PSDC – eArchiving training session (available on demand)
In today’s information society, the digitalisation of important documents has become a major factor to prevent their involuntary loss or destruction. However, the practice of converting and conserving these documents must not under any circumstances nullify their legal value. In Luxembourg, this legal value can be ensured by the usage of a provider that has been certified « Pretataire de Services de Dématérialisation ou de Conservation » by ILNAS. During this training cycle, itrust consulting offers explanations of the PSDC certification principles in order to give a more detailed overview of this new concept.
This training session is primarly aimed at organisations who wish to put in place a creation and archiving process for their documentation that will allow them to ensure the legal value of these documents.
Security awareness 4 your employees (available on demand)
Enhance security best practice in
your company (2,0 hours any language)
Practical advice to comply with GDPR – Data Privacy
Following the enactment on April 27, 2016 of the GDPR, the new Regulation (EU) 2016/679 of the European
Parliament and of the Council on the protection of individuals with regard to the processing of personal data, all
organizations processing data of EU citizens shall implement principles and protection measures.
- Everyone who wants to understand the content of the European Regulation within one day;
- Security officers;
- Personnel responsible for data protection.
No prior knowledge about the GDPR is required.
The training is available in Luxembourgish, French, English and German (support in French) at request.
The licence for the use of the GDPR templates in one language provided by itrust consulting is included in the registration fee per company.
Risk Manager certified for EIVP (guided by ISO/IEC 27005)
The purpose of this training is to present the principles and good practices of risk management according to ISO/IEC 27005, as well as the way to put practically a sustainable risk analysis approach in place in the company, following the ISO/IEC 27005 methodology.
To this end, the general principles from ISO 31000, 31004 and 31010 will be presented before concretizing them for the specific risks related to information. The set of processes and requirements of ISO/IEC 27005 will be detailed and illustrated by the presentation of methodologies for analysis using concrete case studies.
This training includes 2.5 days of classroom lessons and 0.5 day for the exam to obtain the international certification of Risk Manager EIVP by an accredited certification body.
ISO/IEC 270xx workshop
The purpose of this training is to present an Information Security Management System (ISMS) that can be certified by a certification authority.
The training will focus on explaining the organisation of the International ISO Standards on Information Security. Special attention will be paid to the requirements of ISO/IEC 27001, the structure and content of standards such as ISO/IEC 27002 (Code of Practice for Information Security Management), ISO/IEC 27005 (Risk Management linked to Information Security) and ISO/IEC 27006 (Requirements for bodies providing audit and certification of information security management systems). Other sectoral standards such as ISO 27799 (Health Information Security Management) or ISO/IEC 27010 (Information Security Management of Intersectoral and Inter-organisational Communications) may be presented according to specific needs of participants.