Here we are in Day 2 of the ISO27001 Lead Implementer Online Course which is a ‘must attend’ course for anyone dealing with ISO27001 implementation.
The main topics covered during Day 2 are risk assessment, risk management and ISMS controls. Keep your eyes and ears open, because there’s a lot to learn about risk! The tutor, Alan Calder, will use real life experiences to help you translate ISO27001 risk assessment into real life scenarios.
As Alan will tell you, ‘risk assessment is at the heart of the ISMS’. Once the organisational assets have been identified, an organisation needs to determine its criteria for accepting the risk and identify the level of risk it will accept.
During Day 2 you will learn what types of assets exist and what the term ‘risk owner’ means. You will then be led through the process of identifying and managing assets. Once you’ve identified all the assets, you can move on to identify the related threats and vulnerabilities as well as determine the likelihood and impact.