Search courses 👉
Corporate Training for Teams

ISO/IEC 27005:2018 Information Security Risk Management

BSI Training, Nationwide
Length
2 days
Next course start
Inquire for more information. See details
Course delivery
In Company
Length
2 days
Next course start
Inquire for more information. See details
Course delivery
In Company
Leave your details so the provider can get in touch

Course description

Organizations todays recognize the importance of adopting a robust risk management programme. This course builds on what you already know about the framework specified in ISO/IEC 27001, which is now expanding to ISO/IEC 27005:2018.

This two-days training will equip you with practical guidance to manage information security risks. It will help you to review your existing risk management and ensure the measures are robust enough to reduce the identified risks. You will leave able to prioritize effectively and choose appropriate risk treatments within your organization.

Upcoming start dates

1 start date available

Inquire for more information.

  • In Company
  • United Kingdom

Suitability - Who should attend?

Anyone who wants to learn about:

  • Identifying and analysing information security risks
  • How risks can be evaluated
  • What treatments, controls and measures can be implemented in order to mitigate risks
  • Ongoing governance and risk monitoring processes

The course is applicable to individuals from any size or type of organization who are currently involved in (or will be in the future) planning, implementing, maintaining, supervising or assessing information security, as part of an ISO/IEC 27001 ISMS or a standalone system.

Prerequisites

You should have a basic knowledge of ISO/IEC 27001 and ISO/IEC 27002, as well as an understanding of the key principles of an ISMS.

We also recommend that you have an awareness of generic risk assessments and a basic understanding of information security principles and terminology.

Some delegates on this course will have already attended our Information Security Management System (ISMS) Requirements of ISO 27001 or Information Security Management System (ISMS) Implementing ISO/IEC 27001 course.

We also recommend delegates have an understanding of the risk assessment approach currently employed in their organizations, should one exist.

Outcome / Qualification etc.

  • Identify benefits associated with using ISO/IEC 27005:2018, as part of an information security management system (ISMS)
  • Understand the best practice risk management processes contained in ISO/IEC 27005:2018
  • Develop processes for assessing and managing the risks related to your organization’s information assets

Training Course Content

By the end of this course delegates will be able to:

  • Explain concepts specific to information risk management, including terms and definitions
  • Recognize typical information security risks faced by organizations
  • Identify typical information security risk management concerns
  • Communicate ISO/IEC 27005:2018 introduction, background, purpose, scope and structure
  • Explain how ISO/IEC 27005:2018 integrates and interfaces with other standards, such as ISO/IEC 27001
  • Implement the topics covered in ISO/IEC 27005:2018 within your organization
  • Determine the value of the information assets under your control
  • Evaluate threats to information assets
  • Identify, analyze and evaluate information security risks
  • Prioritize and choose appropriate risk treatments

Request info

Contact form

Tell us what kind of professional training you're looking for and we'll put you in touch with relevant training providers who will send you a quote.
Country *

reCAPTCHA logo This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
BSI Training
Kitemark Court, Davy Avenue, Knowlhill
MK5 8PP Milton Keynes

BSI, the British Standards Institution, is one of the world’s leading providers of training, certification, standards, regulatory approval, business improvement and management development for local and global audiences.

Our expert teams provide top quality training to organizations of all sizes and every type of industry - ranging from leading multinationals to small, innovative start-ups and from governments to charities. From understanding how a standard can help your business,...

Read more and show all courses with this provider

Ads