Information Security Risk Management DescriptionThis course covers risk management fundamental rules in today’s information security filed. The course also provides full understanding in risk assessments including how to estimate potential loss per risk, choose remedial measures to counteract each risk, and techniques for effectively reducing, assigning or accepting the risk.
Course ObjectivesUpon completing the course, the participants will be able to:
- Understand risk management different components
- Manage risk in your organization
- Plan, Build and Run information security risk management process in your organization.
Topics
- Fundamental principles of security – risk management
- Risk management basic terms
- Elements of risk analysis
- Data classification
- Calculating risk
- Frameworks for risk management
- How to incorporate risk management methodologies in your organization
Target AudienceSenior management, information security officer, auditors, risk managers, CIO
PrerequisitesNone
Duration1 Day
Outline
- IT Risk Management
- ISO 27005 Framework
- IT Risk analysis
- IT Risk Identification
- IT Risk Estimation
- IT Risk Evaluation
- Information Security Risk Analysis
- Asset Identifying and Classification
- Asset Management
- Vulnerability and Threat Recognition
- Scoping the Survey
- Qualitative and Quantitative Risk assessment
- Reporting
- Information Security Risk Management - Plan, Build, Run
- Introduction to security operation
- TVM process
- vulnerability assessment
- Security configuration management
- patch management
- Communication and awareness
- Penetration Testing
.jpg?id=3589855)