You may not have been able to visit your page because of:
1. An out-of-date bookmark/favourite
2. A search engine that has an out-of-date listing
3. A mistyped address
4. You don't have access to this page
5. The requested resource was not found
6. An error has occurred whilst processing your request
When implementing security polices, information security professionals are constantly faced with a conflict between the security team and the rest of the business. They must ensure that their organisation is adequately addressing information security risks, whilst also communicating the value of security appropriately.
David Ferbrache, Technical Director at KPMG UK, says “No approach can ever succeed without considering people – and as a profession we need to look beyond our computers to understand the business, the culture of the organisations, and, most of all, how we can create a security environment which helps people feel free to actually do their job.”
By gaining an understanding of the psychology of information security, you can ensure your security programme is a success.
Augusta University’s Cyber Institute adopted the book “The Psychology of Information Security” as part of our Master’s in Information Security Management program because we feel that the human factor plays an important role in securing and defending an organization…We want our students to not only understand technical and managerial aspects of security, but psychological aspects as well.”
-Director of Graduate Studies in Information Security Management, Augusta University
Based on insights gained from academic research and interviews with security professionals from various sectors, this essential guide explains the importance of careful risk management and reveals how to align a security programme with wider business objectives, providing methods and techniques to engage stakeholders and encourage buy-in.
The Psychology of Information Security redresses the balance by considering information security from both end users’ and security professionals’ perspectives, and helps you to understand how a security culture, that puts risk into context, promotes compliance.
Leron Zinatullin (zinatullin.com) is an experienced risk consultant specialising in cyber security strategy, management and delivery. He has led large-scale, global, high-value security transformation projects with a view to improve cost performance and support business strategy.
He has extensive knowledge and practical experience in solving information security, privacy and architectural issues across multiple industry sectors.
He has an MSc in information security from University College London, where he focused on the human aspects of information security. His research was related to modelling conflicts between security compliance and human behaviour.
This book – the most in-depth guide on the market – is the ideal resource for anyone looking to learn how a security culture based on international best practice can help mitigate the insider threat to your security.
Every type of organisation is vulnerable to insider abuse, errors or malicious attacks. These can impact reputation, operations and profitability, and expose data, harm the organisation, or deliver valuable intellectual property into competitors’ hands.
Insiders can be current or former employees, contractors, or other business partners who have been granted authorised access to networks, systems or data, and all of them can bypass security measures through legitimate means.
Insider Threat – A Guide to Understanding, Detecting, and Defending Against the Enemy from Within looks beyond perimeter protection tools and details how to build a defence programme using security controls from the international standards ISO 27001 and ISO 27002, and NIST SP 800-53.
Using international best practice, this in-depth guide will help you address:
Dr Julie Mehan is the founder and president of JEMStone Strategies and a principal cyber security analyst in a strategic consulting firm in Virginia. She has delivered cyber security and related privacy services to senior commercial, Department of Defense and federal government clients working in Italy, Australia, Canada, Belgium and the United States. Dr Mehan is also an associate professor at the University of Maryland University College, specialising in courses in cyber security , cyber terror, IT in organisations, and ethics in an Internet society.
This course is ideal if you’re looking to advance your knowledge and now want to take the next step in your GDPR career by becoming a DPO. Under the GDPR, DPOs are required to have a level of expertise in national and European data protection law, as well as in-depth knowledge of the Regulation. They must also have a good understanding of how to build, implement and manage data protection programmes.
This combination course will equip you with in-depth knowledge of the GDPR and the skills you need to meet the Regulation’s DPO requirements.
Learn from an experienced privacy consultant and gain a practical understanding of the GDPR. This course delves into the Regulation’s details, discussing how each aspect can be translated into implementation actions for your organisation. Understand how the GDPR applies in a real-world context with real-life examples.
Gain the knowledge and operational skills to fulfil the DPO role and understand how a DPO fits in with other departments of the organisation. This course uses practical examples and exercises, and will teach you how to monitor and maintain compliance with the GDPR.
Designed and developed from our extensive experience gained advising on compliance with data privacy laws and related information security standards.
Successful completion of the course and included exam leads to the ISO 17024-certificated UK GDPR P, and the C-DPO Provisional Level qualification.
Develop the operational skills and knowledge to perform the DPO role, and covers all the activities required to ensure and maintain GDPR compliance.
Delivered by experienced privacy consultants, this combination course offers practical examples and exercises to help you fulfil your duties.
An experienced privacy consultant will use a combination of practical exercises and real-life examples.
Develop the skills and understanding required to achieve and maintain GDPR compliance.
Staff who are responsible or involved in ensuring their organisation becomes GDPR compliant, and staff who have been appointed as a DPO and require training to fulfil the role. Anyone looking to develop their career in GDPR or data protection with a professional qualification.
Course materials, lunch and the exams are all included in this course, as well as a DPIA tool and a GDPR compliance gap assessment tool.
You will be sent the course materials in advance of the course, so please bring them with you, as well as a pop-up-enabled laptop or tablet to sit the exams.
Day 1: 9.30 am – 5.00 pm
Day 2: 9:15 am – 5:00 pm
Day 3: 9:15 am – 5:00 pm
Day 4: 9:15 am – 5:00 pm
Day 5: 9:30 am – 5:00 pm
Day 6: 9:15 am – 5:00 pm
Before joining this course, you must have knowledge of the EU GDPR and have passed the Certified EU GDPR Foundation examination.
Please make sure you revise the topics covered in the GDPR Foundation course before attending this combination training course, as they may be included in the exam.
We strongly recommend you purchase and read the standard prior to attending the course:
Attendees take the UK GDPR P examination at the end of day four:
The online C-DPO exam is taken on the final day of the course:
This course is equivalent to:
42
CPD points
Candidates who pass the included exams are awarded the UK GDPR Practitioner (UK GDPR P) and C-DPO Provisional qualifications.
Please note that in order to get the C-DPO Professional level qualification, you must prove 24 months DPO work experience and 100 CPD learning hours.
All courses hold accreditations from IBITGQ (International Board for IT Governance Qualifications).
The Certified GDPR Practitioner courses is also accredited by CIISec (The Chartered Institute of Information Security) and satisfies the CIISec Knowledge Areas requirements at Level 1: A1, A2, A3, A4, A5, A6, A7, B2 and C3.
As a premier personnel certification body, IBITGQ specialises in certifying individuals who demonstrate exceptional proficiency in IT governance practices.
IBITGQ maintains accreditation to the ISO/IEC 17024:2012 standard, a globally recognised benchmark for conformity assessment. Accreditation by the International Accreditation Service (IAS) further underscores the course's commitment to meeting stringent certification requirements.
ISO 17024 certification is esteemed within the industry and universally acknowledged by employers worldwide. By aligning with this standard, our course ensures that your qualifications are not only recognised but also highly valued by employers across diverse sectors.
Upon successful completion of the course, you have the opportunity to validate your professional expertise by registering your qualification on the esteemed IBITGQ/GASQ successful candidate register. This platform serves as a testament to your commitment to excellence in IT governance, setting you apart as a distinguished professional in the field.
Delegates must bring a form of photographic ID with them as the invigilator may request to check it prior to the exam.
Provisional exam results will be given immediately after completing the exam; confirmed results will be issued within 10 working days, after which you’ll receive your certificate by email if you passed.
Yes, if you are unsuccessful on the first attempt you can retake the exam for an additional fee. You can email us to schedule the retest for the exam.
We want you to learn, qualify and progress, and we are committed to providing learning options for all scenarios: deadline-driven, career-orientated, company-wide or interest-led.
Structured learning, with clear direction and guidance from expert practitioners:
Learn and absorb material in a way that works for you:
The most effective learning method for professionals:
Learning as a team and building a culture of awareness:
Are you looking to become a DPO, or already performing the role? Under the GDPR you are required to have a level of expertise in both national and European data protection law, including in-depth knowledge of the Regulation. It is also essential to have a good understanding of how to build, implement and manage data protection programmes.
This combination course will provide you with in-depth knowledge of the GDPR and the requirements you need to meet in order to achieve GDPR compliance as a DPO.
Learn from an experienced privacy consultant and get a practical understanding of the GDPR. This course provides an overview of the Regulation’s key elements, including the different bands of data breach fines, the six data processing principles and the rights of data subjects.
The starting point for all prospective and current DPOs. This course is focused on developing the in-depth knowledge and skills needed to conduct the DPO role, including how to carry out data protection impact assessments and facilitating data subject access requests.
This combination course has been built on the foundations of our extensive practical experience delivering data protection support to clients.
Successful completion of the course and included exam leads to the ISO 17024-certificated UK GDPR F and the C-DPO Provisional Level qualification.
Provides a complete introduction to the GDPR’s requirements, and covers all the activities required to plan, implement and maintain GDPR compliance.
Delivered by experienced privacy consultants, this combination course offers practical examples and exercises to help you fulfil your duties.
An experienced privacy consultant will use a combination of practical exercises and real-life examples.
Develop the skills required to achieve GDPR compliance for your organisation..
97%
of participants pass first time
96%
thought the trainer had good knowledge of the subject
93%
thought the trainer answered questions adequately
93%
thought the trainer supported individual requirements
“The course delivered everything that I hoped and more – a thoroughly enjoyable week of expertly presented material reinforced by interaction as a group – I know that I now know GDPR at a much deeper level as a result.”
- David
“Very professional! Excellent subject knowledge. Fantastic time management, structure, very organised. Always summarised throughout which was so helpful.”
- Sarah Jane
Staff who have been appointed DPO who require training to perform the role, or individuals who would like to become a DPO. Anyone with a basic knowledge of data protection regulation and practices who is looking to develop their career with a professional qualification:
You will be sent the course materials in advance, so please bring them with you, as well as a pop-up enabled laptop or tablet on which to sit the exams .
Day 1: 9.30 am – 5.00 pm
Day 2: 9.30 am – 5.00 pm
Day 3: 9:15 am – 5:00 pm
Day 4: 9:15 am – 5:00 pm
Day 5: 9:30 am – 5:00 pm
There are no prerequisites for taking the GDPR Foundation course.
Before taking the C-DPO course, you must have passed the Certified UK GDPR Foundation examination.
There is no pre-reading for the GDPR Foundation course.
For the C-DPO course, we strongly recommend you read at least one of the following:
Attendees take the UK GDPR F examination at the end of day 1:
The online C-DPO exam is taken on the final day of the course:
This course is equivalent to:
35
CPD points
Candidates who pass the included exams are awarded the UK GDPR Foundation (UK GDPR F) and C-DPO Provisional qualifications.
Please note that in order get the C-DPO Professional level qualification awarded by IBITGQ, you must prove you have 24 months of DPO work experience and 100 CPD learning hours.
All courses hold accreditations from IBITGQ (International Board for IT Governance Qualifications).
The Certified GDPR Foundation course is also accredited by and CIISec (The Chartered Institute of Information Security) and satisfies the CIISec Knowledge Areas requirements at Level 1: A1, A2, A3, A4, A5, A6, A7, B2 and C3.
As a premier personnel certification body, IBITGQ specialises in certifying individuals who demonstrate exceptional proficiency in IT governance practices.
IBITGQ maintains accreditation to the ISO/IEC 17024:2012 standard, a globally recognised benchmark for conformity assessment. Accreditation by the International Accreditation Service (IAS) further underscores the course's commitment to meeting stringent certification requirements.
ISO 17024 certification is esteemed within the industry and universally acknowledged by employers worldwide. By aligning with this standard, our course ensures that your qualifications are not only recognised but also highly valued by employers across diverse sectors.
Upon successful completion of the course, you have the opportunity to validate your professional expertise by registering your qualification on the esteemed IBITGQ/GASQ successful candidate register. This platform serves as a testament to your commitment to excellence in IT governance, setting you apart as a distinguished professional in the field.
Provisional exam results will be given immediately after completing the exam; confirmed results will be issued within 10 working days, after which you’ll receive your certificate by email if you passed.
Candidates must have a form of photographic ID as the invigilator my request to check it before the exam.
Yes, if you are unsuccessful on the first attempt, you can retake the exam for an additional fee. You can email us to schedule the retest.
This course is part of our training programme. You can download your training pathway below to find your next recommended courses.
We want you to learn, qualify and progress, and we are committed to providing learning options for all scenarios: deadline-driven, career-orientated, company-wide or interest-led.
Structured learning, with clear direction and guidance from expert practitioners:
Learn and absorb material in a way that works for you:
The most effective learning method for professionals:
Learning as a team and building a culture of awareness:
ITIL is the leading best-practice framework for ITSM (IT service management) and is globally adopted in both the public and private sectors. The latest evolution of the framework – ITIL 4 – has been significantly updated and addresses new ITSM challenges, includes new technologies and incorporates new ways of working.
ITIL 4 has evolved to a value system-focused approach that can be integrated with other management practices and ways of working, such as Agile and DevOps. Its end-to-end digital operation model has been designed to help IT teams create, deliver and operate technical products and services that fit their organisation’s wider business strategy.
ITIL 4 Essentials contains everything you need to know to pass the ITIL 4 Foundation Certificate, and more. It covers practices and concepts that are not addressed as part of the Foundation syllabus, making it ideal for newly qualified practitioners.
The book offers practical tips – based on the author’s extensive experience – for applying service management in the real world, with symbols used throughout to highlight which content is related to the ITIL 4 Foundation syllabus and which is not.
Ideal for self-study candidates and training participants, ITIL 4 Essentials will prove a helpful companion to their studies and a practical aid for their professional development. Project managers, contractors or consultants with limited study time will also find it essential to their part-time education.
This second edition has been updated to align with amendments to the ITIL® 4 Foundation syllabus, including:
ITIL® is a registered trade mark of the PeopleCert group. Used under licence from PeopleCert. All rights reserved.
Claire Agutter is interested in anything that helps IT work better. She has more than two decades’ experience as a service management consultant, trainer, speaker and author. She is the founder of Scopism, an organisation that focuses on publications, events and consultancy linked to SIAM (service integration and management). She recruited and led the team of volunteers who contributed to the SIAM Foundation and Professional Body of Knowledge publications and created the online SIAM community. From 2018 onwards, she has been nominated every year by Computer Weekly as one of the most influential women in UK tech.
A long-time IT Governance Publishing collaborator, Claire has written ITIL® study guides covering both ITIL v3 and ITIL 4, with her ITIL Foundation Essentials ITIL 4 Edition – The ultimate revision guide rating 4.4 on Amazon.
To view all her publications, visit: itgovernancepublishing - Claire Agutter.