OpenBMC Security: Secure Boot, Certificates, and Firmware Updates Training Course

Description:

Basel III is a global regulatory standard on bank capital adequacy, stress testing and market liquidity risk. Having initially been agreed upon by the Basel Committee on Banking Supervision in 2010–11, changes to The Accord have extended implementation to 31st March 2019. Basel III strengthens bank capital requirements by increasing bank liquidity and decreasing bank leverage.
Basel III differs from Basel I & II in that it requires different levels of reserves for different forms of deposits and other types of borrowings, so it does not supersede them so much as it does work alongside Basel I and Basel II.
This complex and constantly changing landscape can be hard to keep up with, our course and training will help you manage likely changes and their impact on your institution. We are accredited with and a training partner to the Basel Certification Institute and as such the quality and suitability of our training and material is guaranteed to be up to date and effective

Objectives:

• Preparation for the Certified Basel Professional Examination.
• Define hands-on strategies and techniques for the definition, measurement, analysis, improvement, and control of operational risk within a banking organization.

Target Audience:

• Board members with risk responsibilities
• CROs and Heads of Risk Management
• Members of the Risk Management team
• Compliance, legal and IT support staff
• Equity and Credit Analysts
• Portfolio Managers
• Rating Agency Analysts

Overview:

• Introduction to Basel norms and amendments to the Basel Accord (III)
• Regulations for market, credit, counterparty and liquidity risk
• Stress testing for various risk measures including how to formulate and deliver stress tests
• The likely effects of Basel III on the international banking industry, including demonstrations of its practical application
• Need For The New Basel Norms
• The Basel III Norms
• Objectives of The Basel III Norms
• Basel III – Timeline

Buildroot is an open-source project that contains scripts that produce a cross-compilation toolchain, a customizable root filesystem image, and a Linux kernel for embedded devices. During this practical course, participants will learn how to use it:

• How to select software that goes into the root filesystem.
• How to add new packages and modify existing ones.
• How to add support for new embedded boards.

During the course, bootable filesystem images will be produced. Remote courses are delivered using the QEMU emulator, while in the classroom it is possible to use either QEMU or real embedded boards of the trainer's choice.

Other projects with similar goals include the Yocto project and OpenWRT. Please use these presentations to determine which one is the right choice for your needs.

This instructor-led, live training in Hong Kong (online or onsite) is aimed at advanced-level professionals who wish to gain a comprehensive understanding of fraud examination concepts and prepare for the Certified Fraud Examiner (CFE) exam.

By the end of this training, participants will be able to:

• Gain comprehensive knowledge of fraud examination principles and the fraud examination process.
• Learn to identify, investigate, and prevent various types of financial fraud schemes.
• Understand the legal environment related to fraud, including the legal elements of fraud, relevant laws, and regulations.
• Acquire practical skills in conducting fraud investigations, including evidence collection, interviewing techniques, and data analysis.
• Learn to design and implement effective fraud prevention and deterrence programs within organizations.
• Gain confidence and knowledge to successfully pass the Certified Fraud Examiner (CFE) exam.

Description:

This four day event (CGEIT training) is the ultimate preparation for exam time and is designed to ensure that you pass the challenging CGEIT exam on your first attempt.
The CGEIT qualification is an internationally recognised symbol of excellence in IT governance awarded by ISACA. It is designed for professionals responsible for managing IT governance or with significant advisory or assurance responsibility for IT governance.
Achieving CGEIT status will provide you with wider recognition in the marketplace, as well as increased influence at executive level.

Objectives:

This seminar has been designed to prepare Delegates for the CGEIT examination by enabling them to supplement their existing knowledge and understanding to be better prepared to pass the exam, as defined by ISACA.

Target Audience:

Our training course is for IT and business professionals, with significant IT governance experience who are undertaking the CGEIT exam.

This instructor-led, live training in Hong Kong (online or onsite) is aimed at payment services compliance professionals who wish to create, implement, and enforce a compliance program within an organization.

By the end of this training, participants will be able to:

• Understand the rules set forth by government regulators for payment service providers.
• Create the internal policies and procedures needed to satisfy government regulations.
• Implement a compliance program that adheres to relevant laws.
• Ensures that all corporate processes and procedures comply with the compliance program.
• Uphold the business's reputation while protecting it from lawsuits.

This instructor-led, live training in Hong Kong (online or onsite) is aimed at intermediate-level cybersecurity professionals who wish to enhance their understanding of GRC frameworks and apply them to secure and compliant business operations.

By the end of this training, participants will be able to:

• Understand the key components of cybersecurity governance, risk, and compliance.
• Conduct risk assessments and develop risk mitigation strategies.
• Implement compliance measures and manage regulatory requirements.
• Develop and enforce security policies and procedures.

Course Objectives

To provide an understanding of the essentials of embedded GNU/Linux, how the bits and pieces fit together. What components are needed to build an embedded GNU/Linux system, where to get them from and how to configure/build/install them? Where to get help from? What about those software licenses? Hands-on exercises provide you with the necessary practical experience to go ahead and develop your own embedded GNU/Linux systems after completing this training successfully.

Description

This five day training class uses hands-on exercises combined with instruction to illustrate the concepts of embedded GNU/Linux. It is designed to bring you quickly up to speed. The philosophy, concepts and commands necessary to make effective use of GNU/Linux are described through a combination of theory and on-the-job training.

Don't reinvent the wheel, but learn from an experienced trainer and take home a working knowledge of GNU/Linux and the ability to use it effectively in your own embedded development project.

Who should attend?

Managers, project managers, software-, hardware-, development-, systems engineers, testers, administrators, technicians and other parties interested in the technology, who want to understand as quickly as possible how Embedded GNU/Linux works. You must use GNU/Linux or you have to luxury to decide whether it makes sense to use it or not. Maybe you already tried to use Embedded GNU/Linux, but are not quite sure that you did everything the right way. You currently use a different operating system and wand to figure out whether GNU/Linux might better and/or cheaper.

Delivery Options

All the training material is English, but the presentation of it can be in English or in German, as you wish, worldwide.

• on-site - instructor driven
• on-line - instructor driven
• on-site/on-line combination - instructor driven

This course provides an expert introduction to the newly enacted Accessibility Law and equips developers with the practical skills to design, develop, and maintain fully accessible applications. Starting with a contextual discussion on the law's importance and implications, the course quickly shifts to hands-on coding practices, tools, and testing techniques to ensure compliance and inclusivity for users with disabilities.

Course goal:

To ensure that an individual has the core understanding of GRC processes and capabilities, and the skills to integrate governance, performance management, risk management, internal control, and compliance activities.

Overview:

• GRC Basic terms and definitions
• Principles of GRC
• Core components, practices and activities
• Relationship of GRC to other disciplines

This instructor-led, live training in Hong Kong (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

The LEDE Project (Linux Embedded Development Environment) is a Linux operating system based on OpenWrt. It is a complete replacement for the vendor-supplied firmware of a wide range of wireless routers and non-network devices.

In this instructor-led, live training, participants will learn how to set up a LEDE based wireless router.

Audience

• Network administrators and technicians

Format of the course

• Part lecture, part discussion, exercises and heavy hands-on practice

Audience

This course is intended for all employees who require a practical understanding of Compliance and effective Risk Management.

Format of the course

The training is delivered through a blended approach that includes:

• Facilitated discussions
• Slide-based presentations
• Case studies
• Real-world examples

Course Objectives

By the end of the course, participants will be able to:

Develop a solid understanding of the key aspects of Compliance, along with national and international initiatives aimed at managing associated risks.

Explain how organizations and their teams can establish an effective Compliance Risk Management Framework.

Describe the responsibilities of the Compliance Officer and the Money Laundering Reporting Officer, and understand how these roles integrate within a business structure.

Identify critical risk areas in Financial Crime, particularly in the context of international operations, offshore centres, and high-net-worth clients.

Open Source Software (OSS) Management is the practice of overseeing the lifecycle of open-source components within an organization, ensuring secure, compliant, and efficient use.

This instructor-led, live training (online or onsite) is aimed at intermediate-level IT professionals who wish to implement best practices for managing open-source software in enterprise and government environments.

By the end of this training, participants will be able to:

• Establish effective OSS policies and governance frameworks.
• Use SBOM and SCA tools to identify, track, and manage open-source dependencies.
• Mitigate risks associated with licensing and security vulnerabilities.
• Streamline OSS adoption while maximizing innovation and cost savings.

Format of the Course

• Interactive lecture and discussion.
• Case studies and scenario-based exercises.
• Hands-on demonstrations with OSS management tools.

Course Customization Options

• This course can be tailored to specific organizational OSS policies and toolchains. Please contact us to arrange.

This instructor-led, live Payment Card Industry Professional training in Hong Kong (online or onsite) provides an individual qualification for industry practitioners who wish to demonstrate their professional expertise and understanding of the PCI Data Security Standard (PCI DSS).

By the end of this training, participants will be able to:

• Understand the payment process and the PCI standards designed to protect it.
• Understand the roles and responsibilities for entities involved in the payment industry.
• Have deep insight into, and understanding of, the 12 PCI DSS requirements.
• Demonstrate knowledge of PCI DSS and how it applies to organizations that are involved in the transaction process.

In this instructor-led, live training in Hong Kong, participants will learn how to create a build system for embedded Linux based on Yocto Project.

By the end of this training, participants will be able to:

• Understand the fundamental concepts behind a Yocto Project build system, including recipes, metadata, and layers.
• Build a Linux image and run it under emulation.
• Save time and energy building embedded Linux systems.