In just three days, learn how to conduct an information security risk assessment from start to finish through practical risk management methodologies, including ISO 27005 and other risk management techniques. By attending and passing the course exam, you will achieve the ISO 17024-Certificated CISRM (Certified Information Security Risk Management) qualification. See all UK training venue details.
"Fantastic training to compile all my old risk management know-how, in a very good structured way but also according to the ISO regulations. I am going to recommend it to my colleagues and friends." - Kirsty
Other ways to learn | In-house
Pay by purchase order | Buy now, pay later! Enjoy the benefits of paying by purchase order with an IT Governance corporate account. Apply online today or call our training sales team on +44 (0)333 800 7000.
Building on the implementation guidance delivered by the ISO 27001 Lead Implementer course, this three-day, advanced-level training course develops your competence in the key areas of information risk management; covering risk assessment, analysis, treatment and review.
It provides the skills and knowledge required to implement an information risk management programme based on ISO 27005:2018 and other risk management techniques. The course content is based on recognised best practice and real-world examples of the use of information risk management processes to reduce risk to information assets.
Need this information to hand? Why not download our product summary with all essential course information you need for budget requests.
“Wonderful trainer, great location and great food - would come back and recommend to colleagues!”
- Emma McMechan, Deputy SIRO/Security Advisor, Land Registry.
“Alice was the epitomy of a good trainer. I consider me passing this exam because her class was so good."
- Eirini, Investigation Lead
ISO 27005 provides guidelines for information security risk assessments and is designed to assist with the implementation of a risk-based ISMS (information security management system).
This course covers ISO 27005 and will teach you:
BS 7799-3 is another information security risk management standard, which offers alternative processes to manage information security risks.
This course also covers BS 7799-3 and will teach you:
Get to grips with the key ISO 27005 and BS 7799-3 risk assessment processes.
Learn how a risk assessment works in action using a combination of formal training, practical exercises and relevant case studies.
Gain practical experience in carrying out an effective risk assessment process as defined by ISO/IEC 27005:2011 through discussion, case studies and role play.
100%
of delegates passed first time
97%
found the course content to meet their expectations
97%
agreed the course content was relevant
97%
thought adequate course materials were provided
This course is aimed at those who have attended the CISMP, or ISO27001 Certified ISMS Lead Implementer course and want to develop their practical risk management skills.
The exam is an online exam. You will need to bring a ‘pop-up enabled’ laptop/tablet to the venue. Full details on how to access the exam will be provided by email 1–2 days before sitting the exam.
This course is part of our training programme. You can download your training pathway below to find your next recommended courses.
Save 15% when you book the Certified ISO 27001 Lead Implementer and ISO 27005 Risk Management Combination Training Course. With this course you can achieve the ISO 27001 Certified ISMS Lead Implementer (CIS LI) and ISO 27005 ISMS Risk Management (CIS RM) qualifications awarded by IBITGQ in just 6 days.
Day 1: 9:30 am – 5:00 pm
Day 2: 9:15 am – 5:00 pm
Day 3: 9:15 am – 5:00 pm
London.
This course is equivalent to 21 CPD/CPE points.
Attendees take the ISO27005 Certified ISMS Risk Management (CIS RM), ISO 17024-certificated, exam set by IBITGQ at the end of the course. This is a 90-minute multiple-choice online exam, consisting of 40 questions. Candidates need to achieve a minimum of 65% to pass. There is no extra charge for taking the exam.
ISO 27005 Certified ISMS Risk Management (CIS RM).
Yes, if you are unsuccessful on the first attempt you can retake the exam for an additional fee. You can email us to schedule the retest for the exam.
There are no formal entry requirements but it is assumed that you have taken the ISO27001 Certified ISMS Lead Implementer or CISMP training course or you have a good working knowledge of ISO 27001 gained through practical experience.
We strongly recommend you purchase and read the standard prior to attending the course:
We also recommend that you purchase and read the following textbooks:
Delegates must bring a form of photographic ID with them as the invigilator my request to check it prior to the exam.