ISO 27005 Risk Manager | (session: 0)
Duration : 1 Day
Descriptions:
The
‘ISO/IEC 27005 Risk Manager’ course will enable you to develop the skills
needed to master the risk management processes related to all assets relevant
to information security, using the ISO/IEC 27005 standard as a reference
framework. During the course, you will also gain an in-depth understanding of
best practice risk assessment methods such as OCTAVE, EBIOS, MEHARI and the
Harmonised TRA. This course fits in perfectly with the process of implementing
the ISMS framework set out in the ISO/IEC 27001 standard.
Once you have understood all the
necessary concepts of information security risk management based on the ISO/IEC
27005 standard, you can sit the exam and apply for ‘PECB Certified ISO/IEC
27005 Risk Manager’ certification. By holding a PECB Risk Manager certificate,
you will be able to demonstrate that you have the skills and knowledge required
to carry out an optimal information security risk assessment and manage
information security risks within the required timeframe.
Training objective :
- Acquire the expertise needed to
responsibly manage an information security risk management process
- Acquire in-depth knowledge of
the specifics of information security risk management as part of an
overall enterprise risk management programme
- Acquire the skills needed to
support the effective implementation of an information security risk
management process within an organisation
Audience :
- Information security managers
- Members of an information
security team
- Any individual responsible for
information security, compliance and risk in an organisation
- Any individual implementing
ISO/IEC 27001, wishing to comply with the standard
- ISO/IEC 27001 or involved in a
risk management programme
- IT consultants
- IT professionals
- Data protection officers
- IT auditors wishing to enhance
their knowledge of information security risk management
Prerequisites for taking the course :
Fundamental
knowledge of business risk management
Training content :
- Day
1-
Introduction to the ISO/IEC 27005 compliant risk management programme
- Day
2- Implementation
of an ISO/IEC 27005 compliant risk management process
- Day
3-
Overview of other information security risk assessment methods and
certification exam
Certificate of Participation :
YES
Certificate of Competency :
YES