Accredited training to place you at the forefront of IT

Get the latest ALC news

• Getting Started • Architecture • Professional • Management •
• FCIS • CISMP • SASP • PCiAA • SABSA® • CISSP® • CISM® • ISO 27001 •  

Knowledge to secure your career

Information Security offers one of the best career paths in IT today.   And ALC offers you one of the best ways to get there, no matter what point you are at in your career. We offer an industry-leading structured portfolio of accredited training addressing needs at all levels of the organisation: management, beginners, specialists, professionals.

We also address what has to date been a significant gap in security education.  Very many certifications require you to have several years experience. For example, CISSP, long considered almost a gold standard, requires you to have 5 years experience.  But what if you don’t have 5 years experience in security?  What if you are in IT and are technically accomplished and now want to move into security? ALC has some important certifications that address this situation.

“Advance your organisation and your career
with security training from ALC.”

Your Information Security Career Path ↓
The ALC Information Security Career Path is structured into six main streams. Browse below to see the various career path options.

 1.   New to Security and wanting to get started? 

FCIS (Foundation Certificate in Information Security)

Based upon international standards and industry best practice, this 2-day course provides an excellent foundation for anyone starting a career in Information/Cyber security or for anyone who has information security responsibilities as part of their day-to-day role and who would benefit from a formal presentation to enhance or refresh their knowledge. Two days of condensed knowledge plus a one hour certificate exam will prove your understanding of the top four disciplines of Information Security.

CISMP (Certificate in Information Security Management Principles)

CISMP is an established and internationally regarded foundation-level qualification ideally suited for IT professionals who wish to develop a career in information security management, and for existing IT managers who want to enhance their information security knowledge to ensure that information security management and controls are adequately implemented in their organisations.  Over 5 days CISMP provides a solid understanding of the key areas of information security management, including: risk management; technical and management controls; legal frameworks; people and physical security; security standards; business continuity. CISMP also provides a base level knowledge suitable for future CISSP and CISM qualifications.

 2.   Information Security Architecture

SASP (Solution Architecture Security Practitioner)

Many organisations, or projects, cannot afford to have an assigned security architect. Yet many solutions or technical architects do not have a good understanding of Information Security. This means that systems are being designed and built that do not adequately mitigate many of the current and emerging threats from today’s interconnected IT world. The Solution Architecture Security Practitioner (SASP) course is targeted at Solution Architects wishing to know how to design secure systems and gain the knowledge of how to architect into a system a wide range of security controls.

SABSA Foundation

SABSA is the world’s most successful security architecture. It is the leading open-use best practice method for delivering cohesive information security solutions to enterprises. The SABSA framework ensures that the security needs of your organisation are met completely and are designed, delivered and supported as an integral part of your IT management infrastructure. This 5-day Foundation Certificate program has been designed to provide participants with a thorough coverage of the knowledge required for the SABSA Foundation Level Certificate.

SABSA Advanced: Risk & Assurance

This SABSA Advanced module is designed for security professionals seeking to develop practical advanced competency to architect Business Risk, Assurance and Governance structures and processes in the SABSA context. Participants will master the skills and competencies to plan, design, implement and manage Risk, Assurance and Governance Architectures to their specific organisation, sector and culture

SABSA Advanced A3: Architecture & Design

This SABSA Advanced module is designed for security professionals seeking to develop practical advanced competency to integrate and align Security & Risk with Enterprise Architecture Frameworks and Standards. Participants will master the skills and competencies to plan, design, implement and manage a SABSA Architecture and its through-life processes.

 3.   Professional Certifications

CISSP (Certified Information Systems Security Professional)

CISSP® is long regarded as the gold standard of security qualifications. It is based on the CBK (Common Body of Knowledge) which comprises eight subject domains that the (ISC)2 compiles and maintains through ongoing peer review by subject matter experts.This 5-day accelerated course provides information security professionals with a fully-immersed, minimum-distraction CISSP CBK training and certification experience. The course will broaden and deepen your understanding of all CBK domains as required for the (ISC)2 CISSP accreditation examination.

CISM (Certified Information Security Manager)

CISM is one of the most important infosec qualifications in the world today. CISM defines the core competencies and international standards of performance that information security managers are expected to master. It provides executive management with the assurance that those who have earned their CISM have the experience and knowledge to offer effective security management and advice. This course provides an intense environment in which participants can acquire the skills and knowledge expected of a world-class information security manager.

 4.   ISO 27001
ISO/IEC 27001 is the pre-eminent international standard that defines best practice for an ISMS. It provides the foundation for reliable information security management and applies to any kind of organisation, private or government, profit or non-profit, small or large. The latest update to the ISO 27001 standard was published in October 2013. All ALC courses are based on this latest version.

Infosec professionals, even those with good technical knowledge, can find themselves somewhat at a disadvantage and may not reach their full career potential if they do not have some formal certification in ISO 27001.

ISO/IEC 27001 Overview

ISO/IEC 27001 is the pre-eminent international standard that defines best practice for an ISMS. It provides the foundation for reliable information security management and applies to any kind of organisation, private or government, profit or non-profit, small or large. The latest update to the ISO 27001 standard was published in October 2013.  This one-day overview will bring you fully up-to-date. It provides comprehensive coverage of all essential aspects of ISO/IEC 27001:2013 including overview of guidance for implementation and information security controls

ISO/IEC 27001 Foundation

This 2-day Foundation course is fully accredited by APMG and is designed for anyone who needs a solid overview and understanding of the ISO 27001 Standard and an appreciation of what comprises best practice in an Information Security Management System.

ISO/IEC 27001 Lead Implementer

This course provides comprehensive and practical coverage of all aspects of implementing and maintaining an ISO27001 project. If you are involved in information security management, writing information security policies or implementing ISO27001 – either as a Lead Implementer, or as part of the planning/implementation team – this course will give you the all the key steps for implementing and maintaining a successful Information Security Management System

ISO/IEC 27001 Lead Auditor

This course will prepare you to plan and execute audits of information security management systems in line with the international standard ISO/IEC 27001. The training is based on management system audit guidelines (ISO 19011:2002) as well as international audit best practices: the International Federation of Accountants (IFAC), the American Institute of Certified Public Accountants (AICPA), the Information Systems Audit and Control Association (ISACA) and the Institute of Internal Auditor (IIA). An audit kit developed by experienced auditors will be distributed to participants.

 5.   Governance and Risk

COBIT 5 Foundation

This flagship course is the ideal introduction to COBIT 5 for anyone new to COBIT and IT governance. The course provides a comprehensive coverage of the COBIT 5 framework and its components using a logical and example-driven approach. It provides full preparation for the Foundation Certificate exam held at the end of the course.

COBIT 5 Implementation

Get a practical appreciation of how to apply COBIT 5 to specific business problems, pain points, trigger events and risk scenarios within the organisation. Target audience includes: IT Auditors; IT Managers; IT quality professionals; IT developers; business managers; process practitioners in firms providing IT services. Learn how to implement and apply COBIT 5 into the enterprise and how to effectively use it for different organisational scenarios. The course material is supported by practical exercises and case-based scenarios and includes the Implementation Certificate exam.

COBIT 5 Assessor

Designed for auditors (internal, external auditors and IT) and consultants, this course provides a basis for assessing enterprise process capabilities against the COBIT 5 Process Assessment Model (PAM). Evidence-based to enable a reliable and consistent way to assess IT process capabilities, this model helps IT leaders gain C-level buy-in for change and improvement initiatives. Assessment results are used for process improvement, delivering value to the business, measuring achievement of goals, benchmarking, consistent reporting and organisational compliance.

CRISC (Certified in Risk and Information Systems Control)

CRISC is the only certification that prepares and enables IT professionals for the unique challenges of  IT and enterprise risk management, and positions them to become strategic partners to the enterprise. Established in 2010, it has already been earned by 20,000 professionals and was named Gold Winner for Best Professional Certification Program at the SC Magazine (2013) Awards . This three day CRISC course provides a unique study program that will prepare you for a first-time pass in the CRISC exam.

 6.   Executive and Awareness Training

Information Security for Executives

This presentation provides introductory and practical coverage of information security for business executives. Using relevant scenarios and case studies, it is designed to help Executives respond to the security challenges they face and understand their role in the information security framework.  The presentation is fully customisable and is available as a half-day or full-day workshop or else as a 2-hour briefing.

Information Security Awareness Program

Effective organisational information security is much more than policies and procedures. It’s a mindset.  With a surge of reported professional hackers, botnets, industrial espionage and breaches of privacy, there is a call for a new approach to security control and awareness. The human factor (what employees do or don’t do) is the single biggest threat to information systems and assets. Addressing the human factor ensures proper awareness and education to everyone who interacts with computer networks and systems in the basics of information security. An investment in security awareness training is the greatest investment in securing the assets of your company.

Dates and Registration >>

Click to see the full Information Security Training Schedule.

Then choose your course and register.

For any questions or more information please email the ALC Team




At a glance
Take a look at our structured information security training and certification program addressing all levels of the organisation.
1. Getting Started

2. Architecture

3. Professional

4.   ISO 27001

5. Governance and Risk

6.   Executive and Awareness

Scroll down for more details

ALC announces partnership
with InfoSecSkills

ALC has always been at the forefront of Information Security education. We are pleased to announce a further enhancement to our Portfolio following our partnership with the leading UK-based provider InfoSecSkills.  This has led to the introduction of four important new certificate courses: FCIS (Foundation Certificate in Information Secuity); SASP (Solution Architect Security Practitioner); PCiIAA (Practitioner Certificate in Information Assurance Architecture); CISMP (Certificate in Information Security Management Principles).

Dates and Registration >>
1. To register for a course first go to the Information Security Training Schedule.
2.   Choose your course then press the Register button.
For any questions or more information please contact

Selected courses are also available to be taken online.  Contact us for more information.


The Right Stuff

1.  You can’t get the right results unless you have the right foundation. 
2.  You can’t have the right foundation if you don’t have the right knowledge. 
Get ahead of the game. 
Get certified.