Kurs derzeit nicht verfügbar
Public course 3-day ISO 27005 Risk Manager certification
Kurs
In Eindhoven ()
Beschreibung
-
Kursart
Kurs
-
Niveau
Fortgeschritten
-
Unterrichtsstunden
3h
-
Dauer
3 Tage
The purpose of ISO 27005 (latest update) is to provide guidelines for Information Security Risk Management. ISO 27005 supports the general concepts specified in ISO 27001 and is designed to assist the satisfactory implementation of Information Security based on a Risk Management approach. ISO 27005 does not specify or recommend any specific risk analysis method, although it does specify a structured, systematic and rigorous process from analyzing risks to creating the risk treatment plan. The 3-day Certified ISO 27005 Risk Manager training offers you also knowledge of the concepts, models, processes and terminologies, described in ISO 27001 and ISO 27002, important for a complete understanding of the international ISO 27005 standard.
Hinweise zu diesem Kurs
You will acquire the knowledge necessary for the implementation, management and maintenance of an ongoing Risk Management program.
You will understand the concepts, approaches, standards, methods and techniques, allowing an effective management of risk according to ISO 27005.
You will understand the relationship between the Information Security Management System (ISMS) (including Risk Management), the security controls and how to comply with the requirements of different stakeholders of your organization.
How to interpret the requirements of ISO 27001 on Information Security Risk Management.
How to acquire the competence to implement, maintain and manage an ongoing Information Security Risk Management program according to ISO 27005.
You will acquire the competence to effectively advise organisations / your organization on the best practices in Information Security Risk Management.
Meinungen
Themen
- ISO
- Management
- Risk Management
- Ris
- 270005
- Risikomanagement
- Risikoanalyse
- Risikocontrolling
- IT
Dozenten
IMF Academy (IMF)
IT, Information Technology, Finance, Project Management, Security, Tax
IMF is an independent publisher of distance learning courses and organizer of hot topical classroom based trainings and in-company trainings. Should you have questions of suggestions, please contact us at +31 40 246 02 20 or info@imfacademy.com
Inhalte
DAY I Introduction, Risk Management program, risk identification and assessment according to ISO 27005
- Concepts and definitions related to Risk Management
- Risk Management standards, frameworks and methodologies
- Implementation of an Information Security Risk Management program
- Risk analysis (identification and estimation)
DAY II Risk evaluation, treatment, acceptance, communication and surveillance according to ISO 27005
- Risk assessment
- Risk treatment
- Acceptance of Information Security Risks and Management of residual risks
- Information Security Risk communication
- Information Security Risk monitoring and review
DAY III Introduction to methods of risk assessment
- Introduction to CRAMM (CCTA Risk Analysis and Management Method)
- Introduction to EBIOS (Expression des Besoins et Identification des Objectifs de Security©)
- Introduction to MEHARI (MEthode Harmonise d'Analyse de RIsques)
- Introduction to OCTAVE (Operationally Critical Threat, Asset, and Vulnerability Evaluation)
- Introduction to Microsoft Security Risk Management
- ISO 27005 Certified Risk Manager exam
Public course 3-day ISO 27005 Risk Manager certification