ISO 27005
ISO 27005 Lead IT Risk Manager Training Course
4.5
853 enrolled on this course
Last updated Nov 2024
ISO 27005 Lead IT Risk Manager Course Features
4 days instructor led training by expert instructors.
Access to LMS study materials
Exam prep question bank
Session recording access
Free retake for exam Action
Continual Improvement
Learning objectives of ISO 27005 Lead IT Risk Manager Training
- Risk management concepts and principles based on ISO/IEC 27005 and ISO 31000
- Establish, maintain, and continually improve an information security risk management framework
- Apply information security risk management processes based on the guidelines of ISO/IEC 27005
- Plan and establish risk communication and consultation activities.
- Record, report, monitor, and review the information security risk management process and framework
Target audience for ISO 27005 Lead IT Risk Manager Course
- IT Risk Managers, IT and network professionals
Prerequisites:
ISO 27005 Exam Preparation and Certification information
-
Questions - 70 MCQ Questions
-
Duration - 2.5 Hours
-
Pass Marks - 55%
-
Closed book exam
-
Online proctored
-
Free second attempt
ISO 27005 Lead IT Risk Manager Certification Journey
Other Important Information
- No Labs
- Course Materials will be provided
- Exercises and Case scenario-based quiz
- Mock Audits
Course Outline
- Overview of the information security risk management process
- Context establishment (Risk management approach, Risk evaluation criteria, Impact criteria, Risk acceptance criteria)
- Scope and boundaries. Organization for information security risk management
- Information security risk assessment
- Risk identification, Identification of assets, Identification of threats, Identification of existing controls, Identification of vulnerabilities, Identification of consequences
- Risk analysis (Quantitative and Qualitative), Assessment of consequences, Assessment of incident likelihood, Level of risk determination
- Risk evaluation
- Information security risk treatment
- Risk modification, risk retention, risk avoidance and risk sharing
- Information security risk acceptance
Student feedback
Reviews