Flat Preloader Icon

ISO/IEC 27005 Information Security Risk Management

1. Brief Description:

The ISO/IEC 27005 Risk Manager training course enables participants to understand the process of developing, establishing, maintaining, and improving an information security risk management framework based on the guidelines of ISO/IEC 27005.

2. Key Topics:

The ISO/IEC 27005 Risk Manager training course provides valuable information on risk management concepts and principles outlined by ISO/IEC 27005. The training course provides participants with the necessary knowledge and skills to identify, evaluate, analyze, treat, and communicate information security risks based on ISO/IEC 27005. Furthermore, the training course provides an overview of other best risk assessment methods, such as OCTAVE, MEHARI, EBIOS, NIST, CRAMM, and Harmonized TRA.

3. Audience:

The ISO/IEC 27005 Risk Manager training course is intended for:

  • Managers or consultants involved in or responsible for information security in an organization
  • Individuals responsible for managing information security risks  
  • Members of information security teams, IT professionals, and privacy officers
  • Individuals responsible for maintaining conformity with the information security requirements of ISO/IEC 27001 in an organization
  • Project managers, consultants, or expert advisers seeking to master the management of information security risks

4. Learning Objectives:

The main learning objectives of the ISO 27005 Information Security Risk Management Risk Manager course are to provide learners with the knowledge and skills to:

  • Explain the risk management concepts and principles outlined by ISO/IEC 27005 and ISO 31000
  • Establish, maintain, and improve an information security risk management framework based on the guidelines of ISO/IEC 27005 
  • Apply information security risk management processes based on the guidelines of ISO/IEC 27005
  • Plan and establish risk communication and consultation activities

More Details

Day 1: Introduction to ISO/IEC 27005 and risk management

Day 2: Risk assessment, risk treatment, and risk communication and consultation based on ISO/IEC 27005

Day 3: Risk recording and reporting, monitoring and review, and risk assessment methods

Fees for certification and assessments are incorporated into the cost of the course. ConimCert will provide a comprehensive set of educational materials that include explanations, guidance, and practical examples. Upon finishing the course, participants will receive a statement verifying their accomplishment, which carries a noteworthy amount of CPD (Continuing Professional Development) credits. If a student does not pass the exam, they have the option to retry within a year at no additional charge. For more details, feel free to reach out to us at events@conimcert.com.

Exam duration: 1 hours

Exam type: Test

Exam format: Computer based

Exam premise: Conimcert premise 

Retake: Yes

Retake period:

Open book: Yes

Additional Information