Hero Banner

Compliance Training Course

One comprehensive course that teaches you all you need to know about compliance with ISMS, ISO 27001, PCI DSS and Business Continuity Management

We have trained over 750 organizations including:

3 detailed, content-rich modules on each compliance requirement with several sections

Sharp focus on the most important cybersecurity regulatory standards & frameworks

Covers ISMS, ISO 27001 PCI DSS and Business Continuity Management System

Enhance career prospects in the lucrative Cyber, Governance and Risk Management space

Compliance with risk-based controls and business continuity plans and processes has become indispensable for businesses in the current threat landscape. Compliance requirements ensure that your business adheres to at least a basic level of risk management measures and controls, as well as regulatory requirements in order to ensure business continuity and better disaster recovery.

This course is a comprehensive one-stop training for those who wish to understand all about regulatory and organisational compliance. It covers detailed insights on compliance with ISO 27001, ISMS, PCI DSS and Business Continuity Management. Ideal for Information Security and Risk Management professionals, this course can also help you emerge as a much sought-after Governance, Risk and Compliance professional.

Benefits of the Compliance Training Programme

  • Understand the full extent of cybersecurity compliance requirements for business.

  • Covers the key frameworks/standards of ISMS, ISO 27001 PCI DSS and Business Continuity Management System.

  • Widen your skills and knowledge as a cyber and Governance and Risk Management professional with this intense and detailed training.

Compliance (1)


Compliance Training Course Learning Objectives:

After completing the Compliance Training course, you will be able to:

  • Elucidate what the essential cybersecurity compliance standards are and what does compliance with each one entail. 

  • Acquire substantial knowledge about ISMS, its importance and its benefits.

  • Explain in your own words the steps required for ISMS implementation, its scope and how to conduct ISMS gap analysis.

  • Gain considerable understanding of the ISO 27001 standard for information security and how to become ISO 27001 compliant.

  • Fully comprehend the structure of ISO 27001:2013 and the controls in Annex A of ISO 27001:2013.

  • Understand the Payment Card Industry Data Security Standard (PCI DSS), essential terms related to PCI DSS and the entities involved in payment card transactions.

  • Articulate the need for PCI DSS compliance and how to actually become compliant.

  • Discuss what Business Continuity Management is and why it is critical today.

  • Articulate the core elements, objectives and issues involved in Business Continuity Management planning.

  • Confidently work on Business Impact Analysis and on creating Disaster Recovery plans.

Feedback and Testimonials for our Courses

Kevin Hayes
The playbooks training course was a good 'part-2' to the CIPR and went into greater depth in a number of areas. The day was fun and Amar kept us moving along at a good pace.
Kevin Hayes
CISO, Cyber Risk Associates
Russ Smith

Enjoyed the course. Good mix of attendees and plenty of lively conversation. Amar steered us through it all admirably.

Russ Smith
Kim Rose

Overall the course was very good. I would strongly recommend this training to anyone who is involved in Cyber Security or has control of information assets.

Kim Rose
Information Governance Officer, Wye Valley NHS Trust
Philipp Scheiwiler

It was a great workshop with a lot of interesting people and a great learning experience.

Philipp Scheiwiler
System Engineer
Andrew Lock
This was a very helpful day and opportunity to speak with a number of operational incident responders to discuss what really works in practice and not just in theory. I gained a great deal from the day, particularly around the construction of bespoke playbooks and also a variety of useful resources to inform my learning. A really good day.
Andrew Lock
Information Security Consultant

Compliance Training Course Modules 

Module 1 - Information Security Management System (ISMS)
  • Introduction to ISMS. Need for an ISMS and its Benefits.

  • ISO 27001. Understanding Controls. Introduction to ISO 27001:2013 standard. Understanding the Structure of the Standard. ISO 27001:2013 Domains.

  • Overview of Controls. Overview of ISMS implementation.

  • Risk Assessment & Treatment.

  • ISMS Documentation Review. ISMS Training. ISMS Documentation.

  • Audit, Certification, IAF, LI, LA. Audit Programme. Audit Activities. Audit Plan & Audit Checklist. Audit Findings & Audit Report.

  • Opportunity For Improvement (OFI) & Non-Conformity (NC).
Module 2 - Payment Card Security Data Security Standards (PCI DSS)
  • Introduction to PCI DSS. Common terms related to PCI DSS. 

  • Entities Involved in Payment Card Transactions. 

  • Consequences of Compromised Payment Card Data. 

  • Need and Application of PCI DSS. Steps for Adhering to PCI DSS.

  • Scoping & Network Segmentation.

  • Compliance Requirements for PCI DSS. Levels of PCI Compliance. Do’s and Don’ts for Payment Card Security.

  • PA-DSS and its Requirements. Pin Transaction Security (PTS). 

  • Payment Card Data Breaches and Myths.

  • Payment Card Attacks.

Module 3 - Business Continuity Management System (BCM)
  • Business Continuity Planning. Issues in BCM.

  • Risk Control Options. Disaster Recovery Plan. 

  • Maintenance of BCM Plan. Business Impact Analysis.

  • Backup Sites. Backup Considerations and Backup Types.

  • ISO 22301 and ISO 22301 Requirements.

  • Mandatory Documents of ISO 22301 and Benefits.

All trademarks, service marks, trade names, product names, service names and logos appearing on the site, or on printed or digital material are the property of their respective owners, including in Cyber Management Alliance Ltd. Any rights not expressly granted herein are reserved.

Building and Optimising Incident Response Playbooks

Find out more about our one day public courses or internal workshops, please complete the form below. 

  • callOr call us on:
  • +44 (0) 203 189 1422