BCS Practitioner Certificate in Information Risk Management
Course
Online
£ 1,895
+ VAT
Description
-
Type
Course
-
Methodology
Online
This course covers the BCS/ISEB Practitioner Certificate in Information Risk Management for information systems and closely follows the approaches recommended in the ISO 27001 and ISO 27005 Standards.
Reviews
Have you taken this course?
Subjects
- IT Management
- Risk Management
- Risk
- IT
- Management
- IT risk
Course programme
Concepts and Importance of Information Risk Management
- The need for risk management
- The context of risk in business
- Review of information security fundamentals
- The use of international information risk management standards, e.g. ISO/IEC 27001, BS7799-3
- Developing an information risk management strategy
- Information, risk assessment, risk treatment and risk management
- Assets
- Definitions of information risk management terminology
- Setting the scope
- Business impact analyses
- Threats, vulnerabilities and likelihood assessments
- Risk determination
- Risk management controls
- Information risk management methodologies
- Reporting and presentation
- Decision making
- Risk treatment
- Risk monitoring
- Classification process
- Classification issues
- Typical classification schemes
- Why conduct a risk assessment
- Scoping a risk assessment
- Conducting a business impact analysis
- Vulnerability information gathering
- Vulnerability and threat identification
- Categorisation of threats
- Linking threats to asset types
- Assessing threat likelihood
- Assessing vulnerability of assets to threats
- How to calculate risk
- Risk determination
- Produce recommendations for risk treatment
- Producing a report for management
- Different risk appetites
- Producing a risk treatment plan
- Assessing risks in outsourcing
BCS Practitioner Certificate in Information Risk Management
£ 1,895
+ VAT