accreditation" Disclaimer

 

 
 

Start from here. Find your preferred E-Learning, Training and Certification: 

Staff Awareness Training - E-Learning

Professional Training and Certification 

Professional Executive Awareness Training 

Always Click for general inquiry

 
 

Staff Awareness Training - E-learning

A comprehensive cyber security strategy addresses technology, processes and people. Although people are part of the equation, they are often left out because employees can be unpredictable in their behaviour and difficult to manage. Despite this, involving staff in the cyber security strategy is not impossible – they can actually make all the difference.

How to engage your staff

The best solution for all companies wishing to engage their staff with their cyber security strategy is a staff awareness programme. Using training, tools and thought-provoking activities, organisations can raise staff awareness of the daily cyber risks they face, and suggest actions and procedures to adopt to minimise such risks. A staff awareness programme should be an ongoing process that begins with staff induction, and continues with periodic updates throughout the year and/or whenever any staff-related security incidents occur.

What staff awareness solutions are available?

iTGRC Asia has collaboratively and progressively worked with IT Governance Ltd. UK to offer an extensive suite of tools and training materials to help you set up your staff awareness programme:
 
E-learning courses – comprehensive and easy-to-follow e-learning courses about information security, phishing and compliance requirements to make your staff aware of security risks and the best practices to follow, at a much lower cost than traditional classroom learning.
 

Which E-Learning to go for? 

  

    

 
 
 

E-learning

Information Security Staff Awareness  

Objective

This course recognizes that information security awareness starts at home, and it aims to help employees understand the organization’s information and compliance risks, reducing their exposure to security failures. The course not only familiarizes the learners with the basics of information security, including security threats via emails, the Internet and at the workplace, but also introduces them to your policies on incident reporting and responses.
 
Target audience
 
This course is aimed at all employees who are involved in processing information, using information technology in their daily job, or using the Internet as a means of conducting business. The course content is not technical and it is not meant for system administrators. Ask about this Course
 
Content
 
An introduction to information security
Information security at home
Information security at work
Antivirus software
Inadequate passwords
Wireless network security settings
Phishing
Social media
Illegal websites
Backups
Portable media devices
Satnavs
Physical information security
Digital information security
Information protection
Information security incidents and business continuity
Important documentation
Summary of the content covered
Additional information
Duration: 40 minutes.
Assessment comprises 20 randomly asked questions (from a bank of 48).
Learners have the opportunity to retake the test until the pass mark is achieved.
An online certificate of achievement is issued to all staff who pass the test.
 
 

Information Security & ISO27001 Staff Awareness 

Benefits

- Non-technical language that is easy to understand by all users
- Provides systematic, consistent, and repeatable training organization-wide
- Interactive, engaging content improves learner attention and retention
- User-friendly format—customizable to your own LMS and brand
- Provides fundamental knowledge of information security and ISO27001:2013, reducing the organization’s liability due to security failures
- Comprehensive reporting provides systematic evidence that training has actually been provided
- Online certificates are available to print out upon passing the course
 
Target audience
 
This course is targeted at all employees who need to be made aware of the organization’s ISO27001:2013 commitments. It includes anyone processing information, using information technology in their daily job, or using the Internet as a means of conducting business.
 
 

 

PCI DSS Online Course, Staff Awareness Edition 

Benefits

- Non technical, uses a common language approach
- It provides systematic, consistent, and repeatable training across multiple learners
- Simple to use with relevant and informative content
- Enables basic, yet fundamental training on PCI DSS compliance, thereby reducing the organization’s liability due to human error
- Helps meet the specific PCI DSS requirements by providing systematic evidence that training has actually been provided
- Can be deployed for existing employees and as part of an induction process for new hire
 
Target Audience
 
This staff awareness course is targeted at all employees in any organization that stores or transmits or processes card holder data and that must comply with PCI DSS standard. Please note that the course content is not technical. 
Additional information
Duration: 40 minutes.
Assessment comprises 20 randomly asked questions (from a bank of 48).
Learners have the opportunity to retake the test until the pass mark is achieved.
An online certificate of achievement is issued to all staff who pass the test.
 
  

 

GDPR (General Data Protection Regulation) Staff Awareness 

Objective
 
This course aims to provide a complete foundation on the principles, roles, responsibilities and processes under the GDPR to all your non-technical staff, reducing your organisation’s risk of non-compliance.
 
Target audience
 
The course is suitable for all employees whose job involves processing and storing personal data. It is also suitable for non-technical staff.
 
Content
 
An introduction to the GDPR 
Definition of the key data protection roles
Scope of the GDPR
Personal and sensitive data
Determining the scope of the GDPR
The GDPR principles
The six principles for the collection and processing of personal information
Accountability
GDPR application
Collecting and processing personal data
Requesting personal data
Minors and consent
Data breach reporting
Additional information
Duration: 40 minutes.
Assessment comprises 20 randomly asked questions (from a bank of 48).
Learners have the opportunity to retake the test until the pass mark is achieved.
An online certificate of achievement is issued to all staff who pass the test.
 
 

 

Data Protection Act (DPA) Staff Awareness 

Objective
 
Data protection is an issue that affects all organisations. With developments in technology permeating all facets of society and business has come an increase in the incidence of hacking, data breaches and data loss. It has never been more important for businesses to protect their critical assets and ensure that their employees are aware of the role they play in data protection. DPA Staff Awareness training will help you meet your DPA obligations and ensure your critical assets are protected
 
Target audience
 
The course is suitable for all employees whose job involves processing and storing personal data. It is also suitable for non-technical staff.
 
Content
 
What is the DPA?
Related terms and definitions
The eight DPA principles
An individual’s six DPA rights
What you can do to protect personal information
Additional information
Duration: 30 minutes.
Assessment comprises 20 randomly asked questions.
Learners have the opportunity to retake the test until the pass mark is achieved.
An online certificate of achievement is issued to all staff who pass the test.
 
 

 

Phishing and Ransomware Staff Awareness 

Objective
 
This ten-minute course has been developed to raise awareness among employees, particularly those in our most critical service sectors – like healthcare/education, retail and finance – so that they can start thinking proactively about how to protect themselves from ransomware.
 
Target audience
 
This course is aimed at all employees who are involved in processing information, using information technology in their daily job, or using the Internet as a means of conducting business. The course content is not technical and it is not meant for system administrators. Ask about this Course
 
Content
 
Explain what phishing is.
Outline the consequences of a phishing attack.
Describe ransomware and crypto-ransomware.
Identify how to avoid falling victim to phishing attacks and ransomware.
List the steps to take if they think they've been compromised.
The phishing and ransomware human patch e-learning course includes an eight-question test, drawn from a bank of 12 questions, with a pass mark of 75%.
 
 
 
 

Professional Training and Certification 

Built on the foundations of an extensive practical experience of designing and implementing management systems. The training courses offer a structured learning path from Foundation to Advanced level for IT practitioners and lead implementers, and help to develop the skills needed to deliver best practice and compliance in an organisation.

This series of courses will be fully coordinated by iTGRC Asia, scheduled and delivered LIVE ONLINE. The courses will be conducted by our partner, IT Governance Ltd. during Asia Pacific- friendly business hour. Timing of the courses will be set accordingly to ensure maximum benefits received from the trainer and/or experts by organizations or individuals who purchase the packages. 

Which series to go for? 

 

LIVE Online

  ISO27001 Certified ISMS Foundation ONLINE  - SG$798/-  

- Foundation Level, introductory training to raise awareness, build knowledge and develop understanding.The starting point for all prospective ISO27001 project managers and auditors. This course provides a complete introduction to the ISO27001 standard and an overview of the key implementation activities. 
 

  ISO27001 Certified ISMS Lead Auditor ONLINE - SG$1,791/- 

- Internal auditing is a mandatory requirement of ISO27001 and it is essential that all compliant organisations have competent, fully-trained internal auditors. 
This course is designed to meet the information security awareness requirements for all staff, as outlined in the ISO27002 best practice standard. * Achieve the ISO27001 Certified ISMS Lead Auditor (CIS LA) qualification (ISO 17024-accredited). Online exam included in course.
 

  ISO27001 Certified ISMS Lead Implementer ONLINE - SG$3,231/-

- Developed by Alan Calder and Steve Watkins, joint authors of IT Governance: A Manager's Guide to Data Security and ISO27001/ISO27002, This course is acknowledged as the most comprehensive implementation course in the UK. note: Available via Live Online course.  * Achieve the ISO27001 Certified ISMS Lead Implementer (CIS LI) qualification (ISO 17024-accredited). Online exam included in course.

 

 ISO27001 Certified ISMS Foundation and Lead Implementer ONLINE - SG$3,588/-

- Developed by ISO 27001 experts Alan Calder and Steve Watkins, and drawing from their industry-leading implementation guide, IT Governance: An International Guide to Data Security and IS027001/ISO27002, this four-day interactive Live Online training session consists of the ISO27001 Certified ISMS Foundation Online and ISO27001 Certified ISMS Lead Implementer Online courses. * Awarded the ISO 17024-accredited ISO27001 Certified ISMS Foundation (CIS F) and ISO27001 Certified ISMS Lead Implementer (CIS LI) qualifications by IBITGQ.Certified . Online exam included in course.

 

 ISO27001 Certified ISMS Lead Implementer and Lead Auditor Combination ONLINE - SG$4,268/-
this 7½ day interactive Live Online training session provides a complete education in the activities required to plan, implement and audit an ISO 27001-compliant information security management system (ISMS) Using a combination of formal training, practical exercises and relevant case studies, an experienced ISO 27001 trainer and consultant will help you to develop the skills required to achieve ISO 27001 compliance for your organisation. It also supports professional development: delegates who pass the included online exams are awarded the ISO27001 Certified ISMS Lead Implementer (CIS LI) and ISO27001 Certified ISMS Lead Auditor (CIS LA) qualifications by IBITGQ.
 
 

Classroom-based/Onsite

 

  ISO27001 Certified ISMS Lead Auditor Training Course, 5% off 

- Take the first step toward developing a career as a ISO27001 Lead Auditor. This course is designed to develop practical knowledge and auditing skills based on the core audit requirements as outlined in the ISO19011 standard. For implementation managers, understanding the requirements and the methodology employed by an external ISO27001 Lead Auditor are crucial to the success of any ISO27001 implementation project. note: Available via Live Online course. * Achieve the ISO27001 Certified ISMS Lead Auditor (CIS LA) qualification (ISO 17024-accredited).
 

 ISO27001 Certified ISMS Internal Auditor Training Course, 5% off 

- This fully accredited, practitioner-led course equips you to perform internal audits that maintain conformity and effectiveness, and drive continual improvement of an ISO/IEC 27001:2013-compliant ISMS. Real-world expertise and insights. *Achieve the ISO27001 Certified ISMS Internal Auditor (CIS IA) qualification (ISO 17024-accredited).
 

  ISO27005 Certified ISMS Risk Management, 8% discount 

- Provides the knowledge and skills required to undertake an ISO27001 compliant information security risk management based on the best practice requirements outlined in ISO27005.

The ISO/IEC 27005:2011 standard provides guidance and support for the risk management approach specified by ISO 27001. The three-day ISO27005 Certified ISMS Risk Management classroom course is designed to provide delegates with the knowledge and skills required to fully implement an effective ISO27001-compliant risk management programme. The coourse take you through the key activities of the ISO 27005 risk management process, help you understand an effective risk management programme using practical examples.and demonstrate our unique vsRisk information security risk assessment software.  
What will you learn?
- The role and importance of risk management in an organisation.
- Why risk management is the core competence of information security management.
- Full details of the ISO 27005 information risk management standard and an understanding of key risk management terminology.
- How ISO 27005 is related to the ISO 31000:2009 risk management standard.
- How to use risk management to achieve certification and maintain compliance with the ISO 27001 information security management standard.
- ‘Hands-on’ practical experience in carrying out an effective risk management programme as defined by ISO/IEC 27005:2011.
- The key information security risk management processes, including context establishment, risk assessment, risk treatment and monitoring/review.
- The competence to advise third-party organisations on information security risk management.
 

ISO27005 Certified ISMS Risk Manager (CIS RM) examination 

- Delegates sit the ISO27005 Certified ISMS Risk Management (CIS RM) examination at the end of the course – a 90-minute multiple-choice, ISO 17024-accredited exam set by IBITGQ. There is no extra charge for taking the exam at the end of the course.
 

ISO27001: 2013 ISMS Certified Transition 

- A one-day training course designed to provide an essential ISO27001:2013 knowledge update for Information Security Management System (ISMS) implementers and auditors.
 
 
    

  ISO17024:2012 PCI DSS Implementation Training Course -  SG$2,151/- 

- This three day course provides a comprehensive and practical coverage of all aspects of implementing a Payment Card Industry Security Standard (PCI DSS) compliance programme. Successful completion of the inclusive exam leads to the industry-recognised PCI DSS Implementation (PCI IM) qualification. This course, when purchased will be coordinated here by iTGRC Asia and delivered ONLINE by our UK partners during Asia Pacific friendly time-zone. Timing of the course will be set accordingly to ensure maximum benefits for organizations or individuals who purchased this package. 
 
 

LIVE Online

 

 Certified EU General Data Protection Regulation Foundation (GDPR) Online Training Course - SG$1,119/- 

Delivered by an experienced data protection consultant, this training session is built on the foundations of our extensive practical experience gained advising on compliance with data privacy laws and related information security standards such as ISO 27001. The course supports continued professional development and delegates who pass the included online exam are awarded the ISO 17024-accredited, EU GDPR Foundation (EU GDPR F) qualification by IBITGQ. It is also accredited by the Institute of Information Security Professionals (IISP)
 

  Certified EU General Data Protection Regulation Practitioner (GDPR) Online Training Course - SG$3,928/-  

The four-day Certified EU GDPR Practitioner online course is focused on equipping attendees with the knowledge and skills to implement an effective privacy and information security compliance programme under the GDPR, and to fulfil the role of DPO. The course also supports professional development: attendees who pass the included online exam are awarded the ISO 17024-accredited EU GDPR Practitioner (EU GDPR P) qualification by IBITGQ. It is also accredited by the Institute of Information Security Professionals (IISP)
 

 Certified EU General Data Protection Regulation (GDPR) Foundation and Practitioner Combination Online Course - SG$4,253/- 

The Certified EU General Data Protection Regulation (GDPR) Foundation and Practitioner Combination online course consists of the Certified EU GDPR Foundation (one-day) and Practitioner (four-day) training courses. This unique training programme provides a comprehensive introduction to the requirements of the GDPR, and a practical guide to planning, implementing and maintaining a GDPR compliance programme. It also enables attendees to fulfil the role of DPO.

 

ONLINE - Distance Learning

 

 Certified EU General Data Protection Regulation (GDPR) Foundation Distance Learning Training Course and Exam - SG$688/-  

What will you learn?
Essential GDPR background and terminology.
Key differences between the Data Protection Directive and the GDPR.
Data subjects and their rights.
Dealing with subject access requests.
Marketing requirements.
The implementation path to GDPR compliance:
Privacy by design
Data protection impact assessments (DPIAs)
Data audits
Training and competence requirements
Incident response and breach reporting
Updating policies and procedures
International data transfers, including EU-US Privacy Shield.
 
EU General Data Protection Regulation Foundation (EU GDPR F) online exam. Purchasers will receive a voucher for the EU General Data Protection Regulation Foundation (EU GDPR F) exam when they buy this course. This is an ISO 17024-accredited 60-minute multiple-choice exam set by IBITGQ, and is taken online. There is no extra charge for the exam. The online exam can be taken at any time. To ensure integrity of the exam process, you will be monitored using an automated remote proctoring system. Your results will be confirmed once the footage of your examination has been externally reviewed.
 

 Certified EU General Data Protection Regulation (GDPR) Practitioner Distance Learning Training Course and Exam - SG$1,768/-  

What will you learn about?
Setting up a privacy compliance framework
The role of the data protection officer (DPO)
Common data security failures
GDPR privacy principles
Data protection impact assessments (DPIAs)
Developing a risk management framework
Data mapping
How to conduct a DPIA
The rights of data subjects
Consent rules
Subject access requests
The roles of and relationships between controllers and processors
Mechanisms for data transfers outside the EU
Incident response and data breach reporting
Range of enforcement, regulatory and compensatory aspects of the GDPR
Demonstrating compliance with the GDPR
 
EU General Data Protection Regulation Practitioner (EU GDPR P) online exam. Delegates will receive a voucher for the EU General Data Protection Regulation Practitioner (EU GDPR P) exam when they buy this course. This is an ISO 17024-accredited, 90-minute, multiple-choice exam set by IBITGQ, and is taken online. There is no extra charge. The online exam can be taken at any time. To ensure integrity of the exam process, you will be monitored using an automated remote proctoring system. Your results will be confirmed once the footage of your examination has been externally reviewed.
 
 
 
 

Apart from the above training programs for CISOs, Governance & Risk Manager, and Information Security personnel. It also substantially includes awareness of relevant governing laws and guidelines. We offer, and not limited to the followings; 

 

  • CISO Overview,
  • COBIT Overview,
  • CISM Overview,
  • CRISC Overview,
  • SOX Overview / SOX (Sarbanes Oxley)404 Internal Control Overview
  • ESSENTIALS for Governance Overview, 
  • COSO Framework Overview, 
  • FCPA, Foreign Corruption Practices Act Overview/Essential. 

Inquiry - 

 

iTGRC Asia is in close collaboration with its strategic Partners, namely; 

offering various individual Certification, Corporate and Enterprise Training & Awareness Programs and Services. For New training programs, they are now available by clicking here

 

Don't hesitate to contact email-to: info@itgrc.asia or write to us through the "Contact Us" page for a consultative discussion for more information

 

 

 

 

 

Disclaimer: The content or such that you access through the link/s above shall be governed under the respective Law & Regulations of the website or Content provider, of which iTGRC Asia bears no responsibility. The links provided are solely for general reference purpose, without prejudice nor any other intents.

  Please Click here for a small Charity heart

 

 

iTGRC Asia Pte Ltd

Regus JTC Summit
8 Jurong Town Hall Road, Level #24-05, Singapore 609434

+65 6818 0839

   

+65 6818 0801

    info@itgrc.asia

By submitting your information to iTGRC Asia Pte Ltd, you have agreed to our Privacy Statement