Course Outline

Day 1 Introduction to ISO 27005, concepts and implementation of a risk management program

  • Section 01: Course objectives and structure
  • Section 02: Standard and regulatory framework
  • Section 03: Concepts and definitions of risk
  • Section 04: Implementing a risk management programme
  • Section 05: Context establishment

Day 2 Risk identification, evaluation, and treatment as specified in ISO 27005

  • Section 06: Risk Identification
  • Section 07: Risk Analysis
  • Section 08: Risk Evaluation
  • Section 09: Risk Assessment with a quantitative method
  • Section 10: Risk Treatment

Day 3 Information Security Risk Acceptance, Communication, Consultation, Monitoring and Review

  • Section 11: Information security risk acceptance
  • Section 12: Information security risk communication and consultation
  • Section 13: Information security risk monitoring and review

Day 4 Risk Assessment Methodologies

  • Section 14: OCTAVE Method
  • Section 15: MEHARI Method
  • Section 16: EBIOS Method
  • Section 17: Harmonized Threat and Risk Assessment (TRA) Method
  • Section 18: Applying for certification and closing the training

Day 5 Certification Exam

Requirements

A fundamental understanding of ISO/IEC 27005 and comprehensive knowledge of Risk Assessment and Information Security.
  35 Hours
 

Need help picking the right course?
Call us +971 4871 6715

Testimonials

I liked the in-depth knowledge about the subject of the trainer, good explanation, highlighting important things!.

Andreas Rhein

The delivery

- Department for Communities

Depth and breadth of the course. Trainer was excellent also.

- Department for Communities

Examples provided

- Department for Communities

Trainer's vast knowledge

FUJITSU TECHNOLOGY SOLUTIONS SP. Z O.O.

Martin was very knowledgeable and gave really good tips; he allowed plenty of time for discussion and allowing us to ask questions. It was really well delivered, even virtually which sometimes is a difficult medium to work with.

Kewal Rai - Knowledgepool Group Ltd

Related Courses

Introduction to ISO27001

  7 hours
This is a one day Introduction to ISO27001
Read More...

ISO 26262 Automotive Functional Safety

  28 hours
ISO 26262 defines the requirements for functional safety in the automotive sector. This instructor-led, live training (online or onsite) is aimed at automotive professionals who wish to implement the ISO 26262 standard within their
Read More...

ISO/IEC 27001 Foundation

  14 hours
Why should you attend? ISO/IEC 27001 Foundation training allows you to learn the basic elements to implement and manage an Information Security Management System as specified in ISO/IEC 27001. During this training course, you will be able to
Read More...

ISO/IEC 27002 Introduction

  7 hours
Why should you attend? ISO/IEC 27002 Introduction training course enables you to comprehend the Information Security Management Systems and Information Security Controls as specified in ISO/IEC 27002. By attending the ISO/IEC 27002
Read More...

ISO 27002 Lead Manager

  35 hours
ISO/IEC 27002 Lead Manager training enables you to develop the necessary expertise and knowledge to support an organization in implementing and managing Information Security controls as specified in ISO/IEC 27002.  After completing this
Read More...

ISO/IEC 27005 Foundation

  14 hours
ISO/IEC 27005 Foundation training enables you to learn the basic elements to manage Information Security Risks as specified in ISO/IEC 27005. During this training course, you will be able to understand the concepts and models of Information
Read More...

ISO/IEC 27005 Introduction

  7 hours
Why should you attend? ISO/IEC 27005 training course enables you to comprehend the basic concepts of Information Security Risk Management by using the standard ISO/IEC 27005 as a reference framework. By attending the ISO/IEC 27005
Read More...

ISO/IEC 27005 Risk Manager

  21 hours
ISO/IEC 27005 Risk Manager training enables you to develop the competence to master the risk management process related to all assets of relevance for Information Security using the ISO/IEC 27005 standard as a reference
Read More...

ISO/IEC 27001 Lead Implementer

  35 hours
Information security threats and attacks increase and improve constantly. The best form of defense against them is the proper implementation and management of information security controls and best practices. Information security is also a key
Read More...

ISO/IEC 27701 Lead Auditor

  35 hours
The ISO/IEC 27701 Lead Auditor training course enables you to develop the necessary skills to perform a Privacy Information Management System (PIMS) audit by applying widely recognized audit principles, procedures and techniques. Why should you
Read More...

ISO 9001 Foundation

  14 hours
ISO 9001 Foundation training enables you to learn the basic elements to implement and manage a Quality Management System (QMS) as specified in ISO 9001. During this training course, you will be able to understand the different modules of a QMS,
Read More...

ISO 9001 Lead Auditor

  35 hours
The ISO 9001 Lead Auditor training enables you to develop the necessary expertise to perform a Quality Management System (QMS) audit by applying widely recognized audit principles, procedures and techniques. During this training course,
Read More...

ISO 9001 Lead Implementer

  35 hours
ISO 9001 Lead Implementer training enables you to develop the necessary expertise to support an organization in establishing, implementing, managing and maintaining a Quality Management System (QMS) based on ISO 9001. During this training
Read More...

QMS Auditor / Lead Auditor (ISO 9001)

  21 hours
QMS Auditor / Lead Auditor (ISO 9001) training course explains what a QMS (Quality Management System) needs to accomplish. It also explains the requirements of a successful QMS Audit. These requirements serve as the basis of Continuous Improvement
Read More...

IBM Qradar SIEM: Beginner to Advanced

  14 hours
IBM Qradar SIEM is a security analytic suite for gaining insight into critical threats. Using IBM Qradar SIEM, users can gain insights, identify threats, and automate security intelligence. This instructor-led, live training (online or onsite) is
Read More...