PROKODA Gmbh

      Certified Data Centre Risk Professional - CDRP® (exam included) - Course Language: English

      PROKODA Gmbh
      Online

      1.480 
      Möchten Sie den Bildungsanbieter lieber direkt anrufen?
      0221/... Mehr ansehen

      Wichtige informationen

      Tipologie Seminar
      Methodologie Online
      Beginn nach Wahl
      • Seminar
      • Online
      • Beginn:
        nach Wahl
      Beschreibung


      Förderung durch z.B. Bildungsprämie und NRW-Bildungsscheck möglich
      There is no specific prerequisite for the CDRP® course. However, participants who have at least three years experience in a data centre and/or IT infrastructures will be best suited. This experience may come from a business or IT background where the participant has knowledge of both environments, and understands the mission of their organisation. Attendance of CDCP® is beneficial but not a requirement.Kurssprache: DeutschSchulungsunterlagen: EnglischPrüfungsspra

      Einrichtungen (1)
      Wo und wann
      Beginn Lage
      nach Wahl
      Online
      Beginn nach Wahl
      Lage
      Online

      Zu berücksichtigen

      · An wen richtet sich dieser Kurs?

      The primary audience for this course is any IT, facilities or data centre operations professional who works in and around the data centre and who has the responsibility to achieve and improve the availability and manageability of the data centre. This represents both end-customers and/or service providers/facilitators. It is highly recommended for Data Centre Managers, Operations/ Floor/Facility Managers, IT Managers, Information Security Managers, Security Professionals, Auditors, Risk Managers/Professionals responsible for IT/corporate governance.

      Fragen & Antworten

      Teilen Sie Ihre Fragen und andere User können Ihnen antworten

      Was lernen Sie in diesem Kurs?

      ISO
      Organisation
      Management
      Risk Management
      IT

      Themenkreis

      Risk management is the process of identifying vulnerabilities and associated threats, followed by estimating the level of risk and its impact on the organisation. Based on international standards (ISO/IEC27001) and guidelines (ISO/IEC 27005, NIST800-30, ISO/IEC 31000), the Certified Data Centre Risk Professional course is a two-day course designed to expose attendants to the overall risk management process.Focus is on the data centre infrastructure, the physical data centre facility and equipment. The attendant will learn how to identify and quantify risk in their organisation, creating the ability to reduce the risk to a level acceptable for the organisation to allow them to make sound investment decisions based on facts rather than emotions. CDRP® is a must for every organisation that wants to manage their risk without over spending.After completion of the course the participant will be able to:Understand the different standards and methodologies for risk management and assessmentEstablish the required project team for risk managementPerform the risk assessment, identifying current threats, vulnerabilities and the potential impact based on customised threat cataloguesReport on the current risk level of the data centre both quantitative and qualitativeAnticipate and minimise potential financial impacts Understand the options for handling riskContinuously monitor and review the status of risk present in the data centreReduce the frequency and magnitude of incidentsDetect and respond to events when they occurMeet regulatory and compliance requirementsSupport certification processes such as ISO/IEC 27001Support overall corporate and IT governanceInhalteIntroduction to Risk ManagementRisk management conceptsSenior management and riskEnterprise Risk Management (ERM)Benefits of risk managementData Centre Risk and ImpactRisk in facility, power, cooling, fire suppression, infrastructure and IT servicesImpact of data centre downtimeMain causes of downtimeCost factors in downtimeStandards, Guidelines and MethodologiesISO/IEC 27001:2013, ISO/IEC 27005:2011,ISO/IEC 27002:2013NIST SP 800-30ISO/IEC 31000:2009SS507:2008ANSI/TIA-942Other methodologies (CRAMM, EBIOS, OCTAVE, etc.)Risk Management DefinitionsAssetAvailability/Confidentiality/IntegrityControlInformation processing facilityInformation securityPolicyRiskRisk analysis/Risk assessment/Risk evaluation/Risk treatmentThreat/VulnerabilityTypes of riskRisk Assessment SoftwareThe need for softwareAutomationConsiderationsRisk Management ProcessThe risk management processEstablishing the contextIdentificationAnalysisEvaluationTreatmentCommunication and consultationMonitoring and reviewProject ApproachProject management principlesProject management methodsScopeTimeCostCost estimate methodsContext EstablishmentGeneral considerationsRisk evaluation, impact and acceptance criteriaSeverity rating of impactOccurrence rating of probabilityScope and boundariesScope constraintsRoles & responsibilitiesTraining, awareness and competenceRisk Assessment - IdentificationThe risk assessment processIdentification of assetsIdentification of threatsIdentification of existing controlsIdentification of vulnerabilitiesIdentification of consequencesHands-on exercise: Identification of assets, threats, existing controls, vulnerabilities and consequencesRisk Assessment - Analysis and EvaluationRisk estimationRisk estimation methodologiesAssessment of consequencesAssessment of incident likelihoodLevel of risk estimationRisk evaluationHands-on exercise: Assessment of consequences,probability and estimating level of riskRisk TreatmentThe risk treatment process stepsRisk Treatment Plan (RTP)Risk modificationRisk retentionRisk avoidanceRisk sharingConstraints in risk modificationControl categoriesControl examplesCost-benefit analysisControl implementationResidual riskCommunicationEffective communication of risk management activitiesBenefits and concerns of communicationRisk Monitoring and ReviewOngoing monitoring and reviewCriteria for reviewRisk scenariosRisk assessment approachData centre site selectionData centre facilityCloud computingUPS scenariosForce majeureOrganisational shortcomingsHuman failureTechnical failureDeliberate actsExamSample questionsSelf study (time permitted)Exam: Certified Data Centre Risk Professional

      Vergleichen Sie und treffen Sie die beste Wahl:
      Mehr ansehen