ISACA Advanced in AI Security Management (AAISM) Training Course

This instructor-led, live training in Greece (online or onsite) is aimed at intermediate-level enterprise leaders who wish to understand how to govern and secure AI systems responsibly and in compliance with emerging global frameworks such as the EU AI Act, GDPR, ISO/IEC 42001, and the U.S. Executive Order on AI.

By the end of this training, participants will be able to:

• Understand the legal, ethical, and regulatory risks of using AI across departments.
• Interpret and apply major AI governance frameworks (EU AI Act, NIST AI RMF, ISO/IEC 42001).
• Establish security, auditing, and oversight policies for AI deployment in the enterprise.
• Develop procurement and usage guidelines for third-party and in-house AI systems.

Artificial Intelligence (AI) introduces new dimensions of operational risk, governance challenges, and cybersecurity exposure for government agencies and departments.

This instructor-led, live training (online or onsite) is aimed at public sector IT and risk professionals with limited prior experience in AI who wish to understand how to evaluate, monitor, and secure AI systems within a government or regulatory context.

By the end of this training, participants will be able to:

• Interpret key risk concepts related to AI systems, including bias, unpredictability, and model drift.
• Apply AI-specific governance and auditing frameworks such as NIST AI RMF and ISO\/IEC 42001.
• Recognize cybersecurity threats targeting AI models and data pipelines.
• Establish cross-departmental risk management plans and policy alignment for AI deployment.

Format of the Course

• Interactive lecture and discussion of public sector use cases.
• AI governance framework exercises and policy mapping.
• Scenario-based threat modeling and risk evaluation.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

This instructor-led, live training session in Greece (available online or on-site) is tailored for IT professionals at beginner to intermediate levels who wish to understand and implement AI TRiSM within their organizations.

Upon completion of this training, participants will be able to:

• Comprehend the fundamental concepts and significance of AI trust, risk, and security management.
• Identify and mitigate risks inherent to AI systems.
• Apply security best practices specific to AI technologies.
• Understand regulatory compliance requirements and ethical implications for AI.
• Formulate strategies for effective AI governance and management.

This instructor-led, live training in Greece (online or onsite) is designed for intermediate to advanced AI developers, architects, and product managers aiming to identify and mitigate risks inherent in LLM-powered applications, such as prompt injection, data leakage, and unfiltered outputs, while implementing security controls like input validation, human-in-the-loop oversight, and output guardrails.

Upon completion of this training, participants will be able to:

• Grasp the core vulnerabilities of LLM-based systems.
• Implement secure design principles within LLM application architecture.
• Utilize tools such as Guardrails AI and LangChain for validation, filtering, and safety assurance.
• Integrate techniques including sandboxing, red teaming, and human-in-the-loop reviews into production-grade pipelines.

Description:

This intensive four-day event serves as comprehensive preparation for the CGEIT exam, designed to equip you with the expertise needed to pass this challenging certification on your first attempt. The CGEIT qualification is a globally recognised benchmark of excellence in IT governance, awarded by ISACA. It is tailored for professionals tasked with managing IT governance or holding significant advisory and assurance responsibilities in this domain.
Attaining CGEIT status enhances your professional visibility in the marketplace and amplifies your influence at the executive level.

Objectives:

This seminar aims to prepare delegates for the CGEIT examination by building upon their existing knowledge and understanding, ensuring they are fully prepared to meet the standards defined by ISACA for successful exam completion.

Target Audience:

The course is intended for IT and business professionals who possess substantial experience in IT governance and are preparing to sit for the CGEIT examination.

Description:

CISA® stands as the globally recognized and most widely held certification for professionals specializing in IT audit and risk consulting.

Our CISA course offers intensive, highly competitive, and exam-oriented training. Drawing on a track record of delivering over 150 CISA training sessions across Europe and globally, and having trained more than 1,200 delegates, Net Security has developed its in-house training materials with the primary objective of ensuring delegates pass the ISACA CISA® Exam. The methodology emphasizes a deep understanding of CISA IS auditing concepts alongside extensive practice using ISACA question banks released over the past three years. Over time, CISA-certified professionals have become highly sought after by leading accounting firms, international banks, advisory and assurance agencies, and internal audit departments.

While delegates may possess years of experience in IT auditing, their ability to answer CISA questions correctly depends entirely on their grasp of globally accepted IT assurance practices. The CISA exam is notoriously challenging because it often presents two plausible answers, testing your nuanced understanding of global IT auditing standards. To overcome these challenges, we employ top-tier trainers with extensive global experience in delivering CISA training.

The Net Security CISA manual encompasses all exam-relevant concepts, case studies, and Q&A sessions across the five CISA domains. Additionally, trainers provide essential supporting materials throughout the course, including CISA notes, question banks, glossaries, videos, revision documents, exam tips, and mind maps.

Goal:

The ultimate objective is to pass your CISA examination on the first attempt.

Objectives:

• Apply gained knowledge practically to benefit your organization
• Deliver audit services in compliance with IT audit standards
• Provide assurance regarding leadership, organizational structure, and processes
• Provide assurance regarding the acquisition, development, testing, and implementation of IT assets
• Provide assurance on IT operations, including service operations and third-party engagements
• Provide assurance that the organization’s security policies, standards, procedures, and controls ensure the confidentiality, integrity, and availability of information assets

Target Audience:

Finance and CPA professionals, IT professionals, internal and external auditors, and information security and risk consulting professionals.

This training is delivered as an interactive workshop enriched with substantial theoretical knowledge. The curriculum aligns with the official CISA certification framework. Throughout the workshop, case studies are analyzed to address specific professional challenges. Instruction is conducted in English (Polish available upon request), utilizing the ISACA handbook as the primary resource.
 

CISA Exam Content Domains:

• Information System Auditing Process (21%)
• Governance and Management of IT (17%)
• Information Systems Acquisition, Development and Implementation (12%)
• Information Systems Operation and Business Resilience (23%)
• Protection of Information Assets (27%)

Exam Duration: 4 hours
Format: Multiple-choice questions
Number of Questions: 200

To qualify for the CISA designation, you must satisfy the following requirements: 

1. Successfully pass the CISA exam with a score of 450 or higher.
2. Adhere to the ISACA Code of Professional Ethics.
3. Commit to the CISA Continuing Professional Education (CPE) Policy.
4. Obtain a minimum of 5 years of professional experience in information systems auditing, control, or security.
5. Comply with ISACA Information Systems Auditing Standards.

If you have passed the exam and believe you meet these criteria, you can initiate your certification application via the official ISACA page.
A processing fee of $50 applies to this application.

Additionally, an annual maintenance fee is required to keep your certification active. ISACA members pay $40 per year, while non-members pay $75 per year.

Description:

Please note that this updated CISM exam content outline applies to examinations commencing from 1 June 2022.

CISM® stands as the most distinguished and rigorous qualification for Information Security Managers worldwide. This credential offers you the opportunity to join an elite peer network, empowering you to continuously learn and adapt to the evolving opportunities and challenges within Information Security Management.

Our CISM training methodology ensures comprehensive coverage of the content across the four CISM domains, with a clear emphasis on building strong conceptual foundations and mastering ISACA-published CISM exam questions. This course provides intensive training and robust exam preparation for ISACA’s Certified Information Security Manager (CISM®) Examination.

Our instructors advise all participants to review the ISACA-published CISM QA&E (Questions, Answers, and Explanations) as part of their exam preparation. The QA&E is invaluable for helping participants understand the style of ISACA questions, the approach to solving them, and aids in the rapid assimilation of CISM concepts during live classroom sessions.
All our trainers possess extensive experience in delivering CISM training, ensuring you are thoroughly prepared for the CISM examination.

Goal:

The primary objective is to pass your CISM examination on the first attempt.

Objectives:

• Apply the acquired knowledge practically to benefit your organisation
• Establish and maintain an information security governance framework to achieve your organization's goals and objectives
• Manage information risk to an acceptable level to meet business and compliance requirements
• Establish and maintain information security architectures (people, process, technology)
• Integrate information security requirements into the contracts and activities of third parties and suppliers
• Plan, establish, and manage the capability to detect, investigate, respond to, and recover from information security incidents to minimise business impact

Target Audience:

• Security professionals with 3-5 years of frontline experience
• Information security managers or individuals with management responsibilities
• Information security staff and assurance providers requiring an in-depth understanding of information security management, including: CISOs, CIOs, CSOs, privacy officers, risk managers, security auditors, compliance personnel, BCP/DR personnel, and executive and operational managers responsible for assurance functions

Description:

This course offers intensive and rigorous exam preparation for ISACA’s Certified Information Systems Auditor (CRISC) Examination. The curriculum covers the four (4) domains of ISACA’s latest CRISC syllabus, with a strong emphasis on exam readiness. Participants will receive the Official ISACA CRISC Review Manual and the Question, Answer and Explanation (Q&A&E) supplements. The Q&A&E resource is invaluable for helping delegates understand the ISACA question style, the types of answers ISACA seeks, and it facilitates rapid assimilation of the material.

The technical skills and practices promoted and evaluated by ISACA within the CRISC certification form the foundation for success in this field. Holding the CRISC certification demonstrates professional competence and expertise. With increasing demand for professionals skilled in risk and control, ISACA’s CRISC has become the preferred certification program for individuals and organizations worldwide. The CRISC certification reflects a commitment to serving an enterprise and one's profession with distinction.

Objectives:

• Assist you in passing the CRISC examination on the first attempt.
• Demonstrate your dedication to serving an enterprise with excellence.
• Leverage the growing demand for professionals with risk and control skills to secure better positions and salary opportunities.

You will learn:

• How to help enterprises achieve business objectives by designing, implementing, monitoring, and maintaining risk-based, efficient, and effective IS controls.
• The technical skills and practices promoted by CRISC, which serve as the building blocks for success in this field.

Description:

There is a surging demand for cybersecurity expertise, driven by persistent threats targeting organizations globally. A significant majority of professionals surveyed by ISACA acknowledge this trend and intend to pursue roles requiring cybersecurity knowledge.
To address this need, ISACA has introduced the Cybersecurity Fundamentals Certificate, offering both education and validation of skills in this critical field.

Objectives:

As cybersecurity threats escalate and the global shortage of adequately skilled security professionals widens, ISACA's Cybersecurity Fundamentals Certificate program serves as an effective solution for rapidly training entry-level staff, ensuring they possess the necessary skills and knowledge to succeed in the cybersecurity domain.

Target Audience:

This certificate program is an excellent avenue for acquiring foundational cybersecurity knowledge and beginning to develop skills and expertise in this essential area.

This instructor-led, live training in Greece (online or onsite) is designed for AI and cybersecurity professionals at an intermediate level who wish to understand and address security vulnerabilities specific to AI models and systems, particularly in highly regulated industries such as finance, data governance, and consulting.

By the end of this training, participants will be able to:

• Understand the types of adversarial attacks targeting AI systems and methods to defend against them.
• Implement model hardening techniques to secure machine learning pipelines.
• Ensure data security and integrity in machine learning models.
• Navigate regulatory compliance requirements related to AI security.

This instructor-led, live training in Greece (online or onsite) is designed for security engineers and compliance officers who aim to strengthen EXO deployments, control model access, and govern AI workloads operating entirely on-premise.

This instructor-led, live training in Greece (online or onsite) is designed for beginner-level IT security, risk, and compliance professionals seeking to grasp foundational AI security concepts, threat vectors, and global frameworks such as the NIST AI RMF and ISO/IEC 42001.

Upon completion of this training, participants will be able to:

• Comprehend the unique security risks inherent in AI systems.
• Identify threat vectors including adversarial attacks, data poisoning, and model inversion.
• Apply foundational governance models, such as the NIST AI Risk Management Framework.
• Align AI usage with emerging standards, compliance guidelines, and ethical principles.

Based on the latest OWASP GenAI Security Project guidance, participants will learn to identify, assess, and mitigate AI-specific threats through hands-on exercises and real-world scenarios.

This guided, live training in Greece (online or at your location) targets advanced professionals aiming to deploy and assess methods like federated learning, secure multiparty computation, homomorphic encryption, and differential privacy within practical machine learning workflows.

Upon completing this training, participants will be able to:

• Comprehend and evaluate essential privacy-preserving techniques in machine learning.
• Deploy federated learning systems utilizing open-source frameworks.
• Utilize differential privacy to ensure secure data sharing and model training.
• Employ encryption and secure computation strategies to shield model inputs and outputs.