Cybersecurity Specialization: Governance, Risk, and Compliance Training in United Kingdom

  • Learn via: Classroom
  • Duration: 3 Days
  • Price: From €3,315+VAT
Acquire the skills to design a system of governance to enforce compliance with laws, regulations, and company policies.

In an ever-changing political and criminal landscape, there is an increasing need for people with specialized and up-to-date knowledge of current cybersecurity laws, regulations, and best practices. The skills gap this need creates in an organization exposes the organization to liability.

Cybersecurity Specialization: Governance, Risk, and Compliance will give you an understanding of the current laws and regulations that drive the creation of a governance system of rules, practices, and processes by which a company is directed and controlled. Understanding the fundamentals of the implementation of a risk management strategy will help your organization achieve compliance through policy management, control creation, and assessment of the effectiveness of controls. In this course, you will learn to set up processes to enforce compliant behaviors in your organization, including the enforcement of a systemic culture of documentation, verification, audits, remediation, follow-through, responsibility, and authority.

The course uses a challenge-based design focusing on what a learner should be able to do at the end of the course and back on the job. The practice opportunities and challenge activities resemble—as much as possible—tasks the learner would be asked to perform in a real-life situation.



Who Should Attend?

  • Mid-career professionals who are interested in a career in risk analysis and management of cybersecurity processes, tools, and people.
  • Students should have at least two years of experience in cybersecurity but can come to this course from a variety of backgrounds, including but not limited to auditing, project management, DevOps, and engineering.
Read more +
We can host this training at your preferred location.

What You Will Learn

  • Develop a strategy to mitigate compliance risk based on laws governing Information Technology and reporting requirements to various regulatory bodies
  • Contribute to a risk management strategy that will frame an organization’s risk tolerance along with defining and enabling managers to understand the levels of risk they are allowed to take
  • Create policies supported by controls that utilize frameworks and standards to minimize risk to an acceptable level
  • Determine the mechanisms to raise the organization’s risk maturity level
  • Support both top-down and bottom-up approaches to enterprise security by acquiring management buy-in and improving employee attitudes to security
  • Contribute to a business continuity plan that prioritizes business processes
  • Select an eGRC tool to help manage risk based on requirements and capabilities
Read more +

Outline

Why Does GRC Matter?

  • Terms and definitions
  • Assets, value
  • Increasing importance of Governance, Risk, and Compliance

Industry Compliance

  • Essence of compliance
  • Industry Standards: Payment Card Industry (PCI)
  • Industry Standards: Sarbanes-Oxley (SOX) Act
  • Industry Standards: Financial Industry Regulatory Authority (FINRA)
  • Industry Standards: General Data Protection Regulation (GDPR)
  • Compliance and company policy

Privacy Compliance

  • Impact of privacy
  • Personally identifiable information (PII), protected health information (PHI)
  • Data architecture
  • Data handling
  • Encryption
  • Health Insurance Portability and Accountability Act (HIPAA)
  • Health Information Technology for Economic and Clinical Health (HITECH) Act
  • Gramm-Leach-Bliley Act (GLBA)
  • Privacy best practices

Risk Assessment

  • CIA triad
  • Threat modeling
  • Risk assessment
  • Quantitative vs. qualitative risk assessment
  • Risk assessment models
  • Risk likelihood and impact
  • Risk tolerance
  • Risk appetite
  • Business impact analysis (BIA)
  • Risk mitigation strategies

Risk Management

  • Risk management strategies: Mitigation, avoidance, transference, acceptance
  • Risk Management Framework (RMF)
  • RMF vs. CAP
  • Risk maturity level
  • Residual risk
  • Continuous monitoring and incident response
  • Patch management and the Common Vulnerability Scoring System (CVSS)

Corporate Culture

  • Enterprise-wide attitudes to security and risk
  • FUD: Fear, uncertainty, and doubt
  • Governance failures in the real world
  • Buy-in
  • NICE, best practices, role-based training
  • Aligning risk management with business goals
  • Authorized use policies
  • Tools: Training, rewards and consequences, hiring practices
  • Ongoing monitoring and tracking

Governance and Policy

  • Business continuity plan (BCP)
  • Disaster recovery plan (DRP)
  • Business impact analysis (BIA)
  • Single point of failure
  • Redundancy
  • BCP dependency chain
  • Rapid information sharing
  • RACI chart
  • Discussion: Fast vs. good vs. cheap

Course Look Around

  • eGRC: Archer and OpenPages
  • Real-time access to information
  • Reporting
  • Relevance
  • Interoperability
  • Savings through reduced complexity
Read more +
Contact us for more detail about our trainings and for all other enquiries!

Avaible Training Dates

Join our public courses in our United Kingdom facilities. Private class trainings will be organized at the location of your preference, according to your schedule.

01 March 2025 (3 Days)
London, Manchester, Birmingham
Classroom / Virtual Classroom
€3,315 +VAT
18 March 2025 (3 Days)
London, Manchester, Birmingham
Classroom / Virtual Classroom
€3,315 +VAT
21 March 2025 (3 Days)
London, Manchester, Birmingham
Classroom / Virtual Classroom
€3,315 +VAT
12 May 2025 (3 Days)
London, Manchester, Birmingham
Classroom / Virtual Classroom
€3,315 +VAT
12 May 2025 (3 Days)
London, Manchester, Birmingham
Classroom / Virtual Classroom
€3,315 +VAT
15 May 2025 (3 Days)
London, Manchester, Birmingham
Classroom / Virtual Classroom
€3,315 +VAT
21 May 2025 (3 Days)
London, Manchester, Birmingham
Classroom / Virtual Classroom
€3,315 +VAT
14 July 2025 (3 Days)
London, Manchester, Birmingham
Classroom / Virtual Classroom
€3,315 +VAT
Cybersecurity Specialization: Governance, Risk, and Compliance Training Course in the United Kingdom

The United Kingdom (Britain) is situated in north-western Europe. The UK is made up of England, Scotland, Wales and Northern Ireland. The United Kingdom is a constitutional monarchy with a unitary parliamentary democracy, as Queen Elizabeth II has been the monarch since 1952. The country's capital and largest metropolis is London.

The United Kingdom has always been one of the most popular tourist destinations in Europe. People from all around the world come to see the diverse scenery and rich cultural background of Britain. Some of the most popular places to visit in the UK are London (with Tower Bridge, River Thames, Big Ben, Parliament Buildings, Westminster Abbey…), Scotland's Capital Edinburgh, Roman-Era Bath, Stonehenge (one of the best-known prehistoric monument in Europe), Windsor Castle and Loch Ness.

Empower yourself with our extensive selection of IT courses, covering programming, data analytics, software development, business skills, cloud computing, cybersecurity, project management. Experience personalized training and expert guidance from our instructors, who will come to your chosen training venue anywhere in United Kingdom.

Bilginç IT Academy All Rights Reserved

By using this website you agree to let us use cookies. For further information about our use of cookies, check out our Cookie Policy.