Thank you for sending your enquiry! One of our team member will contact you shortly.
Thank you for sending your booking! One of our team member will contact you shortly.
Course Outline
Programme
Module 1 : Vision processus
- Concepts et définitions.
- Types de processus de cybersécurité concernés : opérationnels (ex :
- campagnes de tests d'intrusion) et de gouvernance (ex : revue d'un outil de
- gestion des risques)
- Les 2 principaux modèles de BPMN 2.0.
Module 2 : Modélisation de processus
- Aborder la modélisation d'un processus.
- Présentation de Signavio ™ Quick Model.
- Présentation de Bizagi ™ Modeler.
- Composantes de base de BPMN 2.0.
Atelier : modélisation simple de processus en cybersécurité, opérationnels et de gouvernance.
L'atelier peut porter sur les processus prévus dans la formation, ou sur des processus à la demande des
stagiaires.
Module 3 : Mise en œuvre par étapes
- Audit de cybersécurité.
- Modélisation simple de processus de sécurité.
- Modélisation avancée de processus de sécurité.
- Exécution de processus.
- Suivi de processus avec un BAM (Business Activity Monitoring).
Atelier : réflexion sur la mise en œuvre dans un cas concret. Liste de livrables à l'issue de cette réflexion.
L'atelier peut porter sur le processus prévu dans la formation, ou sur un processus à la demande des
stagiaires.
Module 4 : Mise en perspective de la vision BPM avec d'autres
- Méthodologies
- BPM et Lean Six Sigma.
- BPM et ITIL.
- BPM et normes ISO.
- BPM et ISM (Information Security Management).
Atelier : étude de l'existant dans l'entreprise des stagiaires.
Requirements
There are no specific requirements needed to attend this course.
Testimonials
Zobaczenie na żywo faktycznej realizacji działań z użyciem przykładowych narzędzi do badania/łamania zabezpieczeń aplikacji.
Paweł - Aleksandra Pietrzak, Ośrodek Przetwarzania Informacji – Państwowy Instytut Badawczy
Najbardziej podobały mi się ćwiczenia/demonstracje praktyczne. Pozwalały głębiej zrozumieć naturę omawianego problemu i jak można do niego podejść.
Aleksandra Pietrzak, Ośrodek Przetwarzania Informacji – Państwowy Instytut Badawczy
I liked the most this that trainer was very well prepared, very kind to everyone and presented the topic in a very interesting way. I liked a lot this that trainer looked at the application we are working on in order to check its security.
Aleksandra Pietrzak, Ośrodek Przetwarzania Informacji – Państwowy Instytut Badawczy
Complex approach to the topic in connection to the practical examples, all this together with the trainer's energy and his huge experience.
Ihor - Aleksandra Pietrzak, Ośrodek Przetwarzania Informacji – Państwowy Instytut Badawczy
I found the entire OWASP course to be informative and well structured. If I had to pick one aspect that stood out the most, I'd say it was the coverage of web security vulnerabilities and the practical examples shown. The course helped me understand how to apply owasp concepts in various scenarios using different tools
Piotr - Aleksandra Pietrzak, Ośrodek Przetwarzania Informacji – Państwowy Instytut Badawczy
* great live-demos * good pacing * good intro to security testing
Robert McClure - Katalin Kovács, EUROPOL
Trainer was very good and knowledgeable
Katalin Kovács, EUROPOL
the content and the knowledge of the trainer
Bogdan Birou - Katalin Kovács, EUROPOL
Great and relevant examples, good speed, good excercises. Highly recommended!
Istvan Visegradi - Katalin Kovács, EUROPOL
commented examples walkthrough
Katalin Kovács, EUROPOL
Very skilled and likable trainer. Interesting topics and real life examples.
Jon Lunde - Jørn Raastad, Buypass AS
The real life examples Ron gave.
Bosch
Ron was very mindful of his audience and addressed everyone's questions. He checked his audience for clarity and was willing to spend the time to review a topic until everyone understood the topic. He gauged the audience for energy levels and suggested a break when he saw that the energy from the group was waning. This was much appreciated.
Bosch
Very knowledgeable trainer, was able to adjust to audience knowledge, excellent industry experience and ability to relate to audience needs Excellent content preparation , tailored to needs discussed beforehand. Good supplement reading materials prepared by trainer
Oliver Steinig - Bosch
relevance of content to our I4.0 business environment
Bosch
Ron's experience on how to successfully implement IoT projects and the deep technical subjects covered.
Bosch
His deep knowledge of the IoT topic.
Bosch
Level of expertise from the trainer Use case examples
Pierre Maillot - Bosch
Ann is very knowledgeable on the subject. She is constantly varying pace according to the feedback. There is a lot of room for discussing attendee's own experiences. It was a great joy !.
Sjoerd Hulzinga - KPN p/a Bloomville
I found the training too in depth for IT beginners. There was too many high level subjects that I felt were too advanced for a beginner level.
Capita Business Services Ltd
He took his time to make sure everyone understood and were on the same wave length
Tina Hopkins - Capita Business Services Ltd
It was pitched at the right level - challenging but understandable & informative.
Louise Voisey - Capita Business Services Ltd
Richard was very knowledgeable in his field.
- Knowledge Pool/ DVLA
I found it very interesting to learn all about what happens behind the scenes when it comes to IT systems. I also enjoyed learning about security and what hackers do as ethical hacking is an avenue I'm very keen in pursuing.
- Knowledge Pool/ DVLA
Trainer covered a lot of ground over a relatively short period.
- Capita Business Services Ltd
It was quite informal.
- Capita Business Services Ltd
Ahmed has a lot of experience in business continuity and it was good that he used his prior experience to bring some reality to the subject matter.
Capita Business Services Ltd
Trainer had depth and breadth of knowledge.
Capita Business Services Ltd
David's in depth knowledge. His relationship building skills with the audience. I really enjoyed the way he managed to make us (as a collective audience) enjoy the quite dry and uninteresing subject matter. He had anecdotes and knowledge of specific examples of security failings - hacker attacks - BCP 'breakdowns' etc which put flesh on the bones to the piece of legislation or 'best practice' for BCP that he was trying to teach us about. A really engaging, down to earth and personable man: A very good listener and a fabulous, charismatic trainer.
Cris Bollin - KnowledgePool
I liked the trainer's introduction and anecdotes to make the learning more real
KnowledgePool
The second day, scenarios exercises.
Christina Hutchings - KnowledgePool
The environment was really relaxed and open so everyone could ask questions or put across points of view or experience. David the trainer was a SME on the subject and his style was very good.
KnowledgePool
The trainer was very knowledgeable and was happy to go at the pace of the attendees. He was polite and respectful to all those in attendance. I felt I learnt a lot from the course as the trainer was very succinct in his delivery when going through the PP slides. A really good, worthwhile course from my personal point of view.
Julie Price - KnowledgePool
The exercises and group discussions.
KnowledgePool
The pace of training delivery.
Ian McInally - KnowledgePool
Overview of automotive cyber security
NIPPON SEIKI (Europe) BV
I enjoyed refreshing my knowledge on the various subjects on cyber security. I was increasingly interested around cyber attacks, how they happen and what we (as an organisation) could potentially do to try and mitigate any risks. I did raise a question around AI in cyber attacks, and the answer was very in depth and interesting with a live example given on the spot.
Siobhan - Khadija Ukadia, KPMG LLP
Concise course, good as an introduction to Cyber.
Gerry - Khadija Ukadia, KPMG LLP
Interesting subject
Khadija Ukadia, KPMG LLP
great real world examples and a very knowledgeable trainer
khadijah ukadia, KPMG
Overall objective met
Tay Thiam Chek Andy , SPF
- Understanding that ATT&CK creates a map that makes it easy to see, where an organization is protected and where the vulnerable areas are. Then to identify the security gaps that are most significant from a risk perspective. - Learn that each technique comes with a list of mitigations and detections that incident response teams can employ to detect and defend. - Learn about the various sources and communities for deriving Defensive Recommendations.
CHU YAN LEE - PacificLight Power Pte Ltd
All is excellent
Manar Abu Talib - Dubai Electronic Security Center
Depth of knowledge. A true SME in Openstack. Patient and very helpful. Explained complex topics in an understandable and digestible way.
Jake McIlwaine - Sam Bultitude, Gamma
The trainer was extremely knowledgable and helpful. While walking through the exercises, I wasn't rushed and was allowed to make mistakes (to a point) and then help was given to correct to them where needed.
Tim Wilkes - Timothy Wilkes, Gamma
The experience and knowledge of the trainer and ease to which he passed on that knowledge
HMRC
The discussions, plus the trainer brought in some real life examples which we could relate to.
HMRC
Speed of response and communication
Bader Bin rubayan - Bader Bin Rubayan, Lean Business Services
How well spoken it all was
Natalie Gill, The Growth Company
I enjoyed the whole training session, very handy for a potential new career option, which i have been considering.
Christopher Crompton - Natalie Gill, The Growth Company
Related Courses
CEH - Certified Ethical Hacker
35 hours
Incident Response
21 hours
Threat Hunting
21 hours
Microsoft SDL Core
14 hours
C/C++ Secure Coding
21 hours
Standard Java Security
14 hours
Java and Web Application Security
21 hours
Advanced Java Security
21 hours