Many organizations seek competent auditors to determine whether their policies, procedures, and controls adhere to ISO 37301 requirements. This training course aims to help you complete these tasks successfully and intends to reflect the importance of effective CMS audits. In addition, this training course aims to strengthen your knowledge and skills to plan and carry out CMS audits based on the guidelines for auditing management systems provided in ISO 19011 and the certification process described in ISO/IEC 17021-1. This training course can potentially qualify you to conduct audits on behalf of conformity assessment bodies. The exercises, quizzes, and case studies provided in this training course are designed to help you practice the most important aspects of a CMS audit: ISO 37301 requirements, auditing principles, tools and techniques used to obtain evidence, leading a team of auditors, conducting interviews with auditee, reviewing documented information, drafting nonconformity reports, and preparing the final audit report. After successfully completing the training course, you can sit for the exam and gain the "Certified ISO 37301 Lead Auditor' credential. This credential validates your professional capabilities and demonstrates that you have the knowledge and skills to audit a CMS based on ISO 37301. About This Course This training course enables you to: Understand the main concepts of a compliance management system (CMS) and its processes based on ISO 37301 Acknowledge the relationship between ISO 37301 and other standards and regulatory frameworks Understand the auditor's role in planning, leading, and following up on a CMS audit in accordance with ISO 19011 Interpret the requirements of ISO 37301 in the context of a CMS audit Plan an audit, lead a team of auditors, draft nonconformity reports, and follow up on an audit Act with due professional care during an audit Course Agenda Day 1: Introduction to the compliance management system (CMS) and ISO 37301 Day 2: Audit principles and the preparation for and initiation of an audit Day 3: On-site audit activities Day 4: Closing of the audit and the Exam. Assessment Delegates sit a combined exam, consisting of in-course quizzes and exercises, as well as a final 12 question, essay type exam on Day 4 of the course. The overall passing score is 70%, to be achieved within the 150 minute time allowance. Exam results are provided within 24 hours, with both a Certificate and a digital badge provided as proof of success. Prerequisites A fundamental understanding of ISO 37301 requirements (or ISO 19600 guidelines) for a CMS and a comprehensive knowledge of audit principles. What's Included? Certification fees are included in the exam price. Training material of over 450 pages of information and practical examples. An attestation of course completion worth 31 CPD (Continuing Professional Development) credits will be issued to participants who have attended the training course. In case of exam failure, the candidate can retake the exam once for free within 12 months following the initial exam date. Who Should Attend? The ISO 37301 Lead Auditor training course is intended for: Auditors seeking to perform and lead CMS audits Managers or consultants seeking to master the CMS audit process Individuals responsible for maintaining conformity to ISO 37301 requirements in an organization Technical experts seeking to prepare for a CMS audit Expert advisors and compliance officers Accreditation Provided by This course is Accredited by NACS and Administered by the IECB.
The professional working world has changed more rapidly than could have been envisaged at the time of the introduction of GDPR and the Data Protection Act 2018. With more people working from home post-Covid and the ever increasing risk of cyber-attacks, this short course is aimed at taking stock of current practice and risk, as well as considering ICO enforcement action and the implications of hybrid working. It is also a great recap on the rules as they stand and what you need to know to comply. The course will cover: UK GDPR - A timely reminder of the rules ICO enforcement action and what we can learn Data Protection Impact Assessments - when and how to do them Hybrid working and UK GDPR Managing cyber attacks from a UK GDPR perspective Target Audience The online course is suitable for staff of all levels, from support staff to senior partners. Resources Course notes will be provided to all delegates which may be useful for ongoing reference or cascade training. Please note a recording of the course will not be made available. Speaker Matthew Howgate, Consultant, DG Legal Matt is a non-practising solicitor who has considerable experience in regulatory issues and advising on complex issues of compliance and ethics. He is also an expert in data protection, UK GDPR and on the civil legal aid scheme. Matthew is a lead trainer on and co-developed the LAPG Certificate in Practice Management (a training programme for legal managers and law firm owners) as well as regularly providing training on legal aid Supervision, costs maximisation, data protection and security and on general SRA compliance.
Join us for an insightful masterclass that delves into the profound effects of neglect on a child's life. This session is meticulously designed for professionals working closely with children in various educational settings, providing essential knowledge and practical tools to identify, manage, and seek support for neglected children.
Overview Internal control, as defined by accounting and auditing, is a process for assuring an organization's objectives in operational effectiveness and efficiency, reliable financial reporting, and compliance with laws, regulations and policies. It is very important for the organisation to have a smooth flow of accounting as it plays a very important role in the development of the organisation. Financial Managers or any person who deals with Accounts need to see that the company accounts are very updated and are free from any risks that can become a problem during the time of Auditing. This course will feed you with all the skills required to have a good Internal Management process it is important to analyse Risk Management to see if the process is working efficiently and measures the effectiveness of controls put in place to alleviate risks.
Duration 3 Days 18 CPD hours This course is intended for This course is for computer professionals involved with security compliance using CCS 11.0. Overview At the completion of the course, you will be able to: Describe current security risk and compliance challenges. Define methods of proactive security. Describe CCS 11 and how it helps meet security and compliance needs. Describe general CCS 11.0 pre-deployment considerations. Install CCS 11. Perform initial CCS configuration tasks. Import assets and common fields. Describe how to install CCS Agents. Perform data collection and evaluation. Describe the components of standards. Copy and edit standards. Evaluate collected data in terms of a standard. Describe compliance and risk scores. Manage exceptions. Create, edit, and map control statements. Use Controls Studio to eliminate duplication of controls. Describe mandates, policies, and control statements. Build queries to gather data quickly from assets. Add external data integration and configure data connectors. Use CCS reporting features. Create, edit, and manage dashboards. Investigate contingencies using a ?what if?? analysis in dynamic dashboards. This course focuses on defining security controls that govern the enterprise, assess compliance with standards and other mandates, and create reports and dashboards to demonstrate compliance and show deficiencies to multiple audiences. Introduction to CCS 11.0 Overview of Security and Compliance Proactive Security Into to CCS11 Implementing Security and Compliance with CCS 11.0 Installing the CCS Suite General pre-deployment considerations Pre-installation requirements Installation tasks Initial configuration Getting started tasks Preparing for data collection Getting started with CCS 11.0 Importing assets Installing a UNIX Agent Collecting and evaluating data Standards Manager/CVSS and Risk Score Working with standards Assessing compliance with standards Managing exceptions Controls Studio About Controls Studio Working with Controls Studio Ad hoc queries Query building Querying your enterprise External data integration Connecting to external data sources Overview of third-party connectors Reporting and dashboards Reporting overview Working with dynamic dashboards Additional course details: Nexus Humans Symantec Control Compliance Suite (CCS) 11.0 Administration training program is a workshop that presents an invigorating mix of sessions, lessons, and masterclasses meticulously crafted to propel your learning expedition forward. This immersive bootcamp-style experience boasts interactive lectures, hands-on labs, and collaborative hackathons, all strategically designed to fortify fundamental concepts. Guided by seasoned coaches, each session offers priceless insights and practical skills crucial for honing your expertise. Whether you're stepping into the realm of professional skills or a seasoned professional, this comprehensive course ensures you're equipped with the knowledge and prowess necessary for success. While we feel this is the best course for the Symantec Control Compliance Suite (CCS) 11.0 Administration course and one of our Top 10 we encourage you to read the course outline to make sure it is the right content for you. Additionally, private sessions, closed classes or dedicated events are available both live online and at our training centres in Dublin and London, as well as at your offices anywhere in the UK, Ireland or across EMEA.
The main subject areas of the course are: Revision of legislation and guidance Revision of asbestos in buildings Controlling work on the fabric of the building Developing a strategy for Compliance The asbestos management plan - reviewing/maintaining/improving
There are a number of reasons why it is important to actively promote equality and diversity within your business and the wider community, not only to ensure compliance with anti-discrimination legislation and professional regulations, including the SRA Standards & Regulations. There will also be business benefits to the organisation including attracting and retaining talented staff, improving staff morale, potentially accessing a wider client base and enhancing service levels and client satisfaction. Join us for this useful overview session on equality, diversity & inclusion which will cover the following points; The Meaning of Equality Discrimination Harassment & Victimisation Unconscious Bias The Equality Act & the Protected Characteristics Reasonable Adjustments Complying with E&D requirements Target Audience This online course is suitable for staff of all levels, from support staff to senior partners. Resources Comprehensive and up to date course notes will be provided to all delegates which may be useful for ongoing reference or cascade training. Please note a recording of the course will not be made available. Speaker Amie Higgins, Consultant, DG Legal Amie is a Senior Solicitor, qualified under the Law Society’s Immigration & Asylum Accreditation Scheme (IAAS) as an Advanced Caseworker and Supervisor. Amie specialises in all aspects of Immigration, Asylum and Human Rights work, with a specialism in human trafficking/modern slavery cases and working with vulnerable clients. Amie is an experienced trainer, delivering a range of training on both legal and practice management topics.
Despite being a requirement under the Money Laundering Regulations 2017 (MLR 2017), in 2023/24 the SRA found that 19% of files reviewed did not contain a client and matter risk assessment (CMRA), with a further 12% of files containing ineffective CMRAs. At best, the firms conducting these files were putting themselves at risk of regulatory action for failure to comply with the MLR 2017. More seriously, firms may have been facilitating money laundering through their failure to adequately assess and address the risks posed by clients and matters. The SRA has issued a number of significant fines to firms with no, or insufficient, CMRAs in place. In the year August 2024 to July 2025, firms were fined over £950,000 where ineffective or missing CMRAs were noted. Although a firm’s MLRO, MLCO or its managers bear ultimate responsibility for ensuring its compliance with the MLR 2017, it is the responsibility of all those working on behalf of the firm to conduct and document the appropriate processes and checks on a day-to-day basis. Therefore, it is imperative that all staff understand not only how to complete a CMRA, but also the importance of doing so thoroughly and correctly. This course will assist fee earners and support staff in confidently and competently completing client and matter risk assessments, understanding the types of risks to be identified and the importance of correctly identifying these. Where the SRA has found failings at firms in respect of CMRAs, it has almost unanimously also found shortcomings in other areas of AML compliance. Where concerns are raised regarding a firm’s compliance with any aspect of the MLR 2017, the SRA will probe further and look into all areas of AML compliance. For information about DG Legal’s full range of AML training courses, please visit https://dglegal.co.uk/training/upcoming-premier-training-courses/. Target Audience This online course is suitable for staff of all levels, from support staff to senior partners. Resources Comprehensive and up to date course notes will be provided to all delegates which may be useful for ongoing reference or cascade training. Please note a recording of the course will not be made available. Speaker Paul Wightman, Consultant, DG Legal A qualified barrister, Paul graduated in Law from Birmingham University and was called to the Bar in 1994. He subsequently spent almost 20 years working for the Law Society of England and Wales, initially within the Office for the Supervision of Solicitors, then the Legal Complaints Service (LCS), and ultimately the Solicitors Regulation Authority (SRA). Paul is adept at undertaking audits and providing succinct reports on areas for improvement and can assist firms with advice on all aspects of SRA compliance and Anti-Money Laundering procedures.
Duration 5 Days 30 CPD hours This course is intended for This course is intended for IT professionals who are responsible for planning, configuring, and managing an Office 365 environment. Students who attend this course are expected to have a fairly broad understanding of several on-premises technologies such as Domain Name System (DNS) and Active Directory Domain Services (AD DS). In addition, they should have a general understanding of Microsoft Exchange Server, Microsoft Teams, and Microsoft SharePoint. Overview Plan and provision Office 365 Manage Users and Groups in Office 365 Deploy and Configure Tools and Applications for Office 365 Plan and Manage Exchange Online Plan and Manage SharePoint Online Plan and Manage Microsoft Teams Plan and Manage other Office 365 Services Implement Security and Compliance in Office 365 Report, Monitor and Troubleshoot Office 365 This five-day course describes how to set up, configure and manage an Office 365 tenant including identities, and the core services of Microsoft 365. In this five-day course, you will learn how to plan the configuration of an Office 365 tenant including integration with existing user identities; plan, configure and manage core services; and report on key metrics. Although this course and the associated labs are written for Office 365 with Windows 11, the skills taught will also be backwards compatible with Windows 10. This course is based on the features available in the Office 365 E3 license as these are the core features in Office 365 and Microsoft 365 plans. 1 - Planning and Provisioning Office 365 Overview of Office 365 Core Services of Office 365 Requirements for an Office 365 Tenant Planning a Pilot and Deployment Creating an Office 365 Tenant Adding Custom Domains and Managing DNS Settings Lab: Provisioning Office 365 2 - Managing Users and Groups in Office 365 Managing User Accounts and Licences Managing Passwords and Authentication Create and Managing the Different Types of Groups in Office 365 Managing Users and Groups with PowerShell Managing Users and Groups in the Azure AD Admin Center Role Based Access and Administrative Roles Planning and Configuring Directory Synchronization Lab: Managing Users and Groups in Office 365 Lab: Planning and Configuring Directory Synchronisation 3 - Deploying and Configuring Tools and Applications for Office 365 Planning Network Configuration for Office 365 Tools and Applications Using the Office Configuration Tool Click to Run Installation Use and Control Managing Centralized Deployment of Tools, Applications and Add-ins Reporting Lab: Deploying and Configuring Tools and Applications for Office 365 4 - Planning and Managing Exchange Online What is Exchange Online Managing Exchange Online Mailboxes Managing Office 365 Groups in Exchange Online Configuring Exchange Online Permissions Managing Exchange Online using PowerShell Plan and Configure Mail Flow Plan and Configure Email Protection Lab: Planning and Managing Exchange Online 5 - Planning and Managing SharePoint Online What is SharePoint Online Understanding the relationship between SharePoint, OneDrive, Teams, and Office 365 Groups SharePoint Online Architecture Configure SharePoint Online Configure and Control External Sharing Managing SharePoint Online Site Collections Managing SharePoint Online using PowerShell Lab: Planning and Managing SharePoint Online 6 - Planning and Managing Microsoft Teams What is Microsoft Teams How Microsoft Teams integrates with other Office 365 Services Create and Manage Organization Wide Settings Create, Manage and Assign Microsoft Teams Policies Plan and Configure External and Guest Access Managing Microsoft Teams using PowerShell Lab: Planning and Managing Microsoft Teams 7 - Planning and Managing Other Office 365 Services Yammer Planner Visio Bookings Delve Forms Power Platform Stream Sway Viva Scheduler Add-ins, including Find Time and Junk Reporter Lab: Planning and Managing Office 365 Services 8 - Security and Compliance in Office 365 Overview of Security and Compliance Features in Office 365 Extending Security and compliance Features with Additional Licences Using the Microsoft Defender Portal and Secure Score Using the Office 365 Compliance Portal and Compliance Score Plan and Configure Retention Labels and Policies Plan and Configure Data Loss Prevention Policies Create and Assign Sensitivity Labels Configure Safe Attachments and Safe Links Policies Plan and Configure Multi Factor Authentication Lab: Configure Security and Compliance in Office 365 9 - Reporting, Monitoring and Troubleshooting Office 365 Monitoring Office 365 Service Health Troubleshooting Administrative Access in Office 365 Troubleshoot Directory Synchronization Troubleshooting Exchange Online Troubleshooting SharePoint Online Troubleshooting Microsoft Teams Troubleshooting Office 365 Security and Compliance Lab: Reporting, Monitoring and Troubleshooting in Office 365
Source of funds and source of wealth are two important verification steps a firm can take to identify potential money laundering activities or other financial crime. The Money Laundering Regulations 2017 (MLR 2017) require firms, where necessary, to scrutinise the source of funds of a transaction to ensure they are consistent with their knowledge of the customer, their business and risk profile. In addition, where a matter is considered to be higher risk and therefore subject to enhanced due diligence, firms must also investigate the client’s overall source of wealth. Law firm staff must be able to differentiate between source of funds and source of wealth, having knowledge of how to verify each and identify any anomalies that do not align with their understanding of the client or the matter. Staff must have the knowledge and confidence to challenge clients and seek further clarification where the source may be unclear or highlight concerns. A number of firms who failed to sufficiently identify the source of funds and/or source of wealth have recently been fined by the SRA. In the year August 2024 to July 2025, fines in excess of £475,000 were recorded for AML breaches that included source of funds and source of wealth failings. This course will assist fee earners and support staff in understanding the difference between source of funds and source of wealth, enabling them to capably identify and verify funds in a matter. Where the SRA has found failings at firms in respect of source of funds or source of wealth, it has almost unanimously also found shortcomings in other areas of AML compliance. Where concerns are raised regarding a firm’s compliance with any aspect of the MLR 2017, the SRA will probe further and look into all areas of AML compliance. For information about DG Legal’s full range of AML training courses, please visit: https://dglegal.co.uk/training/upcoming-premier-training-courses/. Target Audience This online course is suitable for staff of all levels, from support staff to senior partners. Resources Comprehensive and up to date course notes will be provided to all delegates which may be useful for ongoing reference or cascade training. Please note a recording of the course will not be made available. Speaker Paul Wightman, Consultant, DG Legal A qualified barrister, Paul graduated in Law from Birmingham University and was called to the Bar in 1994. He subsequently spent almost 20 years working for the Law Society of England and Wales, initially within the Office for the Supervision of Solicitors, then the Legal Complaints Service (LCS), and ultimately the Solicitors Regulation Authority (SRA). Paul is adept at undertaking audits and providing succinct reports on areas for improvement and can assist firms with advice on all aspects of SRA compliance and Anti-Money Laundering procedures.