Course Code

iso27005man
 

     Duration

21 Hours
 
 

     Requirements

A fundamental understanding of ISO/IEC 27005 and comprehensive knowledge of Risk Assessment and Information Security.

 

     Overview

ISO/IEC 27005 Risk Manager training enables you to develop the competence to master the risk management process related to all assets of relevance for Information Security using the ISO/IEC 27005 standard as a reference framework.

During this training course, you will also gain a thorough understanding of best practices of risk assessment methods such as OCTAVE, EBIOS, MEHARI and harmonized TRA. This training course corresponds with the implementation process of the ISMS framework presented in the ISO/IEC 27001 standard.

After understanding all the necessary concepts of Information Security Risk Management based on ISO/IEC 27005, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27005 Risk Manager” credential. By holding a PECB Risk Manager Certificate, you will be able to demonstrate that you have the necessary skills and knowledge to perform an optimal Information Security Risk Assessment and timely manage Information Security risks.

Who should attend?

  • Information Security risk managers
  • Information Security team members
  • Individuals responsible for Information Security, compliance, and risk within an organization
  • Individuals implementing ISO/IEC 27001, seeking to comply with ISO/IEC 27001 or involved in a risk management program
  • IT consultants
  • IT professionals
  • Information Security officers
  • Privacy officers

Examination - Duration: 2 hours

The “PECB Certified ISO/IEC 27005 Risk Manager” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains:

  • Domain 1 Fundamental principles and concepts of Information Security Risk Management
  • Domain 2 Implementation of an Information Security Risk Management program
  • Domain 3 Information Security risk management framework and process based on ISO/IEC 27005
  • Domain 4 Other Information Security risk assessment methods

General information

  • Certification fees are included on the exam price
  • Training material containing over 350 pages of information and practical examples will be distributed
  • A participation certificate of 21 CPD (Continuing Professional Development) credits will be issued
  • In case of exam failure, you can retake the exam within 12 months for free
 

     Course Outline

Day 1 Introduction to ISO/IEC 27005 and implementation of a risk management programme

  • Course objectives and structure
  • Standard and regulatory framework
  • Concepts and definitions of risk
  • Risk management programme
  • Context establishment

Day 2 Information security risk assessment, risk treatment and acceptance as specified in ISO/IEC 27005

  • Risk identification
  • Risk analysis
  • Risk evaluation
  • Risk assessment with a quantitative method
  • Risk treatment
  • Information security risk acceptance

Day 3 Risk communication, consultation, monitoring, review and risk assessment methods

  • OCTAVE method
  • MEHARI method
  • EBIOS method
  • Harmonized Threat and Risk Assessment (TRA) method
  • Applying for certification and closing the training
 

     Feedback (6)

I liked the in-depth knowledge about the subject of the trainer, good explanation, highlighting important things!.

Andreas Rhein


The delivery

- Department for Communities


Depth and breadth of the course. Trainer was excellent also.

- Department for Communities


Examples provided

- Department for Communities


Trainer's vast knowledge

FUJITSU TECHNOLOGY SOLUTIONS SP. Z O.O.


Martin was very knowledgeable and gave really good tips; he allowed plenty of time for discussion and allowing us to ask questions. It was really well delivered, even virtually which sometimes is a difficult medium to work with.

Kewal Rai - Knowledgepool Group Ltd


The course could be tailored to suit your needs and objectives. It can also be delivered on your premises if preferred.


  
  
  


  

Online Price per participant 6000 AED

  

Classroom Price per participant 6000 AED

Starts

 

Ends

 

  Workday courses take place between 9:30 and 16:30

Location


  Show venue details


Number of Participants






Related Courses

Total Courses 2


 

Introduction to ISO27001

  7 hours

ISO 26262 Automotive Functional Safety

  28 hours

ISO/IEC 27001 Foundation

  14 hours

ISO/IEC 27002 Introduction

  7 hours

ISO 27002 Lead Manager

  35 hours

ISO/IEC 27005 Foundation

  14 hours

ISO/IEC 27005 Introduction

  7 hours

ISO/IEC 27005 Lead Risk Manager

  35 hours

ISO/IEC 27001 Lead Implementer

  35 hours

ISO/IEC 27701 Lead Auditor

  35 hours

ISO 9001 Foundation

  14 hours

ISO 9001 Lead Auditor

  35 hours

ISO 9001 Lead Implementer

  35 hours

QMS Auditor / Lead Auditor (ISO 9001)

  21 hours

 

IBM Qradar SIEM: Beginner to Advanced

  14 hours



Discounted Public Courses



This site in other countries/regions