Course Outline

1. Introduction to risk management

2. Risk assessment methodologies

3. The ISO 27005 information security risk management framework and process model

4. Classification and identification of information assets

5. Definition of threats to information assets

6. Identification of the vulnerabilities these threats might exploit

7. Risk analysis: risk scoring using scales and simple calculations

8. An introduction to risk analysis tools

9. Risk evaluation and acceptance strategies

10. Risk treatment and the selection of mitigating control measures

11. Review and continual improvement of risk assessment and management

12. Risk communications and consultation

13. Integrating the ISO 27005 information security risk management framework into an ISO 27001 ISMS
  21 Hours
 

Need help picking the right course?
Call us +971 4871 6715

Testimonials

I liked the in-depth knowledge about the subject of the trainer, good explanation, highlighting important things!.

Andreas Rhein

The delivery

- Department for Communities

Depth and breadth of the course. Trainer was excellent also.

- Department for Communities

Examples provided

- Department for Communities

Trainer's vast knowledge

FUJITSU TECHNOLOGY SOLUTIONS SP. Z O.O.

Martin was very knowledgeable and gave really good tips; he allowed plenty of time for discussion and allowing us to ask questions. It was really well delivered, even virtually which sometimes is a difficult medium to work with.

Kewal Rai - Knowledgepool Group Ltd

Related Courses

Certified Chief Information Security Officer (CCISO)

  35 hours
EC-Council’s CCISO Program has certified leading information security professionals around the world. A core group of high-level information security executives, the CCISO Advisory Board, contributed by forming the foundation of the program
Read More...

CISA - Certified Information Systems Auditor

  28 hours
Description: CISA® is the world-renowned and most popular certification for professionals working in the field of IS audit and IT risk consulting. Our CISA course is an intense, very competitive and exam focused training course. With
Read More...

Open Data Risk Analysis and Management

  21 hours
Open Data is a concept of making data available to everyone for use without restrictions. This instructor-led, live training (online or onsite) focuses on analyzing the risks of Open Data while reducing vulnerability to disaster or data
Read More...

Business Continuity Management

  35 hours
Description: This is a 'Practitioner' course and leans heavily on practical exercises designed to reinforce the concepts being taught and to build the delegates' confidence in implementing business continuity management. The course is
Read More...

Snyk

  14 hours
Snyk is a developer security platform that provides tools for scanning, prioritizing, and fixing security vulnerabilities in configuring codes, container images, open-source dependencies, and Infrastructure as a Code (IaC). This instructor-led,
Read More...

CISM - Certified Information Security Manager

  28 hours
Description: Disclaimer: Please be advised that this updated CISM exam content outline is applicable to exams starting 1 June 2022. CISM® is the most prestigious and demanding qualification for Information Security Managers around the
Read More...

CISMP - Certificate in Information Security Management Principles

  21 hours
A thorough, practical, 3 day course designed to provide the knowledge and skills required to manage information security, information assurance or information risk based processes. The CISMP course is aligned with the latest national
Read More...

Cybersecurity Fundamentals

  28 hours
Description: Cybersecurity skills are in high demand, as threats continue to plague enterprises around the world. An overwhelming majority of professionals surveyed by ISACA recognise this and plan to work in a position that requires
Read More...

Public Key Infrastructure

  21 hours
The training is directed to all operating systems administrators, who plan to implement a public key infrastructure based on MS Windows Server 2012 R2 and plan to use qualified electronic signature certificates.  The participants will learn
Read More...

CRISC - Certified in Risk and Information Systems Control

  21 hours
Description: This class is intended as intense and hard core exam preparation for ISACA’s Certified Information Systems Auditor (CRISC) Examination. The latest four (4) domains of ISACA’s CRISC syllabus will be covered with a big
Read More...

DevOps Security: Creating a DevOps Security Strategy

  7 hours
DevOps is a software development approach that aligns application development with IT operations. Some of the tools that have emerged to support DevOps include: automation tools, containerization and orchestration platforms. Security has not kept up
Read More...

HiTrust Common Security Framework Compliance

  14 hours
HiTrust (Health Information Trust) is an organization composed of representatives in the healthcare industry. HiTrust CSF (Common Security Framework) is a set of standards that helps organizations meet the requirements for security compliance and
Read More...

NB-IoT for Developers

  7 hours
NB-IoT allows IoT devices to operate over carrier networks such as GSM and "guard bands" between LTE channels. NB-IoT needs only 200kHz of bandwidth and can efficiently connect large numbers of endpoint devices (up to 50,000 per
Read More...

IBM Qradar SIEM: Beginner to Advanced

  14 hours
IBM Qradar SIEM is a security analytic suite for gaining insight into critical threats. Using IBM Qradar SIEM, users can gain insights, identify threats, and automate security intelligence. This instructor-led, live training (online or onsite) is
Read More...