Security Training

Your organisation’s reputation, customer trust and competitive advantage are at risk if you fail to provide staff with effective cyber-awareness and cyber-security training.

Our training courses are reviewed and certified by the Institute of Information Security Professionals (IISP) and we are a GCHQ Training Provider.

We also design bespoke courses that align with the ‘Skills Framework for Information Age’ (SFIA) that cover a variety of areas required for entrance into the NCSC Certified Professional Scheme (CCP).

Security Consultancy

Information Risk Management (IRM) training

IRM addresses the policies, procedures and technology adopted to reduce potential threats, vulnerabilities and consequences arising if data is not protected adequately.

We are able to develop and deliver bespoke courses to meet your organisation’s needs, addressing any existing gaps in IRM training.  Our trainers and consultants are CCP level and have extensive experience in delivering security training for the government and the commercial sector.

Technical Audit

Attending a C3IA IRM course will enable you to identify, assess and understand:

Your organisation’s critical assets

Where threats come from

Where you are vulnerable to common cyber-attack methods, their impact and associated risks

Coherence of policy, procedures, education, training and awareness within your organisation

Treatment of risk

Identification and implementation of appropriate and proportionate control measures

Ongoing assurance monitoring and maintenance

Get in touch today to discuss your requirements

Security awareness training

Our cyber-security awareness training is designed to address three main areas:

Meeting regulatory requirements such as Payment Card Industry Data Security Standard (PCI-DSS) and the EU’s General Data Protection Regulation (EU GDPR)

Weaknesses in your company’s IT security caused by letting staff use their own devices - known as Bring Your Own Devices (BYOD) - and the Internet of Things (IoT)

Continual changes in the types of threat, including social engineering attacks, spam and email phishing

The threat landscape is continually changing and security awareness is a perishable skill; measures your employees implement straight after training can be forgotten or plain overlooked in a few short months.

We can deliver tailored and bespoke security awareness training programmes to counter this and provide your staff with the information they need to help reduce the likelihood of a significant data breach or security incident now and on an ongoing basis.

internet Computer Data Digital Networking Web Concept

Cryptographic security training

C3IA is approved by GCHQ to provide Crypto Custodian training – these custodians are the professionals who manage an organisation’s use of encryption.

The course enables Crypto Custodians to understand their duties and the processes to be followed when handling HMG Cryptographic material.

It uses both the HMG Information Assurance Standard No 4 and the UK Key Production Authority (UKKPA) handbook as reference documentation to augment the required overview delivered by the course.

Additionally, delegates learn the process and procedures followed when ordering, receiving and issuing crypto items as well as the reporting of standard and extraordinary events and incidents.