Information Security Risk Management Training Program

TRECCERT ISO/IEC 27005 Professional is an advanced-level course developed to provide trainees with a solid knowledge of the ISO/IEC 27005 guidelines. The training course provides an in-depth explanation of guidelines mandated to establish, implement, manage, improve and assess an Information Security Risk Management (ISRM).

• Know and understand the purpose of an information security risk management process, including basic concepts, principles and other risk management frameworks.

• Know and understand the whole information security risk management process steps and activities.

• Know, understand and be able to identify, assess and treat the information security risks and perform other related activities.

• Know and understand the basic analysis and methods used to establish a risk management context, assess and manage information security risks and implement security controls.

• Know, understand and be able to support the information security risk manager perform risk management activities.

The ISO/IEC 27005 Professional training course is developed for professionals seeking to expand their professional skills on the assessment and management of an information security risk management process, for example:

• Information Security Risk Manager, Team Leader or Technician

• Business Owner, COO, CIO, CISO

• Risk Analyst, Model Risk Specialist, Risk Manager