+31 (0)6 50 277 344 info@triplea-security.org

Education

& Training

-Triple A Security-

Invest in practical and pragmatic education

The knowledge, skills and experience of your employees determine mostly the strength of your organisation. People with the right knowledge will prevent mistakes and therefore reduces (extra) costs. In addition, your organisation and the world around you are constantly changing. New developments are succeeding each other rapidly, as well within the framework of legislation and regulations as within the area of technology.

It is therefore a good strategy to regularly send your employees (operational level as well as managerial level) on training courses to refresh existing knowledge and to learn new knowledge. Your organisation will benefit of this approach when this new knowledge can be applied in practice straight away.

By investing in your employees through training and education, you increase their loyalty to your organisation and strengthen your market position. And that is a welcome bonus in a tight labour market.

In addition to train existing employees, it can also be a strategy to recruit less experienced employees and place them directly on a training program. This to provide them with theoretical and practical tools to prepare them for their new role in your organisation.

 

You should not forget the top of your organisation

Good example makes good follow. The top and/or (senior) management of your organisation should set a good example and should therefore also be updated on new developments or, for example, their role in the crisis plan of your organisation.

We provide interactive training courses and workshops for management and board members in order to raise awareness amongst this target group and to provide them with better insight into the relevant issues at (senior) management level.

Our added value

  1. To the point and pragmatic
  2. Practice-oriented
  3. Interactive and dynamic
  4. Up to date
  5. Customised where required
  6. Designed for employees, management and board members

-Triple A Security-

Our offer

Click on the link of the training or workshop for more information about the training or workshop. 

Is your training need not covered in our list? Please contact us to align upon the possibilities of delivering this additional training to you. Just inform us upon your needs for training and we will check if and how we can fulfill these. Looking forward to meet you! 

Knowledge area Training Open In-company / Tailor made
Information Security ISO 27001 introduction – 1 day Euro 699 See table costs customized
Information Security ISO 27001 Implementation – 2 days Euro 1299 See table costs customized
Information Security ISO 27001 Internal Audit – 2 days Euro 1299 See table costs customized
Information Security ISO 27001 Lead Implementor – 5 days Euro 2799 See table costs customized
Information Security ISO 27001 Annex A controls – 1 day Euro 699 See table costs customized
Business Continuity ISO 22301 introduction – 1 day Euro 699 See table costs customized
Business Continuity ISO 22301 Implementation – 2 days Euro 1299 See table costs customized
Business Continuity ISO 22301 Internal Audit – 2 days Euro 1299 See table costs customized
Business Continuity ISO 22301 Lead Implementor – 5 days Euro 2799 See table costs customized
Crisis Management Test and practice your crisis plan and train your crisis organisation Not possible See table costs customized
Crisis Management Crisis management en crisis communication Euro 499 See table costs customized
Awareness Awareness workshop (target audience and topic to be determined Not possible See table costs customized
Risk Management Risik management according to ISO 31000 – 1 day Euro 699 See table costs customized

Customized / in-company training.
More affordable than you might think

In addition to open training courses, we also offer customised in-company training courses. Based upon your needs, the goal and scope of the training, we will create the tailor made content. It is even possible to incorporate your own business cases, methodologies and templates into the training.

Because we save costs on meeting room rental and lunches, the fee per participant of an in-company training is often lower compared to the fee per participant of an open training. Do you know that an in-company training is worthwhile from as few as 5 participants? (note: these do not have to be from the same organisation). 

 

Duration of training
(see table above)

 up to 5 participants 6-9 participants 10-12 participant
Day section (2 or 4 hours) 1200 euro 1600 euro 1800 euro
1 day training 2000 euro 2500 euro 3000 euro
2 day training 3500 euro 4500 euro 5000 euro
5 day training 8000 euro 9500 euro 12000 euro

All prices excluding VAT and excluding travel and accommodation costs (if applicable) excluding preparation time (€450 per day-part excluding VAT, if applicable)

Calculation example

You would like to plan a 2-day in-company tailor-made training for 7 people. Based upon your wished and requirements we determine we need 1 preparation day to adapt the training material to your wishes and, for example, to include your processes and methods into the training material.

Total costs (see also table): 4500 euro + 2 x 450 euro (2 half days preparation) = total 5400 euro excl. VAT. This makes 771 euro excl. VAT per participant for a 2-day tailor-made training course (this is a 40% discount compared to the cost of an open training course).

If there are 10 participants, the price even drops to 590 euro excl. VAT per participant (this is a 55% discount compared to the cost of an open training course !).

Interested if an in-company training can be of added value for your organisation? Please contact us for aligning upon the possibilities!

Contact us

Education

Information security

ISO 27001 Introduction

Information and its security are of crucial importance to any organisation. This one-day training ‘ISO 27001 introduction’, provided by Triple A Security, offers you a first glance of the structure of the international recognised standard for information security, the ISO 27001.

After completing this training course, you will have a good understanding of the structure and functioning of the standard and you will be able to make a start with carrying out a GAP assessment in relation to an effective “Information Security Management System (ISMS)”.

During the training, theory is alternated with practical assignments, exercises and workshops

Entry level / preferred experience

There are no specific requirements for the participants’ prior knowledge.

Tip: read the ISO 27001 standard in advance. During the training we provide a loan copy of the standard.

Training course content

  • Introduction to information security: basics, myths and practice.
  • Understanding the purpose and requirements of ISO 27001 and ISO 27002.
  • Introduction to the standard and building an effective “Information Security Management System (ISMS).”
  • Design and implementation of a management system: policy, scope, risk assessment, risk management, applicability and KPI’s, Preconditions, pitfalls and success factors of successfully implementing an ISMS.
  • Understanding the audit and certification process (how does an external auditor assess your ISMS during a certification audit?).

Who should attend?

The training is suitable for those who wants to ( in a global way) get acquainted with the ISO 27001 standard, its structure and the interpretation of this standard. The training is also interesting for employees who indirectly deal with information security in their daily job. For example: line management, IT managers, system administrators, (internal) auditors.

Participants receive a certificate of participation at the end of the training.

Duration
1 day (from 09:00-16:30)

Dates en location

Language:

The training material is in English
The training can be provided in Dutch or English.

Youw trainer
Henny Raadschilders, CBCP, CISSP, CRisC, CISA, CISM, CCSP

Your investment

This one-day training course only requires an investment of €699,- excluding VAT. This price includes lunch, refreshments and course material.

Please note! Other attractive rates apply for in-company training. Ask for the possibilities and conditions.

 

Terms and conditions

  1. Our terms and condition apply to all our training courses.
  2. The training will proceed as planned when the minimum number of 5 participants is met
  3. If the minimum number of participants have not been met, the training will be postponed to another date.
  4. The maximum number of participants is set to 10 to ensure optimal interaction during the training.
ISO 27001 Implementation

Information and its security is crucial for every organisation. This two-day training ‘ISO 27001 implementation’, provided by Triple A Security, offers a method and practical tools for the set-up, implementation and maintenance of an effective Information Security Management System (an ISMS) based on the international recognised ISO 27001 standard.

After completing this course, you will have a proper understanding of how to design, implement, maintain,  monitor and report out upon the performance of your Information Security Management System (ISMS). With as goal to protect your information assets adequately.

During the training, theory is alternated with practical assignments, exercises and workshops. 

Entry level / preferred experience

This training is suitable for participants with prior knowledge of the ISO 27001 standard. Participants are expected to be familiar with the ISO 27001 standard and have experience within one or more information security areas.

This course is particularly suitable for participants who need to implement and maintain the ISO 27001 standard / ISMS within their organisation or for participants whose organisation wishes to obtain an ISO 27001 certificate.

During the training we provide a loan copy of the ISO 27001. 

  • Training course content
  • Purpose and necessity of information security.
  • Determining the scope for your Information Security Management System.
  • Identifying information assets.
  • Determining the value and classification of your information assets.
  • Conduct an ISO 27001 baseline and GAP assessment
  • Risk assessment: identifying the information security risks and their impact on your organisation.
  • Risk management: identifying your risk strategy, objectives and risk reduction measures.
  • Establishing project planning for the implementation of the ISO 27001 standard and management  system.
  • Drafting policies and guidelines regarding working methods and procedures.
  • Determining mandatory ISO27001 documents.
  • Monitoring and reporting on information security (e.g. security KPIs)
  • information security in contracts and SLAs with third parties.
  • The ISO 27001 certification process (how does an auditor assess your ISMS?).

 Who should attend?

The training is suitable for all employees who are responsible for and/or involved in the implementation and/or management of the information security management system (ISMS) within their organisation. Examples of these roles:

  • Manager Security.
  • Security Employees.
  • Security Officers.
  • Risk and Compliance Officers
  • CISO’s.
  • IT Managers.
  • IT Administrators.
  • Information Security Consultants.
  • Quality assurance staff.
  • Assessors and Auditors.

Participants receive a certificate of participation at the end of the training.

Duration

2 days (from 09:00-16:30)

Dates and venues

Language:

The training material is in English

The training can be provided in Dutch or English.

Your trainer

Henny Raadschilders, CBCP, CISSP, CRisC, CISA, CISM, CCSP

Your investment

Your investment is only € 1299,- excluding VAT. This price includes lunch, refreshments and course material.

Please note! Other attractive rates apply for in-company training. Ask for the possibilities and conditions.

Terms and conditions

  1. Our general terms and conditions apply to all our training courses.
  2. The training will proceed as planned when the minimum number of 5 participants is met
  3. If the minimum number of participants have not been met, the training will be postponed to another date.
  4. The maximum number of participants is set to 10 to ensure optimal interaction during the training.
    ISO 27001 Internal Auditor

    Information security is crucial for every organisation. This two-day training ‘Internal Auditor: ISO 27001’ provides a basis for all aspects of auditing the information security management system (ISMS) based on the ISO27001 standard. Participants are guided step-by-step in preparing, performing, documenting and evaluating an internal audit of an ISO management system. During the training, theory is alternated with practical assignments, exercises and workshops.

    After completing this training, you will be able to independently set up, carry out and evaluate an audit program. Based on practical assignments, you will be able to assess the effectiveness of the information security management system as implemented by your organisation.

    Entry level / preferred experience

    This training is suitable for participants with prior knowledge of the ISO 27001 standard.
    Knowledge of the discipline ‘control and auditing’ is not required. 

    During the training you receive a loan copy of the ISO 27001 and ISO 19011 standard

    Training course content

    • Understanding the application of the ISO 27001 standard.
    • Auditing a management system in accordance with the ISO 19011.
    • Definition of audits and the auditor’s tasks.
    • Preparing for an audit and drafting an audit plan.
    • Skills to review and determine the effectiveness and compliance of the ISMS.
    • Investigation, audit and interview techniques and methods.
    • Evaluating and reporting findings.
    • Follow-up of learning and improvement points. 

    Who should attend?

    The training is suitable for all employees who need to evaluate and/or audit the information security management system within their organisation. Examples of roles:

    • Managers who coordinate audit activities.
    • Staff appointed to perform an assessment / audit of an ISMS.
    • Auditors who want to update their knowledge (e.g. CISA, CISSP).
    • Compliance Officers.
    • Contract and SLA managers.

    Participants receive a certificate of participation at the end of the training.

    Duration

    2 days (from 09:00-16:30)

    Dates and venues

    Language:

    The training material is in English
    The training can be provided in Dutch or English.

    Your trainer

    Henny Raadschilders, CBCP, CISSP, CRisC, CISA, CISM, CCSP

     Your investment

    Your investment for this 2-day training course is € 1299,- excluding VAT. This price includes lunch, refreshments and course material.

    Please note! Other attractive rates apply for in-company training. Ask for the possibilities and conditions.

    Terms and conditions

    1. Our general terms and conditions apply to all our training courses.
    2. The training will proceed as planned when the minimum number of 5 participants is met
    3. If the minimum number of participants have not been met, the training will be postponed to another date.
    4. The maximum number of participants is set to 10 to ensure optimal interaction during the training.
      ISO 27001 Annex A Controls

      Een belangrijk onderdeel van de ISO 27001 norm is het selecteren van risico reducerende maatregelen. Deze maatregelen kunt u selecteren uit bijlage A van de ISO 27001 norm.

      In deze training doorlopen we alle Bijlage A maatregelen en bespreken wat er komt kijken bij het effectief implementeren van de maatregelen. Ook kijken we naar de laatste ontwikkelingen binnen het vakgebied van de maatregel. Na het afronden van deze training heeft u meer inzicht in de lijst van maatregelen en hoe deze te implementeren.

      Instroomniveau / gewenste ervaring
      Enige kennis van bedrijfsprocessen en IT termen en definities is een pre, maar geen vereiste.

      Tip: lees vooraf de ISO 27001 norm  en dan met name bijlage A nog eens door. Tijdens de training stellen wij een leenkopie van de norm ter beschikking.

      Inhoud van de training

      • De relatie tussen het ISMS en de maatregelen genoemd in bijlage A.
      • Toelichting op de bijlage A maatregelen. Per maatregel bespreken we:
        • Wat houdt de maatregel precies in?
        • Wat komt er allemaal kijken bij het implementeren van de betreffende maateregel?
        • Laatste ontwikkelingen m.b.t. deze maatregel.
        • Hoe de implementatie aantoonbaar te maken?
        • Potentiele KCI (Key Control Indicatoren).

      Voor wie is deze training bestemd?
      De training is geschikt voor iedereen die (globaal) kennis wil maken met de ISO 27001 bijlage A maatregelen en de aantoonbaar effectieve implementatie en onderhoud van de maatregelen. De training is ook interessant voor medewerkers die zijdelings te maken krijgen met de implementatie van (een deel van) de maatregelen of als  eigenaar zijn aangewezen binnen hun organisatie van een of meerdere maatregelen

      Bijvoorbeeld:

      • Eigenaren vaSn bedrijfsmiddelen
      • IT beheerders
      • Risico eigenaren
      • Security medewerkers
      • Assessors
      • Auditors

      Deelnemers ontvangen na afloop een certificaat van deelname.

      Duur
      1 dag (van 09:00-16:30)

      Data en locaties

      Taal:
      Het lesmateriaal is standaard in het Engels

      De training kan zowel in het Nederlands als Engels worden gegeven.

      Uw trainer
      Henny Raadschilders, CBCP, CISSP, CRisC, CISA, CISM, CCSP

      Uw investering

      Deze eendaagse training vergt slechts  een investering van €699,- exclusief btw. Deze prijs is inclusief lunch en cursusmateriaal.

      Let op! Voor in-company training gelden andere aantrekkelijke tarieven. Vraag naar de mogelijkheden en randvoorwaarden.

      Voorwaarden

      1. Onze algemene voorwaardenzijn van toepassing op al onze trainingen.
      1. De training gaat door bij minimaal 5 deelnemers
      2. Indien het minimaal aantal deelnemers niet wordt gehaald wordt de training verzet naar een andere datum.

      Maximaal 10 deelnemers zodat een optimale interactie geborgd kan worden.

      ISO 27001 Lead Implementer

      This 5-day course combines the best of all ISO 27001 courses! During this 5-day course, we will dive deeper into the role of the project/program manager leading an information security implementation program. Besides all the aspects of setting up, implementing and maintaining an effective information security program meetring ISO 27001 requirements, we also discuss the tasks and responsibilities of the project/program manager. 

      After completing this training, you will have a thorough understanding of the design and operation of the ISO 27001 standard and you will be able to independently set up and run a program to implement and maintain an effective Information Security Management System (ISMS).

      This training will be concluded with a 2-hour test/examination during the morning of the last training day.

      Entry level / preferred experience

      No prior knowledge is required for this training.

      During the training we provide a loan copy of the ISO 27001.

       Training course content

      • Purpose and necessity of information security.
      • Determining the scope for your information security management system.
      • Identifying information assets.
      • Determining the value and classification of your information assets.
      • The C.I.A. classification
      • Risk assessment: determining the risks with regard to information security and the impact of these risks on your organisation.
      • Establishing, maintaining and implementing a risk management process including templates.
      • Risk management: identifying your risk strategy, objectives and risk-reducing measures.
      • Determining security measures which effectively reduce the defined risks.
      • Setting up a project planning for the implementation of the ISO 27001 standard and the management system (ISMS).
      • Preparation of a business case.
      • Establishing policies and guidelines regarding working methods and procedures.
      • Determine mandatory ISO27001 documents.
      • Testing and verifying the ISO 27001 Annex A measurements.
      • Monitoring and reporting on information security (e.g. security KPI’s)
      • Preparing and executing a management review.
      • Ensuring information security in contracts and SLAs with third parties.
      • The ISO 27001 certification process (how does an auditor perceive your ISMS?).
      • Project / program manager skills 

      Who should attend?

      The training is suitable for those who are responsible for and/or involved in the implementation and/or management of the Information Security Management System (ISMS) within their organisation. Examples of these roles:

      • Security Manager.
      • Security Employees.
      • Security Officers.
      • CISOs.
      • Risk Managers.
      • IT Managers.
      • IT Administrators.
      • Information Security Consultants.
      • Project managers
      • Quality assurance staff.
      • Assessors and Auditors.

      Participants receive a certificate of participation at the end of the training.

      Duration

      5 days (from 09:00-16:30, last day until 12:00 depending on the progress of the training during the previous days)

      Dates and venues

      Language:

      The training material: English
      The training can be provided in Dutch or English.

      Your trainer

      Henny Raadschilders, CBCP, CISSP, CRisC, CISA, CISM, CCSP

      Your investment

      Your investment is only € 2799,- excluding VAT. This price includes lunch, refreshments and course material. 

      Please note! Other attractive rates apply for in-company training. Ask for the possibilities and conditions.

       Terms and conditions

      1. Our general terms and conditions apply to all our training courses.
      2. The training will proceed as planned when the minimum number of 5 participants is met
      3. If the minimum number of participants have not been met, the training will be postponed to another date.
      4. The maximum number of participants is set to 10 to ensure optimal interaction during the training

      Business Continuity

      ISO 22301 Introduction

      Implementing a Business Continuity Management System (BCMS) can become a complex and challenging job. This one-day training ‘ISO 22301 introduction’ provided by Triple A Security provides you with a first insight into the aspects of the international recognised standard for business continuity management, the ISO 22301.

      After completing this training course, you will have a good understanding of the design and operation of the ISO 22301 standard. You can make a start with the first steps for implementing an effective “Business Continuity Management System (BCMS)”.

      Entry level / preferred experience

      There are no specific requirements regarding the participants’ prior knowledge.

      Tip: read the ISO 22301 standard in advance. We will provide a loan copy of the standard during the training.

      Training course content

      • Introduction to continuity and crisis management: basics, myths and practice.
      • Understanding the purpose and requirements of the ISO 22301.
      • Introduction to the standard and setup of an effective Business Continuity Management System (BCMS).
      • High level explanation of the design and phases of the management system: policy, scope, business impact analysis, risk assessment, risk management, applicability, testing and exercising your plans.
      • Preconditions, pitfalls and success factors for successfully implementing a BCMS.
      • Insight into the audit and certification procedure (how does an external auditor assess your BCMS during a certification audit?).

      Who should attend?

      This training is suitable for those who wants to become familiar with Business Continuity Management and the ISO 22301 standard, its  structure and the interpretation of this standard. This training is also interesting for employees who indirectly deal with business continuity / disaster recovery / crisis management aspects in their daily job. For example:

      • Middle and Senior Management
      • Crisis Managers
      • Members of the Crisis Management Team (CMT)
      • Product and service owners
      • IT managers
      • Operational management
      • NOC / SOC staff
      • Project managers
      • System administrators
      • (Internal) auditors.

      Participants receive a certificate of participation at the end of the training.

      Duration

      1 day (from 09:00-16:30)

      Dates and venues

      Language:

      The training material: English
      The training can be provided in Dutch or English.

      Your trainer

      Henny Raadschilders, CBCP, CISSP, CRisC, CISA, CISM, CCSP

      Your investment

      This one-day training course only requires an investment of €699,- excluding VAT. This price includes lunch, refreshments and course material.

      Please note! Other attractive rates apply for in-company training. Ask for the possibilities and conditions.

      Terms and conditions

      1. Our general terms and conditions apply to all our training courses.
      2. The training will proceed as planned when the minimum number of 5 participants is met
      3. If the minimum number of participants have not been met, the training will be postponed to another date.
      4. The maximum number of participants is set to 10 to ensure optimal interaction during the training
      ISO 22301 Implementation

      This training is more advanced and in-depth than the ISO 22301 introduction training. It provides practical guidance on how to implement an effective business continuity/disaster recovery program in accordance with the ISO 22301 standard. This two-day training ‘ISO 22301 implementation’ provided by Triple A Security provides insight into the aspects, structure,  implementation and maintenance of the internationally recognised standard for business continuity management, the ISO 22301.

      After completing this training, you will have a clear understanding of the design and operation of the ISO22301 standard and you can start immediately with implementing an effective “Business Continuity Management System (BCMS)”.

      Entry level / preferred experience

      This training course is suitable for attendees who have prior knowledge of the ISO 22301 standard. Participants are expected to be familiar with the ISO 22301 standard and have some work experience within one of the continuity management / crisis management disciplines.

      This training course is particularly suitable for participants who need to implement the ISO 22301 standard, a business continuity / crisis management program or for participants whose organisation wishes to obtain an ISO 22301 certificate.

      During the training, we will provide a loan copy of the ISO 22301.

      Training course content

      • The benefits and necessity of continuity and crisis management.
      • Determining the scope for your continuity management system / BCMS.
      • Identifying your “mission critical” assets with help of a Business Impact Analysis (BIA).
      • Risk assessment: determining the continuity risks and their impact on your organisation.
      • Risk management: identifying your risk strategy, objectives and risk reduction measures.
      • Preparation of a project plan for the implementation of the ISO 22301 standard and its management system.
      • Establishing policies and guidelines regarding working methods and procedures.
      • Determining mandatory ISO22301 documents.
      • Drafting and maintaining a crisis management organisation
      • Drafting and maintaining business continuity and disaster recovery plans.
      • Preparation, execution and evaluation of tests and exercises of your crisis organisation and your emergency plans.
      • Monitoring and reporting on status and progress of your continuity management system (e.g. BCM KPIs)
      • Securing business and service continuity in contracts and SLAs with third parties.
      • The ISO 22301 certification process (how does an auditor assess your ISMS?).

      Who is this training for?

      The training is suitable for all employees who are responsible for and/or involved in the implementation and/or management of the continuity management program (BCMS) or the contingency plan within their organisation. Examples of these roles:

      • Business Continuity Manager
      • Disaster Recovery Manager
      • Crisis Manager
      • Members of your Crisis Management Team (CMT)
      • Security manager.
      • Security staff
      • Security Officers.
      • CISOs.
      • Risk Managers.
      • Product or service owners.
      • Manager or employees Operations
      • Manager or employees HR
      • Manager or employees Facilities
      • Manager or associates IT.
      • IT Administrators (e.g. Database Administrators)
      • Business Continuity Management Consultants.
      • Quality staff
      • Assessors and Auditors

      Participants receive a certificate of participation at the end of the training.

      Duration

      2 days (from 09:00-16:30)

      Dates and venues

      Language:

      The training material: English
      The training can be provided in Dutch or English.

      Your trainer

      Henny Raadschilders, CBCP, CISSP, CRisC, CISA, CISM, CCSP

      Your investment

      Your investment for this 2-day training course is € 1299,- excluding VAT. This price includes lunch, refreshments and course material.

      Please note! Other attractive rates apply for in-company training. Ask for the possibilities and conditions.

      Terms and conditions

      1. Our general terms and conditions apply to all our training courses.
      2. The training will proceed as planned when the minimum number of 5 participants is met
      3. If the minimum number of participants have not been met, the training will be postponed to another date.
      4. The maximum number of participants is set to 10 to ensure optimal interaction during the training.
      ISO 22301 Internal Auditor

      This two-day training course ‘Internal Auditor: ISO 22301’ provides a basis for all aspects of assessing the effective operation of the Business Continuity Management System (BCMS) based on the ISO22301 standard. Participants are guided step-by-step on how to prepare, conduct, document and evaluate an (internal) audit upon the BCMS.

      During the training, theory is alternated with practical assignments, exercises and workshops. After completing this training, you are able to set up, execute and evaluate an audit program to assess the business continuity/disaster recovery program. The practical assignments will enable you to assess the business value and effectiveness of the Business Continuity Management System introduced by the organisation in scope. 

      Entry level / preferred experience

      This training is suitable for participants with prior knowledge of the ISO 22301 standard.

      Knowledge of the discipline ‘control and auditing’ is not required.

      During the training you receive a loan copy of the ISO 22301 and ISO 19011 standard

      Tip: read the ISO 22301 standard in advance. 

      Training course content

      • Understanding the application of the ISO 22301 and ISO 19011 standard.
      • Definition of audits and the auditor’s tasks.
      • Preparing for an audit and drafting an audit plan.
      • Skills to review and establish the effectiveness and compliance of the BCMS.
      • Investigation, audit and interview techniques and methods.
      • Evaluating and reporting findings.
      • Follow-up of learning and improvement points.

      Who should attend?

      This training is particularly suitable for participants who need to evaluate the business continuity management system and all underlying documentation and plans within their organisation, or those of third parties,  upon effectiveness and/or compliance. Examples of functions for which this training may be of added value:

      • Business Continuity Managers
      • Developers of contingency plans
      • Managers who coordinate audit activities
      • Internal / external auditors
      • Quality managers
      • Staff appointed to perform an audit on a BCMS.
      • Auditors who want to update their knowledge (e.g. CISA).
      • Compliance Officers.
      • Contract and SLA managers.

      Participants receive a certificate of participation at the end of the training.

      Duration

      2 days (from 09:00-16:30)

      Dates and venues

      Language:

      The training material: English
      The training can be provided in Dutch or English.

      Your trainer

      Henny Raadschilders, CBCP, CISSP, CRisC, CISA, CISM, CCSP

      Your investment

      Your investment for this 2-day training course is € 1299,- excluding VAT. This price includes lunch, refreshments and course material.

      Please note! Other attractive rates apply for in-company training. Ask for the possibilities and conditions.

      Terms and conditions

      1. Our general terms and conditions apply to all our training courses.
      2. The training will proceed as planned when the minimum number of 5 participants is met
      3. If the minimum number of participants have not been met, the training will be postponed to another date.
      4. The maximum number of participants is set to 10 to ensure optimal interaction during the training.
      ISO 22301 Lead Implementer

      This 5-day course combines the best of all ISO 22301 courses! During this 5-day course, we will dive deeper into the role of project/program manager of a business continuity / disaster recovery program. Besides all the aspects of setting up, implementing and maintaining an effective business continuity program, we also discuss the tasks and responsibilities of the project/program manager.

      During the 5 days, you will learn how to set up a solid program of which the final results will meet the ISO 22301 standard requirements.

      After completing this training, you will have a thorough understanding of the design and operation of the ISO 22301 standard and you will be able to independently set up and run a program to implement and maintain an effective “Business Continuity Management System (BCMS) “.

      This training will be concluded with a 2-hour test/examination during the morning of the last training day.

      Entry level / preferred experience

      No prior knowledge is required for this training.

      During the training we provide a loan copy of the ISO 22301.

      Training course content

      • The benefit and necessity of continuity management.
      • Defining the scope for your continuity management system / BCMS.
      • Identifying your “mission critical” assets by performing a Business Impact Analysis (BIA).
      • Drafting a BIA template and conducting an effective BIA workshop
      • Risk assessment: determining the continuity risks and their impact on your organisation.
      • Drafting / executing a Risk Assessment Process and template
      • Leading an effective Risk Assessment workshop
      • Risk management: identifying your risk strategy, objectives and risk reduction measures including cost benefit analysis.
      • Set up a project planning to implement the ISO 22301 standard and the management system.
      • Establishing policies and guidelines regarding working methods and procedures.
      • Determining mandatory ISO22301 documents.
      • Drafting and maintaining a crisis management organisation
      • Drafting and maintain business continuity and disaster recovery plans.
      • Preparing, executing and evaluating tests and exercises of the crisis organisation and contingency plans.
      • Monitor and report on status and progress of your continuity management system (e.g. KPIs)
      • Securing business and service continuity in contracts and SLAs with third parties.
      • The ISO 22301 certification process (how does an auditor assess your BCMS?).
      • Project / program manager skills

      Who is this training for?

      The training is suitable for those who are responsible for and/or involved at the implementation and/or management of the Business Continuity Management Program (BCMP) or the contingency plan within their organisation.

      Examples of these roles:

      • Business continuity manager
      • Disaster Recovery Manager
      • Risk Managers
      • Product or service owners
      • Project or program managers in charge of implementing a business continuity program.
      • Business Continuity Management consultants.
      • Anyone wishing to combine all ISO22301 training courses into one training course.

      Participants receive a certificate of participation at the end of the training.

      Duration

      5 days (from 09:00-16:30, last day until 12:00 depending on the progress of the training during the previous days)

      Dates and venues

      Language:

      The training material: English
      The training can be provided in Dutch or English.

      Your trainer

      Henny Raadschilders, CBCP, CISSP, CRisC, CISA, CISM, CCSP

      Your investment

      Your investment is only € 2799,- excluding VAT. This price includes lunch, refreshments and course materials.

      Please note! Other attractive rates apply for in-company training. Ask for the possibilities and conditions.

      Terms and conditions

      1. Our general terms and conditions apply to all our training courses.
      2. The training will proceed as planned when the minimum number of 5 participants is met
      3. If the minimum number of participants have not been met, the training will be postponed to another date.
      4. The maximum number of participants is set to 10 to ensure optimal interaction during the training

      Trainings & workshops

      Test and practice your contingency plan and train your crisis organisation

      This tailor-made workshop aims to test/exercise your current emergency plan and check the ability of your crisis organisation in responding effectively upon an emergency, using your organization’s emergency / crisis plan.

      After analysing your companies emergency plan and crisis organisation, we prepare a scenario, including sub-scenarios, which we present to your crisis response organisation during the workshop. Your crisis response organisation should manage this scenario during the workshop based upon the companies crisis management plan and crisis communication plan.

      During the workshop, specific participants from your crisis management organisation will receive additional information or assignments (sub-scenarios) which may influence the course of the event and thus the respond strategy of your crisis management team. During this workshop, a crisis respond will be simulated as realistic as possible in order to test the strength of your contingency plan and the capabilities of your crisis management organisation.

      With support of observers and video recording we are able to evaluate the behavior of your crisis management organisation. During the workshop, everyone can press the “pause” button to discuss the current approach, the attention points and the way forward. By this we are creating a safe environment for the participants and a fast learning and improvement loop.

      After the workshop we evaluate with all participants the way they act during the workshop. All learning moments and identified improvement points are documented in a structured report.

      This workshop can be combined with an awareness training prior to the workshop.

      Workshop tasks and content

      • Intake meeting to align upon goal and set-up of the workshop
        • Option 1: Table Top eXercise (TTX)
        • Option 2: Crisis Simulation (CS)
      • General: the workshop can be clearly communicated in advanced to the participants (prepared attendees) or not  (unprepared attendees)
      • Potential objectives (or combination):
        • Assessing the added value and content of available documentation and information sources
        • Assessing the interaction between members of a disaster team and between all the teams
        • Assessing decision-making process
        • Assessing the resilience and creativity of the crisis management team
        • Checking weaknesses / pitfalls  in your crisis plan
        • Checking the crisis communication plan
      • Analysis of your emergency plan and crisis management organisation
      • Preparation of overall scenario and (sub)scenario’s
        • Result : exercise / test scenario
      • Tuning of scenario with contact person
      • Facilitating workshop evaluation (evaluation with coffee/tea and a snack / cake).
      • Using an evaluation form that participants must complete and return within 2 weeks after the end of the workshop.
      • Documenting and presenting possible improvements resulting from the workshop.

        Optional: (awareness) training prior to crisis exercise

        • A training course of 2 to 4 hours prior to the workshop will be included in the quotation for the workshop in accordance with our in-company training price table.
        • Execution/facilitation of crisis exercise workshop
          • Duration of workshop: max 2 hours.

        Who should attend this workshop?

        For every organisation who would like to verify the usability of their own emergency plan(s) and the capabilities of their crisis organisation. Potential participants of this workshop are mainly members of the crisis management team (CMT) or persons who have the responsibility to manage, co-ordinate and/or combat the crisis.

        Tip: Make photos / videos during this workshop which can be used as PR material or to create BCM awareness within your own organisation (e.g. by using them as input for an article about the crisis workshop on your intranet page).

        Duration

        Half a day (morning or afternoon)

        Experience shows that participants are under considerable pressure during such crisis exercise. We therefore advise to plan such exercise towards the end of the working week (Thursday / Friday).

        Dates and locations

        To be determined.

        Language:

        The workshop can be provided in Dutch or English.

        Your workshop facilitator

        Henny Raadschilders, CBCP, CISSP, CRisC, CISA, CISM, CSSP

        Your investment

        This half-day workshop, including preparation, implementation and report out requires an investment of € 4499,- excluding VAT.  Excluding any additional costs for an (awareness) training (optional), other specific wishes or demands from your side. Excluding travel and/or accommodation costs when applicable.

        Terms and conditions

        1. Our general terms and conditions apply to all our training courses.
        2. After we have aligned upon your wishes and requirements with respect of the set-up of the workshop we will provide you a structured (financial) proposal of the workshop for final approval.
        Crisis management and crisis communication

        During a real calamity, it is important to effectively manage the crisis and to inform stakeholders in a timely manner about the calamity, the impact of the crisis for these stakeholders and the progress of your organization’s response to the crisis.

        During this training you will learn what best practices are when designing a good crisis management team, defining their tasks and responsibilities. Managing internal and external communication and the decision-making process will also be covered. In addition, we will look at the various phases during a crisis and the communication strategy required during these different phases.

        Training course content

        • What exactly is a crisis or calamity?
        • Defining and designing your crisis management team.
        • Roles, tasks, responsibilities and authority during a crisis
        • Information management and decision-making process during a crisis
        • Crisis communication – why does it matter?
        • Phases during a crisis and your crisis communication strategy

        Who should attend?

        For those leading a crisis management team or is member of the crisis management team or another team responsible with tasks during the responds upon a crisis. Those responsible for communicating and interacting with internal and/or external stakeholders during a crisis. 

        Duration

        One part of a day (morning (09:00-12:30) or afternoon (13:00-16:30))

        Dates and locations

        To be determined.

        Language:

        Training material: English
        The workshop can be provided in Dutch or English.

        Your workshop facilitator

        Henny Raadschilders, CBCP, CISSP, CRisC, CISA, CISM, CCSP

        Your investment

        This training requires an investment of only € 499, – excluding VAT.  This includes training material , refreshments and a light lunch (sandwiches) at the end (morning training) or the beginning (afternoon training) of the training.

        Please note! Other attractive rates apply for in-company training. Ask for the possibilities and conditions.

        Terms and conditions

        1. Our general terms and conditions apply to all our training courses.
        2. The training will proceed as planned when the minimum number of 5 participants is met
        3. If the minimum number of participants have not been met, the training will be postponed to another date.
        4. The maximum number of participants is set to 10 to ensure optimal interaction during the training
        Risk Management according the ISO 31000 standard

        Your company and the market in which you find yourself are constantly changing. Risk management therefore looks ahead to potential risks that may come your way and could become an obstacle for achieving your business objectives. By taking effective control measures, you can prevent unnecessary damage and costs without compromising your opportunities. At the end risk management contributes to the success and the future development of your company.

        A solid risk policy encourages your employeesd to think and act “risk based”, enforces conscious considerations and decisions, and acting upon them. In addition, the implementation of a solid risk policy may be a contractual or even legal obligation for your company.

        This one-day training ‘ISO 31000 risk management’ provided by Triple A Security offers a basis for all aspects of setting up, implementing and maintaining an effective risk management process. Participants are guided step by step in preparing and facilitating an effective risk assessment workshop and documenting and reporting upon the results of the workshop towards stakeholders. In the training we will support the theory with practical assignments.

        After completing this training, you will be able to set up, execute, maintain and evaluate your risk management process.

        Entry level / required experience

        No basic level is required.

        During the training you will receive a loan copy of the ISO 31000 standard

        Training course content

        • What are threats, vulnerabilities and risks and how are they related?
        • Deepdive into Risk Appetite, Risk Tolerance and Risk Acceptance
        • The risk management process according to ISO 31000
        • All steps of an effective risk management process.
        • The risk management process in relation to the ISO standards, your projects and your operational business processes
        • Preparing and facilitating an effective risk assessment workshop
        • Reporting risks to management and other stakeholders
        • Defining and reporting upon Key Risk Indicators (KRIs)
        • Determine risk mitigation measures and their business case.

        Who should attend?

        This training course is suitable for participants who are responsible for the risk management process within their organisation and/or are involved in the analysis and evaluation of risks. Examples of roles:

        • Security Manager
        • Security Staff
        • Business continuity manager
        • Business continuity management staff
        • Risk Officers
        • Service and product owners
        • Process owners
        • Project managers
        • Operational Managers
        • Compliance Officers.
        • Contract and SLA managers. 

        Participants will receive a certificate of participation at the end of the training.

        Duration

        1 day (from 09:00-16:30)

         Dates and venues

        Language:

        The training material: English
        The training can be provided in Dutch or English.

        Your trainer

        Henny Raadschilders, CBCP, CISSP, CRisC, CISA, CISM, CCS.

        Your investment

        Your investment for this 1-day training course is € 699,- excluding VAT. This price includes lunch, refreshments and course material.

         Please note! Other attractive rates apply for in-company training. Ask for the possibilities and conditions.

        Terms and conditions

        1. Our general terms and conditions apply to all our training courses.
        2. The training will proceed as planned when the minimum number of 5 participants is met
        3. If the minimum number of participants have not been met, the training will be postponed to another date.
        4. The maximum number of participants is set to 10 to ensure optimal interaction during the training
        Awareness workshop (customized)

        The success of your organisation stands or falls with the culture within your organisation, the familiarity of your key stakeholders with these policies and the adherence towards your policies.

        For years it has been said, the greatest risk to an organisation lies “between the chair and the desk”! However, we believe employees who are introduced to the “How” and “Why” of your policies can become a very effective first line of defense for your company’s assets.

        The goal of our awareness workshop is your employees to become aware of their current behavior and the consequences this behavior can have on your organisation, your business goals and future existens. But also the benefits if they behave according your policies!

        By increasing this awareness, employees will adjust their behavior and address other colleagues more often on their behavior. This creates a snowball effect and a shared view of what the do’s and don’ts are within your organisation. And that determines your organisational culture!

        During an intake interview, we would like to hear about your target group and the goal you wish to achieve with the support of the awareness workshop. This will be our starting point to prepare a tailor-made awareness workshop for the target audience.

        Workshop tasks and content

        Depending on your wishes and the target audience, we will determine the best alternatives, the channel, form and content for raising the awareness level of the defined target group. You will receive a description of our proposed approach and corresponding investment. Based on this you can make the best choice for your organisation by considering the operational impact and overall costs. 

        Who is this workshop for?

        For every organisation whishing to align the behavior of its employees, or a specific group of employees, towards the company’s policies. 

        Duration

        To be determined.

         Dates and locations

        To be determined.

        Language:

        The workshop can be provided in Dutch or English.

        Your workshop facilitator

        Henny Raadschilders, CBCP, CISSP, CRisC, CISA, CISM, CCSP

        Your investment

        The investment on your part depends entirely on the size of the target group, the desired approach, etc. Please contact us to discuss your wishes and our possibilities.

        Terms and conditions

        1. Our general terms and conditions apply.