ISO/IEC 27005 Certified ISMS Risk Management Training Course
Learn How To Maintain ISO/IEC 27001 Best Practice And Compliance
Our 3-day ISO/IEC 27005 Certified ISMS Risk Management training course will equip you to use practical Risk Management Methodologies to mitigate Cyber Security risks and ensure compliance with ISO/IEC 27001
The ISO/IEC 27005 Information Security Risk Management Framework and Process Model
Classification and Identification Of Information Assets
Definition Of Threats To Information Assets
Identification Of The Vulnerabilities These Threats Might Exploit
Risk Analysis: Risk Scoring Using Scales and Simple Calculations
An Introduction To Risk Analysis Tools
Risk Evaluation and Acceptance Strategies
Risk Treatment and The Selection Of Mitigating Control Measures
Review and Continual Improvement Of Risk Assessment and Management
Risk Communications and Consultation
Integrating The ISO/IEC 27005 Information Security Risk Management Framework Into An ISO/IEC 27001 ISMS
ISO/IEC 27005: 2011 is the International Standard that provides guidelines for effective Information Security Risk Management. ISO/IEC 27005 supports the Risk Management approach as specified in ISO/IEC 27001 and is designed to assist the satisfactory implementation of information security based on a risk management approach. Effective Risk Management is widely accepted as being the key to achieving certification and maintaining compliance with ISO/IEC 27001.
About the Course
Our ISO/IEC 27005 Certified ISMS Risk Management classroom-based training course is designed to provide you with the knowledge and skills required to fully implement an effective ISO/IEC 27001 compliant Risk Management programme.
Who Should Attend
Our ISO/IEC 27005 Certified ISMS Risk Management training programme is designed for:
Information Security Managers responsible for ISO/IEC 27005 implementation and maintenance
ISO/IEC 27001 Lead Implementers who wish to develop an effective and practical Risk Management process
Risk Managers who need to understand Information Security Risk Management processes
ISO/IEC 27001 Consultants who wish to advise clients on implementing Information Security Risk Management
ISO/IEC 27005 provides guidelines for Information Security Risk Management which will enable effective management of the Information Security Risks within your organisation.
The standard is now fully aligned with the International Standard for Risk Management, ISO/IEC 31000. Using the two together can enhance the way risks within your organisation are managed effectively.
ISO/IEC 27005 uses the common concepts in ISO/IEC 27001 and ISO/IEC 27002. Using this standard with the others in the ISO/IEC 27000 family will provide an effective Framework for Information Security Management.
By undertaking this course, you will keep your personal or professional skills up to date.
Learn about Best Practice in Information Security Management and apply this within your organisation.
Realise the scope and purpose of the standard and how it can be implemented within an organisation.
There are no formal entry prerequisites, we assume that you have knowledge of the specification and Best Practice as defined in ISO/IEC 27002 and ISO/IEC 27005 standards.
We would recommend reading the ISO/IEC 27005: 2011 standard, it could prove useful and advantageous.