Course Code



21 Hours




This course will give you the skills to build up information security according to ISO 27005, which is dedicated to information security risk management based on ISO 27001.


     Course Outline

1. Introduction to risk management

2. Risk assessment methodologies

3. The ISO 27005 information security risk management framework and process model

4. Classification and identification of information assets

5. Definition of threats to information assets

6. Identification of the vulnerabilities these threats might exploit

7. Risk analysis: risk scoring using scales and simple calculations

8. An introduction to risk analysis tools

9. Risk evaluation and acceptance strategies

10. Risk treatment and the selection of mitigating control measures

11. Review and continual improvement of risk assessment and management

12. Risk communications and consultation

13. Integrating the ISO 27005 information security risk management framework into an ISO 27001 ISMS


     Feedback (6)

I liked the in-depth knowledge about the subject of the trainer, good explanation, highlighting important things!.

Andreas Rhein

The delivery

- Department for Communities

Depth and breadth of the course. Trainer was excellent also.

- Department for Communities

Examples provided

- Department for Communities

Trainer's vast knowledge


Martin was very knowledgeable and gave really good tips; he allowed plenty of time for discussion and allowing us to ask questions. It was really well delivered, even virtually which sometimes is a difficult medium to work with.

Kewal Rai - Knowledgepool Group Ltd

The course could be tailored to suit your needs and objectives. It can also be delivered on your premises if preferred.



Online Price per participant 6000 AED


Classroom Price per participant 6000 AED





  Workday courses take place between 9:30 and 16:30


  Show venue details

Number of Participants

Related Courses

Total Courses 7

Information Security Risk

Information Security Risk

What is Information Security Risk?

CISA - Certified Information Systems Auditor

  28 hours

Open Data Risk Analysis and Management

  21 hours

Business Continuity Management

  35 hours

Security Management

Security Management

What is Security Management?

CISM - Certified Information Security Manager

  28 hours

CISMP - Certificate in Information Security Management Principles

  21 hours

Computer Room Security and Maintenance

  14 hours

Cybersecurity Fundamentals

  21 hours

Network Penetration Testing

  35 hours

Public Key Infrastructure

  21 hours

CRISC - Certified in Risk and Information Systems Control

  21 hours


DevOps Security: Creating a DevOps Security Strategy

  7 hours

Corporate Compliance

Corporate Compliance

What is Corporate Compliance?

HiTrust Common Security Framework Compliance

  14 hours

NB-IoT for Developers

  7 hours


IBM Qradar SIEM: Beginner to Advanced

  14 hours

Discounted Public Courses

This site in other countries/regions