ISO 27034 - Application Security

CERTIFIED ISO 27034 LEAD IMPLEMENTER

MASTERING THE IMPLEMENTATION OF APPLICATION SECURITY (AS) PROCESSES, ACTIVITIES & SECURITY TECHNIQUES ACROSS THE ORGANIZATION BASED ON THE INTERNATIONAL STANDARD ISO/IEC 27034 – APPLICATION SECURITY

This five-day intensive course enables the participants to understand specific principles and concepts proposed by ISO/ IEC 27034 for AS and understand how they can be implemented, step by step, to help organizations to develop, acquire, implement, use, and maintain trustworthy applications, according to their specific business context, at an acceptable cost. More specifically, the ISO/IEC 27034 framework proposes components and processes to provide verifiable evidences that an application have reached and maintained a targeted level of trust as specified by the organization. The responsibility of a Certified ISO/IEC 27034 Application Security Lead Implementer is to assist organizations to put in place required 27034 framework elements and guide the organization to integrate Application Security Controls (ASC) seamlessly throughout the life cycle of their applications. AS applies not only to the software of an application but also to its other components and contributing factors that impact its security, such as its technological context, its regulatory context, its business context, its specifications, the sensitivity of its data, and the processes and actors supporting its entire life cycle. This framework applies to all sizes and all types of organizations (e.g. not only to commercial enterprises, government agencies and non-profit organizations that are using applications, but also to large, medium and small vendors that develop software, application and business services) exposed to security risks on information associated with their applications.

Read More

CERTIFIED ISO 27034 LEAD AUDITOR

MASTERING THE AUDIT OF IT - SECURITY TECHNIQUES – APPLICATION SECURITY BASED ON ISO 27034, IN COMPLIANCE WITH THE REQUIREMENTS OF ISO 19011 AND ISO 17021

This five-day intensive course enables the participants develop the necessary expertise to audit an Information technology - Security techniques – Application Security as specified in ISO/IEC 27034, and manage a team of auditors by applying widely recognized audit principles, procedures and techniques. During this training, the participant will acquire the necessary knowledge and skills to proficiently plan and perform internal and external audits in compliance with ISO 19011 and ISO 17021. Based on practical exercises, the participant will develop the skills (mastering audit techniques) and competencies (managing audit teams and audit program, communicating with customers, conflict resolution, etc.) necessary for efficient conduct of an audit.

Read More

Request a Course

Interested in a particular course or would like addition information

Training request

Currently Scheduled Courses

See listing of currently planned courses.

View


Copyright © NISKAA Group 2015. All rights reserved