Governance Rick and Compliance

(Lead) Risk Management

Introduction 

The ISO 31000 Lead Risk Manager training course helps participants develop their competences to support an organization create and protect value by managing risks, making decisions, and improving performance using the ISO 31000 guidelines.

 It provides information regarding the core elements and the effective implementation of a risk management framework, the application of the risk management process, and the actions necessary for the successful integration of these elements to meet organizational objectives. Furthermore, it provides guidance on the selection and application of techniques for assessing risks in a wide range of situations.

Benefits

  • Master the implementation of a Risk Management Process based on ISO 31000
  • This credential demonstrates that the participant possesses the theoretical and practical knowledge and professional capabilities to support and lead risk management processes based on ISO 31000 guidelines and best practices in this field.
  • Provides guidance on the selection and application of techniques for assessing risks in a wide range of situations.

Who this course applies to: 

  • Risk directors, managers, officers
  • Individuals responsible for the creation and protection of value in organizations
  • Top management members who seek guidance on how risk management should be integrated at a strategic level
  • Individuals responsible for risk management processes
  • Individuals interested in risk management

Learning Objectives 

  • Understand the risk management concepts, approaches, methods, and techniques
  • Learn how to interpret the ISO 31000 principles and framework in the context of an organization
  • Learn how to apply the ISO 31000 risk management process in an organization
  • Learn how to establish a risk recording and reporting process and an effective risk communication plan
  • Develop the ability to effectively manage, monitor, and review risk in an organization based on best practices

Structure of training 

Day 1: Introduction to ISO 31000 and risk management

  • Training course objectives and structure
  • Standards
  • Introduction to ISO 31000 concepts
  • ISO 31000 principles
  • ISO 31000 framework and process

Day 2: Establishing the risk management framework and initiating the risk management process

  • Establishing the framework and defining the governance
  • Scope, context, and risk criteria
  • Risk identification

Day 3: Risk analysis, risk evaluation, and risk treatment according to ISO 31000

  • Risk analysis
  • Risk evaluation
  • Risk treatment

Day 4: Recording and reporting, monitoring and review, and communication and consultation according to ISO 31000

  • Recording and reporting
  • Monitoring and review
  • Communication and consultation
  • Closing of the training course

Day 5

  • Certification exam

Additional Information 

For more information and pricing please reach out to us here or at https://www.cryptv-uk.com/contacts/ through our contacts page.

read more

ISO 27001 Lead Implementer

Introduction

This five-day intensive course enables the participants to develop an expertise to support an organisation in implementing and managing an Information Security Management System (ISMS) as specified in ISO/IEC 27001:2013 – new version of the standard. Participants will also master the best practices for implementing information security controls from the eleven areas of ISO/IEC 27002:2005.

This training is consistent with the good practices of project management established by the Project Management Institute (PMI) and ISO 10006:2003 (Quality Management Systems – Guidelines for Quality Management in Projects). This training is fully compatible with ISO/IEC 27003:2009 (Guidelines for the Implementation of an ISMS), ISO/IEC 27004:2009 (Measurement of Information Security) and ISO/IEC 27005:2008 (Risk Management in Information Security).

Benefits

Master the implementation and management of Information Security Management Systems (ISMS) based on ISO/IEC 27001
Passing this training course will demonstrates your ability and practical knowledge to implement an ISMS based on the requirements of ISO/IEC 27001.
Who this course applies to:

  • Project managers and consultants involved in and concerned with the implementation of an ISMS
  • Expert advisors seeking to master the implementation of an ISMS
  • Individuals responsible for ensuring conformity to information security requirements within an organization
  • Members of an ISMS implementation team

Learning Objectives

Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of an ISMS
Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
Understand the operation of an information security management system and its processes based on ISO/IEC 27001
Learn how to interpret and implement the requirements of ISO/IEC 27001 in the specific context of an organization
Acquire the necessary knowledge to support an organization in effectively planning, implementing, managing, monitoring, and maintaining an ISMS

Structure of training

Day 1: Introduction to ISO/IEC 27001 and initiation of an ISMS

  • Training course objectives and structure
  • Standards and regulatory frameworks
  • Information Security Management System (ISMS)
  • Fundamental information security concepts and principles
  • Initiation of the ISMS implementation
  • Understanding the organization and its context
  • ISMS scope

Day 2: Planning the implementation of an ISMS

  • Leadership and project approval
  • Organizational structure
  • Analysis of the existing system
  • Information security policy
  • Risk management
  • Statement of Applicability

Day 3: Implementation of an ISMS

  • Documented information management
  • Selection and design of controls
  • Implementation of controls
  • Trends and technologies
  • Communication
  • Competence and awareness
  • Security operations management

Day 4: ISMS monitoring, continual improvement, and preparation for the certification audit

  • Monitoring, measurement, analysis, and evaluation
  • Internal audit
  • Management review
  • Treatment of nonconformities
  • Continual improvement
  • Preparing for the certification audit
  • Certification process and closing of the training course

Day 5

  • Certification Exam

Additional Information

For more information and pricing please reach out to us here or at https://www.cryptv-uk.com/contacts/ through our contacts page.

read more