Auvaro Auvaro is an audit organization that serves both the profit and non-profit sector and works on the basis of projects and secondment. Training is one of the services we offer. We realize that we are not a regular training institute. We are an audit organization and we offer our training as a project. We are convinced that our auditors, with years of practical experience in their field, are the best trainers. This is also reflected in our results. Our course participants rate our training courses with an average of 8.4 and the pass percentages for the exam training courses are above 80 percent.
Upcoming date
Training
To be announced
Upcoming date
Training
To be announced
Certified Information Security Manager (CISM) is the globally recognized certificate for Information Security Managers. The certificate stands for quality and experience within the field and is increasingly required. With this CISM–training you optimally prepare for the ISACA exam (http://www.isaca.org).
The training
During the training, all CISM–domains are treated and there is (classroom) practice with exam questions. This makes it immediately clear in which areas the knowledge and skills are sufficient and where there is still room for improvement.
The training covers the 4 CISM–domains:
Certified Information Systems Auditor Certified Information Systems Auditor (CISA) is the globally recognized certificate for IT auditors. The certificate stands for quality and experience within the field and is increasingly required. With this CISA training you optimally prepare for the ISACA exam (http://www.isaca.org). IT–auditors. Het certificaat staat voor kwaliteit en ervaring binnen het vakgebied en is steeds vaker vereist. Met deze CISA–training you optimally prepare for the ISACA exam (http://www.isaca.org).
The training
During the training, all CISA domains are covered and exam questions are practiced. This makes it immediately clear in which areas the knowledge is sufficient and where there is still room for improvement.
The training covers the 5 CISA domains:
Certified Information Systems Security Professional (CISSP) is one of the most important certifications an information security specialist can hold. It stands for quality and experience within the field and is increasingly required. This course prepares you optimally for the ISC(2) exam van ISC(2) (www.isc2.org).
The training
This training is intended to prepare you optimally for the exam. During the training, all CISSP domains are covered and exam questions are practiced. This makes it immediately clear in which areas the knowledge is sufficient and where there is still room for improvement.
The training covers the 8 CISSP domains:
Certified in Risk and Information Systems Control (CRISC) certifies risk managers who can organize and set up Risk Management for IT. With this internationally recognized certification you demonstrate that you have knowledge and experience in the field of IT Risk Management.
The training
During the training, all CRISC domains are covered and exam questions are practiced. This makes it immediately clear in which areas the knowledge is sufficient and where there is still room for improvement.
The training covers the 4 CRISC domains:
Certified in the Governance of Enterprise IT (CGEIT) is the globally recognized certificate for IT Governance experts. As a CGEIT certified you demonstrate that you are able to incorporate IT-Governance into an organization.
The training
During the training, all CRISC domains are covered and exam questions are practiced. This makes it immediately clear in which areas the knowledge is sufficient and where there is still room for improvement.
The training covers the 5 CGEIT practice areas:
Certified Cloud Security Professional (CCSP) is the standard in Cloud Security certification. This was developed by (ISC)2 in collaboration with the Cloud Security Alliance. With this internationally recognized certification you demonstrate that you have solid knowledge and experience in the field of Cloud security.
The training
During the training, all CCSP domains are covered and exam questions are practiced. This makes it immediately clear in which areas the knowledge is sufficient and where there is still room for improvement.
The training covers the 6 CCSP–domains:
ISAE 3402 is the international Assurance standard for outsourcing business processes with an impact on the financial statements. The official title of ISAE 3402 is “Assurance Reports on Controls at a Service Organization” and is also known as “Internal Control Framework over Financial Reporting” (ICFR). In this training you will acquire a thorough knowledge of this standard.
The training
This training is intended to teach you how to deal with the ISAE 3402 assurance standard. During this training you will gain insight into what needs to be done to design and implement a control framework and how an ISAE 3402 audit works. After following this training:
ISO 27001 is the de-facto standard for information security. In this training you will acquire a thorough knowledge of this international standard.
The training
This training is designed to teach you how to set up and implement an information security management system. During this training you will gain insight into what needs to be done to set up an information security management system in such a way that the requirements of the ISO 27001:2013 standard are met.
After following this training:
ISO 27701 specifies the requirements and provides guidelines for the implementation of a Privacy Information Management System (PIMS). This standard has been set up as an extension of ISO 27001. In this training you will acquire a thorough knowledge of this international standard.
The training
This training is designed to teach you how to implement the requirements of ISO 27701 to extend your ISMS. During this training you will gain insight into what needs to be done to extend an information security management system to meet the requirements of the ISO 27701:2019 standard.
After following this training:
CISM, Certified Information Security Manager is the globally recognized certificate for Information Security Managers. The certificate stands for quality and experience within the field and is increasingly required. With this CISM–training bereidt u zich optimaal voor op het examen van ISACA.
The training
During the training, all CISM–domains are treated and there is (classroom) practice with exam questions. This makes it immediately clear in which areas the knowledge and skills are sufficient and where there is still room for improvement.
The training covers the 4 CISM–domains:
Certified Information Systems AuditorCertified Information Systems Auditor (CISA) is the globally recognized certificate for IT auditors. The certificate stands for quality and experience within the field and is increasingly required. With this CISA training you optimally prepare for the ISACA exam (http://www.isaca.org). IT–auditors. Het certificaat staat voor kwaliteit en ervaring binnen het vakgebied en is steeds vaker vereist. Met deze CISA–training you optimally prepare for the ISACA exam (http://www.isaca.org).
The training
During the training, all CISA domains are covered and exam questions are practiced. This makes it immediately clear in which areas the knowledge is sufficient and where there is still room for improvement.
The training covers the 5 CISA domains:
Certified Information Systems Security Professional (CISSP) is one of the most important certifications an information security specialist can hold. It stands for quality and experience within the field and is increasingly required. This course prepares you optimally for the ISC(2) exam van ISC(2) (www.isc2.org).
The training
This training is intended to prepare you optimally for the exam. During the training, all CISSP domains are covered and exam questions are practiced. This makes it immediately clear in which areas the knowledge is sufficient and where there is still room for improvement.
The training covers the 8 CISSP domains:
Certified in Risk and Information Systems Control (CRISC) certifies risk managers who can organize and set up Risk Management for IT. With this internationally recognized certification you demonstrate that you have knowledge and experience in the field of IT Risk Management.
The training
During the training, all CRISC domains are covered and exam questions are practiced. This makes it immediately clear in which areas the knowledge is sufficient and where there is still room for improvement.
The training covers the 4 CRISC domains:
Certified in the Governance of Enterprise IT (CGEIT) is the globally recognized certificate for IT Governance experts. As a CGEIT certified you demonstrate that you are able to incorporate IT-Governance into an organization.
The training
During the training, all CRISC domains are covered and exam questions are practiced. This makes it immediately clear in which areas the knowledge is sufficient and where there is still room for improvement.
The training covers the 5 CGEIT practice areas:
Certified Cloud Security Professional (CCSP) is the standard in Cloud Security certification. This was developed by (ISC)2 in collaboration with the Cloud Security Alliance. With this internationally recognized certification you demonstrate that you have solid knowledge and experience in the field of Cloud security.
The training
During the training, all CCSP domains are covered and exam questions are practiced. This makes it immediately clear in which areas the knowledge is sufficient and where there is still room for improvement.
The training covers the 6 CCSP–domains:
ISAE 3402 is the international Assurance standard for outsourcing business processes with an impact on the financial statements. The official title of ISAE 3402 is “Assurance Reports on Controls at a Service Organization” and is also known as “Internal Control Framework over Financial Reporting” (ICFR). In this training you will acquire a thorough knowledge of this standard.
The training
This training is intended to teach you how to deal with the ISAE 3402 assurance standard. During this training you will gain insight into what needs to be done to design and implement a control framework and how an ISAE 3402 audit works. After following this training:
ISO 27001 is the de-facto standard for information security. In this training you will acquire a thorough knowledge of this international standard.
The training
This training is designed to teach you how to set up and implement an information security management system. During this training you will gain insight into what needs to be done to set up an information security management system in such a way that the requirements of the ISO 27001:2013 standard are met.
After following this training:
ISO 27701 specifies the requirements and provides guidelines for the implementation of a Privacy Information Management System (PIMS). This standard has been set up as an extension of ISO 27001. In this training you will acquire a thorough knowledge of this international standard.
The training
This training is designed to teach you how to implement the requirements of ISO 27701 to extend your ISMS. During this training you will gain insight into what needs to be done to extend an information security management system to meet the requirements of the ISO 27701:2019 standard.
After following this training:
As Valk Solutions, we automate business-critical point of sale processes for retail organizations. Our customers entrust us with their competition- and privacy-sensitive data. The ISAE 3402 statement is an independent confirmation for retailers that they are in good hands with us. Auvaro's audit team closely monitors that we work according to the standard every year. This sets us apart from the competition.
Karin Valk
Managing Director - Valk Solutions
Since 2016, Auvaro has been conducting the ISAE3402 audit at Itris. Itris' services to its customers are audited against NOREA's framework of standards. Since 2018, the ViewPoint functionality, Itris' ERP package, has also been audited against a framework of standards drawn up by Itris and its customers. For both audits, Auvaro issues an ISAE3402 type II statement annually. The audits are planned in close consultation with each other and are carried out in a pleasant manner by the auditors of Auvaro. We are therefore very satisfied with this service.
Marianne van Leeuwen
Manager Customer Support & Quality - Itris
Our ISAE 3402 audit was conducted efficiently and in a pleasant manner. The auditors guided us professionally.
Peter Van Den Plas
Information Security Officer - CACI B.V.
The audit process was carried out in a professional manner. Our ICT architects were impressed by the available ICT knowledge of the auditors. Conversations were conducted in a pleasant and constructive manner. It's very efficient that ISO 27001 and ISAE 3402 audits can be combined.
Theo van den Hoek
Program manager - Peopleware ICT Solutions
We wanted to investigate whether we could get an ISAE 3402 certification for our payroll service. After searching on the internet we came across Auvaro. After a first introductory meeting, we quickly started describing the processes and controls. Following Erik's advice, we then added and changed some checks and made some adjustments to our working method, after which we already received the first audit at the beginning of 2019. From this, some points emerged that have been adjusted and at the end of 2019 we received the final audit for 2019 and we were ISAE 3402 certified! The collaboration went very well and the certification also gives our customers the certainty that they can outsource their payroll administration with confidence.
Pier de Vries
Manager salary service - PeopleInc
We are an organization where a lot of information and personal data of our customers is processed. To provide a guarantee about our information security, we came to Auvaro about 3 years ago to guide us in this and to obtain an ISAE 3402 Assurance report. This year we were again audited by Erik and his team. It were intensive 'remote audit' days, but Erik and his team guided us in a very pleasant and flexible way. They were very thorough and precise and helped us with the right constructive feedback to have information security 'in control' even better.
Lisa Houwer
Security & Information Officer - Conclusion Learning Centers
