Deze training is klassikaal maar desgewenst ook Live Online bij te wonen. Je volgt de training dan live op afstand met onze eigen docent, kijkt mee met de slides en aantekeningen op het whiteboard en kunt vragen stellen aan zowel de trainer als je mede-cursisten. Eigenlijk dus gewoon alsof je bij de klassikale training aanwezig bent, maar dan vanaf je eigen locatie. Mocht de training Live Online toch niet helemaal naar wens zijn geweest, dan mag je deze binnen een jaar kosteloos nogmaals klassikaal bij ons bijwonen.

This three day intensive course participants develop the competence to master the basic risk management elements related to all assets of relevance for information security using the ISO/IEC 27005:2022 standard as a reference framework. Based on practical exercises and case studies, participants acquire the necessary knowledge and skills to perform an optimal information security risk assessment and manage risks in time by being familiar with their life cycle.

During this training, we will also present other risk assessment methods such as OCTAVE, EBIOS, MEHARI and Harmonized TRA. This training fits perfectly with the implementation process of the ISMS framework in ISO/IEC 27001 standard.

Wat kan ik na deze training?

  • To understand the concepts, approaches, methods and techniques allowing an effective risk management according to ISO/IEC 27005
  • To interpret the requirements of ISO/IEC 27001 on information security risk management
  • To understand the relationship between the information security risk management, the security controls and the compliance with the requirements of different stakeholders of an organization
  • To acquire the competence to implement, maintain and manage an ongoing information security risk management program according to ISO/IEC 27005
  • To acquire the competence to effectively advise organizations on the best practices in information security risk management

Voor wie is de ISO 27005 Certified Risk Manager training geschikt?

Verantwoordelijken in een organisatie voor Risk Management of Informatiebeveiliging, IT (Security) Consultants of Adviseurs, personen die zich bezighouden met ISO 27001 implementatie(s)

Duur training

3 dagen

Examen en Certificering

Door te slagen voor het schriftelijke “ISO/IEC 27005:2018 Certified Risk Manager” examen dat op de laatste dag van de training wordt afgenomen, behaal je de bijbehorende Certified Risk Manager certificering van PECB. 

Globale inhoud

  • Domain 1: Principles for good Risk Management in Information Security
  • Domain 2: Evaluate-Direct-Monitor risk management in information security
  • Domain 3: Guidance for risk management in information security
  • Domain 4: Evaluate the need and applicability of each principle
  • Domain 5: Direct the adherence to each principle
  • Domain 6: Monitor all key activities related to all the principles

Day 1: Introduction, risk management program according to ISO/IEC 27005

  • Concepts and definitions related to risk management
  • Risk management standards, frameworks and methodologies
  • Implementation of an information security risk management program
  • Understanding an organization and its context

Day 2: Risk identification and assessment, risk evaluation, treatment, acceptance, communication and surveillance according to ISO/IEC 27005

  • Risk identification
  • Risk analysis and risk evaluation
  • Risk assessment with a quantitative method
  • Risk treatment
  • Risk acceptance and residual risk management
  • Information Security Risk Communication and Consultation
  • Risk monitoring and review

Day 3: Overview of other information security risk assessment methods and Certification Exam

  • Presentation of OCTAVE method
  • Presentation of MEHARI method
  • Presentation of EBIOS method
  • Presentation of Harmonized TRA method
  • Certification Exam

 

Rooster komende maanden:

Datum13 - 15 januari 2025inschrijven
LocatieVeenendaal & Live Online
Datum6 - 8 mei 2025inschrijven
LocatieVeenendaal & Live Online
DatumIn overleginschrijven
Locatie

Cursisten over deze cursus:

Geen testimonials gevonden.

rhino cloud cloud

Scherpste prijs in slechts 2 stappen

Meer informatie en/of de actuele prijs van deze training opvragen is zo geregeld. We houden hierbij rekening met eventuele lopende acties, subsidies of relatiekortingen.

1 van 2 Stap 2
2 van 2

Inschrijven

Facturatiegegevens

Gegevens Cursist

* Verplicht