Programa del Curso

Day 1 Introduction to ISO/IEC 27005 and implementation of a risk management programme

  • Course objectives and structure
  • Standard and regulatory framework
  • Concepts and definitions of risk
  • Risk management programme
  • Context establishment

Day 2 Information security risk assessment, risk treatment and acceptance as specified in ISO/IEC 27005

  • Risk identification
  • Risk analysis
  • Risk evaluation
  • Risk assessment with a quantitative method
  • Risk treatment
  • Information security risk acceptance

Day 3 Risk communication, consultation, monitoring, review and risk assessment methods

  • OCTAVE method
  • MEHARI method
  • EBIOS method
  • Harmonized Threat and Risk Assessment (TRA) method
  • Applying for certification and closing the training

Requerimientos

A fundamental understanding of ISO/IEC 27005 and comprehensive knowledge of Risk Assessment and Information Security.

  21 horas
 

Número de participantes


Comienza

Termina


Las fechas están sujetas a disponibilidad y tienen lugar entre 09:30 y 16:30.
Los cursos de formación abiertos requieren más de 5 participantes.

Testimonios (1)

Cursos Relacionados

ISO/IEC 27005 Foundation

  14 horas

ISO/IEC 27005 Lead Risk Manager

  35 horas

Categorías Relacionadas