Risk Management Training Code: CIRM/105
Risk Management Course Dates: See Course Schedule
Risk Management Training Duration: 5 days
Risk Management Course Fee: Contact us for current prices
Risk Management Training Course Description
This training course on Risk Management is intended for (but not limited to) those who are involved in the areas of information security and information assurance.
The Risk Management training contains a number of practical sessions, designed to build on the ‘taught’ components of the course, and to encourage debate and the sharing of knowledge and experience between students.
The Risk Management training course promotes a hands-on approach to Information Risk Management, making use of current international standards, enabling students to make immediate use of the training on their return to their organisations.
Risk Management Training Course Objectives
On completion of the Risk Management training, delegates will have a detailed understanding of :
- How the management of information risk will bring about significant business benefits
- How to explain and make full use of information risk management terminology
- How to conduct threat and vulnerability assessments, business impact analyses and risk assessments
- The principles of controls and risk treatment
- How to present the results in a format which will form the basis of a risk treatment plan
- The use of information classification schemes
Target audience of the Risk Management Training
- Individuals responsible for risk analysis and management of information systems
- Individuals who need to understand information risk analysis, assessment and management
- Those needing to make business risk decisions according to the principles of corporate governance
- Security and risk management personnel; business managers; risk decision makers; project and programme managers
Risk Management Training Course Prerequisites
A general understanding of information assurance; no formal qualifications required
Risk Management Course synopsis
Concepts & Importance of Information Risk Management
- The need for information risk management
- The context of risk in the business
- Review of information security fundamentals
The Information Risk Management environment
- Developing an information risk management strategy
- Information risk management, risk assessment and risk treatment
- Assets
- Information risk management terminology
Stages of Information Risk Management
- Setting the scope
- Business Impact Analysis
- Threat and vulnerability assessment
- Risk determination
- Information risk management controls
Action and implementation
- Information risk management methodologies
- Risk reporting and presentation
- Decision making
- Risk treatment
- Risk monitoring
Information classification schemes
- Classification process
- Classification issues
- Typical classification schemes
Note: – ISEB Accreditation in progress