PECB Certified ISO 27005 Risk Manager

Master the fundamental principles and concepts of Risk Assessment and Optimal Risk Management in Information Security based on ISO/IEC 27005

Select the training mode

Training description

Training program
Day 1
Introduction to Information Security controls as recommended by ISO/IEC 27002
  • Course objectives and structore
  • Concepts and definitions of risk
  • Standard and regulatory framework
  • Implementing a risk management programme
  • Understanding the organization and its context
Day 2
Implementation of a risk management process based on ISO/IEC 27005
  • Risk identification
  • Risk analysis and risk evaluation
  • Risk assessment with a quantitative method
  • Risk acceptance and residual risk management
  • Information Security Risk Communication and Consultation
  • Risk monitoring and review
Day 3
Overview of other Information Security risk assessment methods and Certification Exam
  • OCTAVE Method
  • MEHARI Method
  • EBIOS Method
  • Harmonized Threat and Risk Assessment (TRA) Method
  • Applying for certification and closing the training
Who should attend?
  • Information Security risk managers
  • Information Security team members
  • Individuals responsible for Information Security, compliance, and risk within an organization
  • Individuals implementing ISO/IEC 27001, seeking to comply with ISO?IEC 27001 or involved in a risk management program
  • IT consultants
  • IT professionals
  • Information Security officers
  • Privacy officers
Training objectives
  • Acknowledge the correlation between Information Security risk management and security controls
  • Understand the concepts, approaches, methods and techniques that enable an effective risk management process according to ISO/IEC 27005
  • Learn how to interpret the requirements of ISO/IEC 27001 in Information Security Risk Management
  • Acquire the competence to effectively advise organizations in Information Security Risk Management best practices
Exam
  • The "PECB Certified ISO/IEC 27005 Risk Manager" exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains:
    • Domain 1: Fundamental principles and concepts of Information Security Risk Management
    • Domain 2: Implementation of an Information Security Risk Management program
    • Domain 3: Information Security risk management framework and process based on ISo/IEC 27005
    • Domain 4: Other Information Security risk assessment methods
  • Duration: 2 hours
Certification
After successfully completing the exam, you can apply for the credentials shown on the table below. You will receive a certificate once you comply with all the requirements related to the selected credential
Certificate name
PECB Certified ISO/IEC 27005 Provisional Risk Manager
Exam name
PECB Certified ISO/IEC 27005Risk Manager exam or equivalent
Experience
None
Information Security Risk Management experience
None
Other requirements
Signing the PECB Code of Ethics
Certificate name
PECB Certified ISO/IEC 27005Risk Manager
Exam name
PECB Certified ISO/IEC 27005Risk Manager exam or equivalen
Experience
Two years: One year of work experience in ISRM
Information Security Risk Management experience
Information Security Risk Management activities: a total of 200 hours
Other requirements
Signing the PECB Code of Ethics
To be considered valid, the information security activities should follow best implementation and management practices and include the following:
  1. Defining a risk management approach
  2. Designing and implementing an overall risk management process for an organization
  3. Defining risk evaluation criteria
  4. Performing risk assessment
  5. Identifying assets, threats, existing controls, vulnerabilities and consequences (impacts)
  6. Assessing consequences and incident likelihood
  7. Evaluating risk treatment options
  8. Selecting and implementing Information Security controls
  9. Performing risk management reviews
What do you get?
certificate of participation
meetings with experts
best practices / experiences
innovative forms of classes
competitive prices
General information
  • Certification fees are included on the exam price
  • Training material containing over 350 pages of information and practical examples will be distributed
  • In case of exam failure, you can retake the exam within 12 months for free
  • Minimum number of people: stationary training - 5; online training with a trainer - 3
  • Check the date of training in the training catalogue
Net Price
  • Online training - 749,00 EUR
  • Self-study with the support of a trainer - 655,00 EUR
  • Self-study - 445,00 EUR
PECB Certified ISO 27001:2022 Transition
Prepare for the transition from ISO 27001:2013 to ISO 27001:2022 version
PECB Certified ISO 27001 Foundation
Become acquainted with the best practices of Information Security Management Systems (ISMS) based on ISO/IEC 27001
PECB Certified ISO 27001 Lead Implementer
Master the implementation and management of Information Security Management Systems (ISMS) based on ISO/IEC 27001
Contact us
Resilia Sp. z o.o.
Resilia Sp. z o. o.
G43 Office Center
43 Grzybowska Street
00-855 Warsaw

KRS 0000379789
NIP 5222972858
REGON 142839818


    I consent to receiving commercial information from Resilia Sp. z o.o. regarding its products and services via:

    Details on the processing of personal data can be found in our Privacy Policy.



    The controller of your personal data is Resilia Sp. z o.o., with its registered office in Warsaw, Poland, at ul. Grzybowska 43, 00-855 Warsaw, entered into the Register of Entrepreneurs of the National Court Register maintained by the District Court for the Capital City of Warsaw in Warsaw, 12th Commercial Division of the National Court Register, under KRS No. 0000379789, Tax Identification Number (NIP): 5222972858, REGON: 142839818. Your personal data will be processed for the purpose of handling your enquiry submitted via the contact form, pursuant to Article 6(1)(f) of the GDPR, i.e. the Controller's legitimate interest in maintaining ongoing communication. Your personal data may also be processed for the purposes of the Controller's legitimate interest consisting of direct marketing of its own products and services, including the sending of commercial information by electronic means, pursuant to Article 6(1)(f) of the GDPR. Such communication will only be carried out where your prior consent has been obtained in accordance with the applicable electronic communications legislation. If you consent to receiving our newsletter, your personal data will also be processed for the purpose of entering into and performing an agreement for the provision of digital content in the form of the newsletter, i.e. delivering the newsletter (which may include commercial information about the Controller's products and services) to the e-mail address you provide, pursuant to Article 6(1)(b) of the GDPR. You have the right to access your personal data, request its rectification or erasure, restrict its processing, request data portability, and object to the processing of your personal data. You also have the right to lodge a complaint with the President of the Personal Data Protection Office (UODO) if you believe that your personal data is being processed unlawfully. For more information, please refer to our Privacy Policy.

    Dziękujemy za przesłanie formularza z pytaniem. Postaramy się jak najszybciej na nie odpowiedzieć!
    Niestety formularza nie udało się wysłać. Proszę spróbować ponownie później lub skontaktować się z nami bezpośrednio.






      I consent to the processing of my personal data by Resilia Sp. z o.o. in order to conduct marketing and sales activities regarding its products or services in the form of:


      The details regarding the processing of personal data, revocation of expressed consents, and data controller can be found in the Privacy policy.

      The application has been sent!