Trainings
Certified PECB training
Information security

PECB Certified MEHARI Risk Manager

Develop the necessary skills to conduct risk analysis using the MEHARI Method

MEHARI Risk Manager training enables you to gain the necessary knowledge and expertise to analyze the information security risks appropriate to the different stages of the security lifecycle in an organization. During this training course, you will have the opportunity to acquire the necessary skills to review the security services, detect critical risks and analyze risk scenarios based on the MEHARI risk analysis method.

Based on practical exercises and case studies, you will have the opportunity to acquire the necessary skills to perform stakes analysis and classification, evaluate the security services, conduct risk analysis and define security plans.

After mastering all the necessary concepts of risk analysis using the MEHARI method, you can sit for the exam and apply for a “PECB Certified MEHARI Risk Manager” credential. By holding a PECB Risk Manager Certificate, you will be able to demonstrate that you have the practical knowledge and professional capabilities to support an organization in performing risk assessment based on the MEHARI method.

Download the leaflet
Visit the PECB website
Select the training mode

Training description

Training program
Day 1
Introduction to concepts and phases of MEHARI risk analysis method
Day 2
Conducting risk analysis using MEHARI method
Day 3
Security planning according to MEHARI method and Certification Exam
Who should attend?
  • Individuals seeking to gain a through understanding of MEHARI risk analysis method and MEHARI risk model
  • Managers seeking to develop the necessary skills to support organizations in information security risk analysis
  • Auditors seeking to gain a throught understanding of the MEHARI method
  • Members of an information security team seeking to advance their skills and gain a through understanding on how to evaluate the quality of security services
Training objectives
  • Understand the concepts and general principles associated with MEHARI risk analysis method
  • Gain a through understanding od the four phases of the MEHARI approach
  • Develop the necessary skills to inentify malfunctions, analyze scenarios of each malfunction, identify the malfunction value scale and prepare a formal classification of the information system assets
  • Develop the necessary skills to evaluate the quality of security services in an organization based on MEHARI method
  • Understand MEHARI risk model
  • Develop the necessary skills to characterize risk, analyze risk situations and conduct quantitative analysis of a risk situation
  • Acquire the necessary skills to develop security plans based on MEHARI approach
Exam
  • The "PECB Certified MEHARI Risk Manager" exam fully meets the requirements of the PECB Examination and Certification Programme (ECP) and is labeled bu CLUSIF. The exam covers the following competency domains"
    • Domain 1: Fundamental principles and concepts of MEHARI risk analysis method
    • Domain 2: Stakes analysis and classification
    • Domain 3: Evaluation of security services
    • Domain 4: Risk analysis
    • Domain 5: Defining security plans based on the MEHARI method
  • Duration: 2 hours
Certification
After successfully completing the exam, you can apply for the credentials shown on the table below. You will receive a certificate once you comply with all the requirements related to the selected credential.
Certificate name
PECB Certified Provisional MEHARIRisk Manager
Exam name
PECB Certified MEHARI Risk Manager exam or equivalent
Experience
None
Risk management experience
None
Other requirements
Signing the PECB Code of Ethics
Certificate name
PECB Certified MEHARIRisk Manager
Exam name
PECB Certified MEHARI Risk Manager exam or equivalent
Experience
Two years: One year of work experience in Risk Management
Risk management experience
Risk assessment activities: a total of 200 hours
Other requirements
Signing the PECB Code of Ethics
To be considered valid, these risk assessment activities should follow best implementation practices and include the following:
  1. Identifying malfunctions at the functional and technical levels
  2. Analyzing the seriousness of each identified malfunction
  3. Identification of malfunction value scale
  4. Identification of assets for classification and classification of assets
  5. Evaluation of security services
  6. Risk characterization
  7. Analysis of a risk situation and quantitative analysis
  8. Risk identification
  9. Developing security plans
What do you get?
certificate of participation
meetings with experts
best practices / experiences
innovative forms of classes
competitive prices
General information
  • Certification fees are inculuded on the exam price
  • Training material containing over 350 pages of information and practical examples will be distributed
  • A participation certificate of 21 CPD (Continuing Professional Development) credits will be issued
  • In case of exam failure, you can retake the exam within 12 months for free
  • Minimum number of people: stationary training and online training with a trainer - 5
  • Check the date of training in the training schedule
Gross price
  • Stationary - 4 185,00 PLN
  • Online training - 3 370,00 PLN
  • Self-study with the support of a trainer - 2 930,00 PLN
  • Self-study - 1 995,00 PLN

Similar trainings

PECB Certified ISO 27001:2022 Transition
Prepare for the transition from ISO 27001:2013 to ISO 27001:2022 version
Find out more
PECB Certified ISO 27001 Foundation
Become acquainted with the best practices of Information Security Management Systems (ISMS) based on ISO/IEC 27001
Find out more
PECB Certified ISO 27001 Lead Implementer
Master the implementation and management of Information Security Management Systems (ISMS) based on ISO/IEC 27001
Find out more

VCISO, service for companies

READ ABOUT THE SERVICE

Contact us
Resilia Sp. z o.o.
Resilia Sp. z o. o.
43 Żurawia Street, Ap. 205
00-680 Warsaw
KRS 0000379789
NIP 5222972858
REGON 142839818
phone
+48 22 243 39 37
e-mail
kontakt@resilia.pl

    I consent to the processing of my personal data (in the form of full name, telephone number, e-mail address) by Resilia Spółka z o.o. (Resilia Ltd.) in order to conduct marketing activities regarding its products or services, including sending commercial information in the form of:

    Providing personal data and consenting to their processing is voluntary.

    The consent to the processing of personal data may be withdrawn at any time by submitting a declaration - in writing - to the address of Resilia sp. z o. o. (Resilia Ltd.) ul. Żurawia 43 lok (office premises no.) 205, 00-680 Warsaw or electronically - to the address kontakt@resilia.pl

    The administrator of your personal data is Resilia Spółka z o.o. (Resilia Ltd.). The full information clause regarding the processing of personal data can be found here.

    Privacy policy
    Terms and conditions for the provision of services
    © Resilia Sp. z o.o. All rights reserved
    Design and implementation Eager Dots
    Dziękujemy za przesłanie formularza z pytaniem. Postaramy się jak najszybciej na nie odpowiedzieć!
    Niestety formularza nie udało się wysłać. Proszę spróbować ponownie później lub skontaktować się z nami bezpośrednio.

      I consent to the processing of my personal data (in the form of full name, telephone number, e-mail address) by Resilia Spółka z o.o. (Resilia Ltd.) in order to conduct marketing activities regarding its products or services, including sending commercial information in the form of:

      Providing personal data and consenting to their processing is voluntary.

      The consent to the processing of personal data may be withdrawn at any time by submitting a declaration - in writing - to the address of Resilia sp. z o. o. (Resilia Ltd.) ul. Żurawia 43 lok (office premises no.) 205, 00-680 Warsaw or electronically - to the address
      kontakt@resilia.pl