Our training courses – Make your business safer with security training

Build more digital security for your company through training and awareness-raising.

Our training concepts for your company.
Individual, goal-oriented, sustainable.

BSI-IT-Grundschutz-Praktiker + Certification

IT-Grundschutz is also becoming increasingly relevant in the private sector in the course of digitalization.

The IT-Grundschutz practitioner training course provides a comprehensive and in-depth overview of the topic of IT-Grundschutz methodology.

The focus of the seminar is on the successful and targeted creation of security concepts in accordance with BSI-IT-Grundschutz. This includes security and reliability in the processing of information and data, as well as the prerequisite for maintaining the competitiveness and functionality of the company.

  • Ideal for the introduction of information security measures

  • Basic documents of an ISMS

  • Guidelines, directives & concepts

  • Procedural instructions

  • Templates & recording aids

The training content is divided into a total of 14 subject areas:

– IT security basics and legal foundations

– Overview of information security

– Introduction to IT-Grundschutz

– Overview of the IT-Grundschutz approach

– Implementation of IT-Grundschutz

– IT-Grundschutz protection check

– IT-Grundschutz profiles

– Overview of the IT-Grundschutz compendium

– Risk analysis

– Implementation planning

– Maintenance and continuous optimization

– Certification and receipt of the IT-Grundschutz certificate based on ISO 27001

– Audit structure

– Security incident management

– Emergency management in accordance with BSI Standard 200-4

Target audience:
The seminar is aimed at all persons in a company or administration who have been appointed as information security officers and are seeking certification in this area.

Frequently used titles for these people are:

  • Information Security Officer (ISB)
  • Information Security Manager (ISM)
  • IT Security Officer (IT-SiBe)
  • Chief Security Officer (CSO)
  • Information Security Officer (ISO)
  • Chief Information Security Officer (CISO)
1.849€ excluding VAT

BSI-IT-Grundschutz-Consultant
(Without examination)

The IT-Grundschutz practitioner is a prerequisite for completing the IT-Grundschutz consultant.

With the modernization of basic IT law came not only the change for public administrations and authorities, but also increasing interest in the private sector.

The task of the IT-Grundschutz consultant is to support authorities and companies with their technical expertise in the development of security concepts and the introduction of a management system for information security.

  • Ideal for the introduction of information security measures

  • Basic documents of an ISMS

  • Guidelines, directives & concepts

  • Procedural instructions

  • Templates & recording aids

The training covers the following topics:

– Information security norms and standards

– IT-Grundschutz approach

– Compendium

– Risk analysis

– Maintenance and continuous optimization

– IT-Grundschutz profiles

– Audit preparation

– Emergency management according to BSI Standard 200-4

Target audience:
The training is aimed at all persons in a company or administration who have been appointed as information security officers and are seeking verification in this area.

Frequently used titles for these people are:

  • Information Security Officer (ISB)
  • Information Security Manager (ISM)
  • IT Security Officer (IT-SiBe)

In addition, the training is suitable for BSI-accredited audit team leaders and BSI IS auditors, auditors or consultants who are entrusted with the review and control of information security processes or in accordance with § 8a BSIG or who work towards this.

1.649€ excluding VAT

ISMS implementer

Cyber attacks and threats to information security are a serious problem that is characterized by a steady increase.

By implementing and managing information security measures, you can defend yourself against potential attacks and protect your company appropriately.

This course teaches participants how to implement an information security management system (ISMS) based on ISO/IEC 27001. In addition, the training includes comprehensive training for the essential practices of an information security management system (ISMS), as well as its continuous management and optimization.

Training content:

  • Introduction to ISO/IEC 27001

  • Basics of initiating an ISMS
  • Planning the implementation of an ISMS
  • Carrying out the implementation of an ISMS
  • ISMS monitoring
  • Preparation for a certification audit

Target audience
The training is aimed at project managers, consultants, and expert advisors involved in the implementation of ISMS. This also includes persons who are responsible for ensuring compliance and information security requirements within a company.

Data Protection Officer

The EU General Data Protection Regulation came into force on May 25, 2016 and has been mandatory since May 25, 2018. This regulatory change has triggered a comprehensive reorganization of data protection. Companies with more than twenty employees that carry out automated processing of personal data are required to appoint a company data protection officer.

However, regardless of the number of employees, a company data protection officer must be appointed as soon as a data protection impact assessment has to be carried out if personal data is processed automatically in a company for the purpose of transmission or market or opinion research.

The content of this training course is basic knowledge about the topic of data protection and the legal changes that have resulted from the entry into force of the GDPR.

The course content includes the following topics in particular:

  • Legally compliant handling of personal data
  • Consideration of the organizational environment
  • Technical and organizational data protection measures
  • Technical and organizational data protection measures

Target audience:
This training is intended for individuals who wish to qualify as operational data protection officers or who are interested in the topic of data protection.

Data Protection auditor

An expressive and effective data protection concept is subject to regular monitoring and optimization. In order to be able to guarantee this, it is essential to master the data protection audit as a dedicated instrument in order to be able to meet your customer and authority requirements securely and to ensure continuous improvement.

The data protection auditor is able to identify weaknesses within a data protection concept through systematic testing procedures and to initiate improvements that provide an overall assessment of the concept.

The data protection auditor training not only deepens your knowledge as a data protection expert, but also enables you to review data protection concepts and master critical audit situations with confidence.

In terms of content, the following topics in particular are addressed in the data protection auditor training course:

  • Requirements for a data protection audit
  • Planning data protection audits
  • Selection of relevant specialist areas and processes
  • Conversation management as well as communication and questioning techniques
  • Implementation of a data protection audit
  • Follow-up and evaluation of data protection audits

Target audience:
This training is aimed at data protection officers, as well as employees and responsible individuals from the fields of data protection, data security, and compliance. This training is also of interest to managers and project managers.

Internal control system (ICS)

Due to legal requirements (e.g. GoBD or KonTraG) and a constantly changing risk structure, the introduction of internal control systems in companies is indispensable.

The aim of this training course is to create a secure basis for your business processes using an ICS. Against this background, it is possible to define, set up and subsequently implement your own internal control system.

Training content:

  • Introduction, basics and requirements
  • Structure and implementation
  • Detailed review of business processes
  • Use of internal optimization parameters
  • External test units

Target audience:
This training is aimed at data protection officers, as well as employees and responsible individuals from the fields of data protection, data security, and compliance.

The course is also aimed at specialists and managers who would like to expand their knowledge of this topic.

Cloud Security

Cloud computing is now present across all sectors and industries. The implementation and use of cloud services offers a number of advantages, but also risks and threats in the area of information security.

In order to guarantee full protection, the cloud requires modern methods and security measures. The training provides the basics of cloud security, as well as an overview of current and relevant threats with corresponding solutions.

Training content:

  • Organizational aspect of cloud security

  • Cloud Data Center
  • Shared responsibility
  • Compliance programs
  • Threats and risks when using the cloud
  • Workspace Security

Target audience:
This training is aimed at IT managers and implementers in companies and public authorities who have or are considering establishing cloud security. This course is also relevant for people who want to expand their knowledge of cloud use.

IT emergency management

IT emergency management deals with the management of emergency situations relating to information technology. This includes the planning and implementation of measures to prevent IT emergencies and the establishment of processes and procedures to deal with emergencies if they do occur.

An important aspect of IT emergency management is the establishment of redundancies and fallback mechanisms to minimize the impact of emergencies on the company and its operations.

Another important part of IT emergency management is the regular monitoring and review of emergency procedures. This includes carrying out tests and exercises to ensure that emergency procedures are up to date and working effectively.

Overall, IT emergency management is an important part of any company that relies on information technology. It helps to minimize the impact of IT emergencies on the company and its operations and ensures that the company can continue to work effectively even in difficult situations.

Training content according to ISO 22301 and BSI 200-4:

  • Introduction to the basics of IT emergency management and the ISO 22301 and BSI 200-4 standards

  • Explanation of the requirements and best practices defined in the standards
  • Overview of the various steps involved in IT emergency management, from risk analysis and emergency planning to monitoring and reviewing emergency procedures
  • Tips and recommendations for implementing emergency procedures in the company, including setting up backup systems and creating emergency communication plans
  • Best practices for conducting tests and exercises to check the effectiveness of emergency procedures and adjust them if necessary
  • Discussion of current challenges and trends in the field of IT emergency management, such as the increasing use of cloud technologies and the importance of cyber resilience.

Why is IT security so important for companies?

Because cyber attacks are becoming more frequent and more sophisticated. Digitalization means that the number of applications, data and systems is constantly increasing. IT security is therefore more important than ever in all areas. From software development to securing the infrastructure and end devices – security must be considered at all levels right from the start.

A comprehensive IT security strategy is essential to ensure information security and data protection in the course of digitalization. CYBER CURRICULUM® can help you overcome this challenge and equip your company to defend against various types of cyber threats.

Our services are designed for companies of all sizes and include active measures as well as a wide range of IT security and data protection training courses.

IT security for companies is not just about using secure passwords and correctly managing access rights to internal files. You also need to be prepared for phishing attacks and other targeted attacks by cyber criminals. However, the human risk factor is often forgotten or not taken seriously enough, even though it is an important part of a comprehensive safety concept.
If there is a lack of communication about digital security risks in a company, employees inadvertently open the door to hacker attacks. By raising awareness of potential risks within your company, you can help to ensure that the internal network is secure.
Our cyber security training courses can help you understand the current vulnerabilities in your company’s infrastructure and what tools you can use to defend against hacker attacks.

Cyberattacks can have a devastating impact and affect any company – large or small. Not only can they compromise sensitive company data, they can also paralyze a company’s entire IT infrastructure, rendering it unable to operate economically.

At CYBER CURRICULUM®, we aim to assist businesses in establishing a reliable defense against cyber attacks. Our services include not only active support and guidance in the implementation of an information security management system (ISMS) and the implementation of customized data protection solutions, but also special training on cyber security awareness. We want to raise your awareness of IT security so that you can improve and protect your company’s network on your own.

Our portfolio includes training courses on all relevant cyber security topics at various levels.

We train and enable you to become competent IT experts and IT security officers:

– Identify security gaps in the company network

– Assess security threats from cyber criminals

– recognize potential threats

– take effective protective measures

Our comprehensive training courses transform you into competent IT experts and IT security officers. We provide the knowledge and skills you need to succeed in the fast-paced world of information technology and effectively protect your business from threats.

The Benefits of our
Cyber Security Training

  • BSI IT basic protection for practitioners & BSI IT basic protection for consultants

  • Data protection officer & data protection auditor

  • ISMS implementer

The procedure

The training takes place at fixed times, which will be communicated to you in good time before the start of the training.

Our trainers will show you by means of:

  • Demonstrations
  • Practical exercises
  • Simulations of real threat scenarios

how you can protect your company from cyber attacks.

Training location

We understand how challenging it can be to find the right training location, especially for larger groups.

That’s why we focus entirely on you and offer the following options to suit your individual requirements:

  • Meeting Point at Your Location
  • Meeting Point at Our Location
  • Virtual Meeting

Participation requirements

Our courses are open to anyone interested.

However, it is important that you have the technical requirements to be able to participate fully in our interactive, digital training.

All you need is:

  • A PC or laptop (incl. webcam and microphone)
  • A stable Internet connection
Period & duration

Our cyber security training courses are scheduled to start in 2024.

Further information on training times and course duration will be announced shortly.

General information

Regular and active participation is a prerequisite and is necessary to pass the training with certificate. IT security training at Cyber Curriculum®: We create awareness among your employees. A strong security culture is essential in today’s age of cybercrime. As cyber criminals become more professional and threats become more complex, it is important that you educate and train your employees in cyber security and risk management. Cyber Curriculum® helps you with this. We raise the security awareness of your employees in the digital space and thus reduce the human security risk.

Have we caught your Attention?

ARE YOU READY TO
SECURE YOUR ORGANIZATION?

Do you need a non-binding quote or further information?
Then feel free to reach out to us or book a non-binding consultation appointment.

Book your call