PECB Certified ISO 27005 Risk Manager

Master the fundamental principles and concepts of Risk Assessment and Optimal Risk Management in Information Security based on ISO/IEC 27005

Select the training mode

Training description

Training program
Day 1
Introduction to Information Security controls as recommended by ISO/IEC 27002
  • Course objectives and structore
  • Concepts and definitions of risk
  • Standard and regulatory framework
  • Implementing a risk management programme
  • Understanding the organization and its context
Day 2
Implementation of a risk management process based on ISO/IEC 27005
  • Risk identification
  • Risk analysis and risk evaluation
  • Risk assessment with a quantitative method
  • Risk acceptance and residual risk management
  • Information Security Risk Communication and Consultation
  • Risk monitoring and review
Day 3
Overview of other Information Security risk assessment methods and Certification Exam
  • OCTAVE Method
  • MEHARI Method
  • EBIOS Method
  • Harmonized Threat and Risk Assessment (TRA) Method
  • Applying for certification and closing the training
Who should attend?
  • Information Security risk managers
  • Information Security team members
  • Individuals responsible for Information Security, compliance, and risk within an organization
  • Individuals implementing ISO/IEC 27001, seeking to comply with ISO?IEC 27001 or involved in a risk management program
  • IT consultants
  • IT professionals
  • Information Security officers
  • Privacy officers
Training objectives
  • Acknowledge the correlation between Information Security risk management and security controls
  • Understand the concepts, approaches, methods and techniques that enable an effective risk management process according to ISO/IEC 27005
  • Learn how to interpret the requirements of ISO/IEC 27001 in Information Security Risk Management
  • Acquire the competence to effectively advise organizations in Information Security Risk Management best practices
Exam
  • The "PECB Certified ISO/IEC 27005 Risk Manager" exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains:
    • Domain 1: Fundamental principles and concepts of Information Security Risk Management
    • Domain 2: Implementation of an Information Security Risk Management program
    • Domain 3: Information Security risk management framework and process based on ISo/IEC 27005
    • Domain 4: Other Information Security risk assessment methods
  • Duration: 2 hours
Certification
After successfully completing the exam, you can apply for the credentials shown on the table below. You will receive a certificate once you comply with all the requirements related to the selected credential
Certificate name
PECB Certified ISO/IEC 27005 Provisional Risk Manager
Exam name
PECB Certified ISO/IEC 27005Risk Manager exam or equivalent
Experience
None
Information Security Risk Management experience
None
Other requirements
Signing the PECB Code of Ethics
Certificate name
PECB Certified ISO/IEC 27005Risk Manager
Exam name
PECB Certified ISO/IEC 27005Risk Manager exam or equivalen
Experience
Two years: One year of work experience in ISRM
Information Security Risk Management experience
Information Security Risk Management activities: a total of 200 hours
Other requirements
Signing the PECB Code of Ethics
To be considered valid, the information security activities should follow best implementation and management practices and include the following:
  1. Defining a risk management approach
  2. Designing and implementing an overall risk management process for an organization
  3. Defining risk evaluation criteria
  4. Performing risk assessment
  5. Identifying assets, threats, existing controls, vulnerabilities and consequences (impacts)
  6. Assessing consequences and incident likelihood
  7. Evaluating risk treatment options
  8. Selecting and implementing Information Security controls
  9. Performing risk management reviews
What do you get?
certificate of participation
meetings with experts
best practices / experiences
innovative forms of classes
competitive prices
General information
  • Certification fees are included on the exam price
  • Training material containing over 350 pages of information and practical examples will be distributed
  • In case of exam failure, you can retake the exam within 12 months for free
  • Minimum number of people: stationary training - 5; online training with a trainer - 3
  • Check the date of training in the training catalogue
Net Price
  • Online training - 749,00 EUR
  • Self-study with the support of a trainer - 655,00 EUR
  • Self-study - 445,00 EUR
PECB Certified ISO 27001:2022 Transition
Prepare for the transition from ISO 27001:2013 to ISO 27001:2022 version
PECB Certified ISO 27001 Foundation
Become acquainted with the best practices of Information Security Management Systems (ISMS) based on ISO/IEC 27001
PECB Certified ISO 27001 Lead Implementer
Master the implementation and management of Information Security Management Systems (ISMS) based on ISO/IEC 27001
Contact us
Resilia Sp. z o.o.
Resilia Sp. z o. o.
43 Żurawia Street, Ap. 205
00-680 Warsaw
KRS 0000379789
NIP 5222972858
REGON 142839818


    I consent to the processing of my personal data by Resilia Sp. z o.o. in order to conduct marketing and sales activities regarding its products or services in the form of:


    The details regarding the processing of personal data, revocation of expressed consents, and data controller can be found in the Privacy policy.

    Dziękujemy za przesłanie formularza z pytaniem. Postaramy się jak najszybciej na nie odpowiedzieć!
    Niestety formularza nie udało się wysłać. Proszę spróbować ponownie później lub skontaktować się z nami bezpośrednio.






      I consent to the processing of my personal data by Resilia Sp. z o.o. in order to conduct marketing and sales activities regarding its products or services in the form of:


      The details regarding the processing of personal data, revocation of expressed consents, and data controller can be found in the Privacy policy.

      The application has been sent!