Train your team — Accelerated courses for UK regulatory compliance

Is your business EU-compliant?

ISACA have created a list of courses to bring your team up to speed.

The Information Systems Audit and Control Association are an independent association that develops globally accepted practices for information systems. 

ISACA certifications are among the highest standards of professional achievement. At Firebrand, we deliver them in our signature accelerated method that helps your team become competent, confident, and certified at twice the speed.

Let's take a look at the top 4 EU regulations you need to be aligned with and the courses ISACA recommend for each.

1. The EU General Data Protection Regulation (GDPR)

If your business or your customers are located in the EU, you have to comply with the General Data Protection Regulation, also known as GDPR. Failure to do so may cost you up to 4% of your global turnover or more than £17 million—whichever is higher.

GDPR establishes guidelines for the collection and processing of personal information from individuals who live in the EU. It sets several Data-Protection- and Privacy-related requirements that your business should comply with.

GDPR emphasizes the principles of Data Protection, Data Subject Rights, Lawful Processing, and Consent.

➤Course recommendation: ISACA CDPSE®

The ISACA Certified Data Privacy Solutions Engineer®, also known as CDPSE®, helps your team develop the skills they need to create and implement technical privacy solutions.

Everyone from Privacy Analysts, Privacy Engineers, and Software Engineers to Security Engineers, Domain Architects, Solutions Architects, Information Security Engineers, and Consultants can benefit from this course.

The in-depth curriculum takes them through:

• Privacy Impact Assessment (PIA)
• Strategies against threats, attacks and vulnerabilities related to privacy - including encryption, hashing and de-identification
• Data Inventory and classification (e.g., tagging, tracking, SOR)

and other useful topics.

CDPSE® is the first experience-based, technical certification of its kind. At the end of the course, your team will sit the official CDPSE® exam and get certified.

Could it be right for you? Contact our advisers.

2. The EU Digital Operational Resilience Act (DORA)

The Digital Operational Resilience Act entered into force in January 2023 to address the challenges in the fintech security sector. It will become enforceable on 17 January 2025.

DORA sets uniform requirements for the security of network and information systems of companies operating in the financial sector, as well as third-party organizations that provide ICT-related services such as Cloud platforms or Data Analytics.

Entities have to develop the skills to understand and assess ICT risk in accordance with DORA.

➤Course recommendations:

• ISACA COBIT®
• ISACA CISA®
• ISACA CRISC®

1. ISACA COBIT®

ISACA Control Objectives for Information and Related Technology®, also known as COBIT® or COBIT 19, gives your team the skills to design and implement a streamlined enterprise IT governance system for your business.

The course exposes them to the Enterprise Governance of IT (EGIT) using the COBIT® Core Model, from an outline of the COBIT® framework, key concepts, principles, systems, and components to designing a tailored governance system and managing performance.

Depending on the needs of your team, at Firebrand we offer 4 accelerated COBIT® courses:

• ISACA COBIT® 2019 Foundation certification
• ISACA COBIT® 2019 Design & Implementation certification
• ISACA COBIT® 2019 Foundation and Design & Implementation certification (combined course; only 4 days)
• ISACA Implementing NIST Cybersecurity Framework Using COBIT® 19

Our advisers can help you understand the differences between them and which would be best for your team. Get in touch.

2. ISACA CISA®

A well-known and respected certification, the ISACA CISA®, Certified Information Systems Auditor®, is globally recognised as the gold standard certification for IS Audit Control, Assurance, and Security professionals.

This accelerated course helps your team develop the skills they need to identify vulnerabilities, report on compliance, and introduce controls within an enterprise.

This course is ideal for professionals in IT Systems Auditing, Consultancy, or Managerial positions, especially Senior Management—IT Compliance Managers, Chief Compliance Officers, Chief Risk & Privacy Officers, Security Managers/Architects, and more.

CISA® has been accredited under ISO/IEC 17024:2012, General Requirements for Bodies Operating Certification Systems of Persons, by The International Accreditation Service (IAS).

Could this course be right for you or your team? Request the full spec.

3. ISACA CRISC®

ISACA CRISC®, or Certified in Risk and Information Systems Control®, takes your team through designing, implementing, monitoring, and maintaining risk-based, efficient, and effective information systems controls.

This course is designed for IT and business professionals who mitigate risk at an Operational or Management level. It helps them become experts in the four CRISC® Domains:

• Governance
• IT Risk Assessment
• Risk Response and Reporting
• Information Technology and Security.

Interested? Access the full course spec.

3. The EU Network and Information Systems Directive 2 Regulation (NIS2)

NIS2 provides measures to boost the overall level of Cyber Security in the EU. Key digital service providers and businesses identified by EU member states as operators of essential services (such as energy, healthcare, finance, transportation, etc.) will have to take the appropriate security measures.

These measures should include policies on risk analysis and information security, policies and procedures to assess the effectiveness of cyber security risk management measures, and basic cyber-hygiene practices and cyber security training.

Entities are to encourage/offer training to their employees to provide the expertise needed to identify risks and assess cyber risk management practices.

➤Course recommendations:

• ISACA CISM®
• ISACA CISA® (see above)
• ISACA CRISC® (see above)
• ISACA Cybersecurity Audit Certificate

1. ISACA CISM®

Perhaps the best-known ISACA certification aside from CISA®, Certified Information Security Manager® (CISM®) teaches your team to manage, design, oversee, and assess enterprise information security.

The course takes them through the four ISACA CISM® Domains, including Information Security Governance, Information Risk Management and Compliance, Information Security Program Development and Management, and Information Security Incident Management.

This course is ideal for your company's Network Architects, Information Security Managers, and other specialists who deal with Information Security. There are no formal prerequisites; anyone can attend this course.

See the full course spec and inquire. 

2. ISACA Cybersecurity Audit Certificate

ISACA's Cybersecurity Audit Certificate equips your Audit and Assurance professionals and IT Risk teams with the skills they need to audit your Cyber Security processes, policies, and tools, and ensure you have all the measures in place to prevent cyber threats.

The Cybersecurity Audit Certificate covers several key areas, including:

• Security Frameworks & Best Practices
• Threat Assessment & Management
• Authorization Processes & Governance
• Asset, Configuration, Change & Patch Management Practices
• Enterprise Identity & Information Access Management
• Cyber & Legal Regulatory Requirements

At Firebrand, this certificate takes only 2 days to complete. As the course is currently in development, please inquire here. 

4. The EU Cyber Resilience Act (CRA)

Last but not least, the EU Cyber Resilience Act (CRA) will be implemented by 2027.

It enforces essential Cyber Security standards and Incident Reporting for all software and connected hardware. Connected products entering the EU market must attain certification according to the CRA Cyber Security criteria; also, manufacturers must conduct Cyber Security Risk Assessments on their digital products. These assessments will inform the product development process.

➤Course recommendations:

• ISACA CISM® (see above)
• ISACA CISA® (see above)
• ISACA CRISC® (see above)
• ISACA Cybersecurity Audit certificate (see above)

Is your team compliant?

For the past 13 years in a row, we’ve been named one of the Top 20 IT Training Companies in the World.

We specialise in accelerated training that helps you become competent, confident, and certified at twice the speed.

ISACA accelerated courses have been our bread & butter since day 1. At Firebrand, we are proud to be an Accredited Elite+ Partner of ISACA, the highest tier for global partners. We train the highest number of students of all partners in Europe and the United States.

Could one of our training solutions be right for you?

Get in touch with our advisers.