PECB ISO 27001 Lead Implementer
ISO/IEC 27001:2022 is the world's most widely adopted
information security management standard. The program covers
the full Lead Implementer curriculum — scoping, gap analysis,
risk assessment, Statement of Applicability, Annex A controls,
and internal audit — enriched with 20 years of real-world ISMS
deployments across financial services, critical
infrastructure, and technology companies.
Ideal for: information security managers, GRC professionals,
and consultants preparing to lead ISO 27001 certification
projects.
ISO 27001
ISMS
Risk Assessment
Annex A Controls
Enquire about this program →
PECB ISO 42001 Lead Implementer
ISO/IEC 42001:2023 is the world's first international standard
for AI Management Systems. This is new territory — I am one of
the world's first PECB Certified AI Professionals (CAIP) with
10+ years in enterprise AI. We work through the AIMS
lifecycle, AI risk assessment, transparency requirements, EU
AI Act alignment, and how to make the standard work in
organizations still finding their footing on AI governance.
Ideal for: AI governance leads, data scientists moving into
governance roles, CISOs adding AI risk to their portfolio.
ISO 42001
AI Governance
AIMS
EU AI Act
Enquire about this program →
PECB ISO 22301 Lead Implementer
ISO 22301 is the international standard for Business
Continuity Management Systems. This program walks through
BCMS planning, business impact analysis, recovery time
objectives, continuity strategies, exercising and testing, and
the management review cycle — grounded in direct operational
experience running BCM programs across enterprise
environments.
Ideal for: risk managers, business continuity planners, crisis
management leads, and GRC professionals adding BCM to their
scope.
ISO 22301
BCMS
BIA
Resilience
Enquire about this program →
PECB ISO 27701 Lead Implementer
ISO/IEC 27701:2019 extends ISO 27001 to cover Privacy
Information Management. The program covers PIMS
requirements, mapping to GDPR, UAE Personal Data Protection
Law, and Saudi Arabia PDPL, data subject rights workflows, and
privacy by design — with advisory experience across multiple
regulatory jurisdictions informing every session.
Ideal for: data protection officers, privacy counsel,
compliance professionals, and ISO 27001 implementers expanding
into privacy governance.
ISO 27701
PIMS
GDPR
Data Protection
Enquire about this program →
PECB Certified AI Professional (CAIP)
The CAIP covers AI concepts, machine learning lifecycle, AI
ethics and bias, risk management, and governance frameworks
including NIST AI RMF and OECD AI Principles. I am among the
world's first people to hold this credential — I know
precisely where the tricky exam questions appear and what
operational knowledge the curriculum leaves out.
Ideal for: technology leaders, policy professionals, GRC
practitioners, and anyone building a credible AI governance
profile.
CAIP
AI Ethics
NIST AI RMF
AI Risk
Enquire about this program →
PECB GDPR Certified Data Protection Officer
Prepares you for the DPO role under GDPR, covering data
protection principles, lawful processing, data subject rights,
DPIA methodology, breach notification, and how to run a DPO
function in practice. We also explore connections to UAE PDPL
and Saudi PDPL for candidates operating across multiple
jurisdictions.
Ideal for: aspiring DPOs, compliance officers, legal counsel
handling data protection, and privacy professionals seeking
formal certification.
GDPR
DPO
UAE PDPL
DPIA
Enquire about this program →
PECB NIS2 Directive Lead Implementer
NIS2 significantly expands the scope of the original NIS
Directive across the EU, with stricter cybersecurity
requirements, incident reporting, and supply chain security
for essential and important entities. The program covers
scoping, risk management, governance obligations, incident
handling, and how NIS2 intersects with ISO 27001 and DORA for
organizations in scope for multiple frameworks.
Ideal for: CISOs and security teams in EU-regulated sectors,
compliance professionals, and advisors supporting NIS2
implementation.
NIS2
EU Directive
Cyber Resilience
Supply Chain
Enquire about this program →
PECB DORA Lead Manager
The Digital Operational Resilience Act applies to financial
entities in the EU, setting requirements for ICT risk
management, incident classification and reporting, threat-led
penetration testing, and third-party ICT risk. The program
covers DORA's full requirements, how they map to ISO 22301 and
ISO 27001, and practical steps financial institutions need to
achieve and maintain compliance.
Ideal for: risk managers, CROs, CISOs, and operational
resilience leads in banking, insurance, investment, and
financial services.
DORA
ICT Risk
Financial Services
Resilience
Enquire about this program →