Bookmark Email Print this page

HISP (The Holistic Information Security Practitioner)

Deloitte, in conjunction with eFortresses, Inc. - an ISO 27001 Associate Consultancy of BSI Americas, brings you the Holistic Information Security Practitioner course.

The Holistic Information Security Practitioner (HISP) Certification course is one of the fastest growing information security certifications for Information Security Practitioners, Managers and Officers. In the current global economic recession, a recent CareerBuilder.com report indicates that the Information Security Manager job is one of the 5 recession proof jobs.

This is the only integration course that provides practical education on the integration of best practices for Information Security Management, Information Systems Auditing and multiple Regulatory Compliance requirements and how to map multiple regulatory requirements to the internationally accepted best practices framework of ISO/IEC 27002:2005 and the ISO/IEC 27001:2005 standard – a globally accepted standard that can help implement a holistic, comprehensive and effective information security management system.

Early adopters of HISP include Fortune 500 and Global 2000 companies such as Microsoft Corporation, McKesson, IBM, Cisco Systems, Royal Bank of Canada, Bank of Montreal, CIBC and Verizon Business

About the HISP Institute
The HISP Institute is a separate organization that manages the HISP Examination and Post-Certification maintenance. The HISP Institute is run by a Governance Board, Advisory Board and Executive Committees, consisting of a number of industry leading CISOs, ISOs, directors and managers of information security. There is a significant shortage of skilled information security, audit and compliance personnel. This forces organisations to employ consultants, which directly increases information security and compliance costs. To address this shortage, eFortresses developed a comprehensive 5-day Holistic Information Security Practitioner (HISP) training and certification course to impart to attendees the essential knowledge for information security, audit and compliance.

Benefits of the HISP Qualification

HIPS image

  • Provides a good grounding in international best practices for information security and audit governance as well as general IT governance (e.g. ISO 27002, ITIL V3, CobiT 4.1 and COSO)
  • Enables you to take a holistic risk management approach to information security.
  • Enables you to become a hybrid information security professional, well balanced between technical and business skills.
  • Enables you to function effectively in the capacity of a CISO and CCO by tackling the challenge of information security as a business concern that is not solved by technology alone, but by people, process and technology.
  • Enables you to map international best practices of ISO 27002, ITIL V3, CobiT 4.1 and COSO to current and future regulatory compliance requirements.

How to become a qualified HISP
The HISP qualification is earned by completing the following steps:

Level 1

  • Hold CISSP, CISA or CISM or Attend the 5-day HISP certification course.
  • Pass a certification exam, administered on the final day of the course or hosted by HISPI.

Level 2

  • Master HISP (MHISP)

Number of days: 5
Who should attend?

  • Anyone tasked with the implementation and management of an ISO 17799:2000 or ISO 27002:2005 Information Security Management System (ISMS).
  • Information Security Consultants or Third Party Auditors.
  • Auditors (External and Internal).
  • Information Security Officers.
  • Any security executive looking for continuous career progression and increased value by demonstrating an understanding of the full range of contemporary security issues facing his or her organisation.
  • Chief Security Officers or Chief Information Security Officers or anyone aspiring to these roles.

About the facilitator:
Taiye Lambo CISSP, CISA, CISM, HISP, ISO 27001 Auditor.
Taiye Lambo is a security subject matter expert in the area of Information Security Governance; with 10+ years of experience assisting various organizations globally to build robust, comprehensive, effective and sustainable information security programs through the integration of internationally accepted best practices, including ISO 27000, COBIT, COSO, ITIL and NIST. He founded the UK Honeynet project – www.honeynet.org.uk and the Holistic Information Security Practitioner (HISP) Institute – www.hispi.org and also founded the HISP Program, which is the first integrated training and certification for Governance, Risk Management and Compliance (GRC). He successfully executed critical information security projects for a number of UK & USA government agencies and also serves as a Consultant to the United Nations auditing the ICT Governance and Security Management Programs of various United Nations Missions internationally, including Africa and the Caribbean.

In the commercial sector he has completed Consulting engagements for clients in the Manufacturing, Financial Services and Healthcare sector. He was the Director of information Security for John H. Harland (now Harland Clarke), the leading provider of solutions to the Financial Services industry in the USA, including check and check related products and accessories, direct marketing solutions, and contact center solutions. He has dual expertise as a hybrid technical and business information security consultant with a pragmatic holistic approach to the management of information security and regulatory compliance, as well as a subject matter expert on Information Security governance and compliance relating to regulatory standards such as HIPAA, Sarbanes-Oxley Act, Gramm-Leach Bliley Act (GLBA), FDIC and others.

His presentations at security events include conferences organised by MISTI, ISSA, InfraGard, ISACA, CPM, SOFE, EDUCAUSE and HITRUST. Taiye is President and Founder of eFortresses, an Atlanta based risk management solutions company founded in 2002. In the United Kingdom, he founded a successful information security firm CyberCops Europe, gained assignments in the USA for commercial and government agencies where he continued Information security and compliance consulting and became a subject matter expert in several of the current regulations. He has established numerous valuable contacts internationally and has name recognition in the information security/regulatory compliance space globally. With a Bachelors degree in Electrical Engineering from the University of Ilorin, he also earned a Masters degree in Business Information Systems from the University of East London (United Kingdom).

In-house training classes
An in-house course can become highly cost effective when 5 or more people require training. Additional benefits include:

  • Further cost savings on travel and expenses.
  • Ability to tailor the content to your requirements.
  • Specific workshops based on your requirements.
  • Trainers with the relevant industry background.

If you are interested in hosting a class at any location worldwide, please contact us to obtain a proposal.