The course is designed to give participants practical skills and theoretical knowledge in the area of penetration testing necessary to succeed in the CompTIA Pentest+ certification exam.

This two-day, official ISACA Advanced in AI Audit (AAIA) instructor-led course provides Information Systems auditors with the essential knowledge to assess the design, governance, and operational risks associated with AI systems. The training helps auditors understand the impact of AI on enterprise environments, systems, and human decision-making. Participants will explore AI risk frameworks, auditing tools, and techniques through practical exercises, real-world case studies, and collaborative discussions.

This two-day accelerated course provides a comprehensive foundation in AI-specific security management. The ISACA Advanced in AI Security Management (AAISM™) certification equips security leaders with the knowledge and capability to govern, secure, and manage enterprise AI systems. Learners gain a deep understanding of AI governance, AI risk management, and the technologies and controls that underpin secure and ethical AI operations.

IT infrastructure is more complex and dynamic than it’s ever been demanding comprehensive, up-to-date, and well-rehearsed security skills to match. Join this, fresh for 2023, hands-on 5-day course to push your infrastructure hacking to the next level and widen your career prospects. Get your hands dirty with our popular virtual labs and learn from experienced, practicing penetration testers with a legacy of training at Black Hat.

The future of secure software development depends on developers who understand how to design, build, and maintain secure applications. This intensive two-day course provides developers, architects, and tech leads with practical skills to identify and remediate vulnerabilities in their code. Through interactive labs and real-world scenarios, learners will explore modern application security practices and learn to apply threat modelling techniques using the STRIDE methodology.

Covering all 12 domains of critical cloud security knowledge, this CCSK+ v5 course covers the core concepts, best practices, and recommendations for securing an organization on the cloud regardless of the provider or platform, with hands-on labs. Learn and practice applying the knowledge from all 12 domains of the Cloud Security Alliance (CSA) Security Guidance v5.

ISACA’s Certified Cybersecurity Operations Analyst (CCOA™) certification equips learners with the technical skills to evaluate threats, identify vulnerabilities, and design countermeasures to protect digital ecosystems. As emerging technologies such as AI-enabled automation continue to evolve, the demand for skilled cyber analysts is critical to safeguarding organisations. This practical hands-on training develops the analytical and investigative expertise required to detect.

ISACA’s Cybersecurity Audit Certificate Program provides audit/assurance professionals with the knowledge needed to excel in cybersecurity audits. It provides security professionals with an understanding of the audit process, and IT risk professionals with an understanding of cyber-related risk and mitigating controls.

With the rapid adoption of cloud infrastructure and the prevalence of hybrid cloud environments among organisations, the need to address cloud misconfigurations has become paramount. This course offers a holistic approach to understanding and mitigating misconfigurations in AWS, Azure, and GCP. From building and migrating to managing and innovating in the cloud, organisations face increasing pressure to secure their cloud infrastructure effectively.

This four-day official ISACA course equips learners with the knowledge and practical skills needed to prepare for and pass the CRISC exam. CRISC is the only globally recognised certification focused on IT and enterprise risk management, enabling professionals to bridge the gap between risk, business goals, and technology. Participants will explore the four CRISC domains: governance, risk assessment, risk response and reporting, and technology and security.