Building information security in accordance with ISO 27005
The training focuses on the practical implementation of an information security management system in accordance with ISO 27005. The program includes workshops on identifying and assessing information security risks and planning security measures. Participants will learn the methodology of risk analysis and how to design effective security measures in an organization. The classes are conducted in the form of workshops using real cases.
Issues
-
Risk management methodology according to ISO 27005
-
Risk identification and analysis techniques
-
Criteria for risk assessment and acceptance
-
Control mechanisms and safeguards
-
Documentation of the safety management system
-
Risk monitoring and review
-
Strategies for dealing with risk
-
Valuation of information assets
-
Estimating probability and impact
-
Planning security measures
-
Security status reporting
-
Improving the risk management system
Benefits
- Conducting risk analysis in accordance with the requirements of ISO 27005
- He will develop the ability to identify and classify information assets in the organization
- He or she will learn to evaluate the effectiveness of existing safeguards and design new controls
- Will gain experience in creating information security management system documentation
- Will learn methods for monitoring and reviewing risks in the organization
- Will be able to prepare and implement a risk management plan
Who is this training for?
Prerequisites
- Basic knowledge of information security issues
- General knowledge of organizational management
- Knowledge of basic concepts of risk management
- Experience in working with system documentation
Training program
Basics of ISO 27005
- The context of the organization in risk management
- Risk assessment methodologies
Risk acceptance criteria
- Risk identification and analysis
- Identification of information assets
- Identify vulnerabilities and threats
- Estimating probability and impact
Risk pricing
- Dealing with risks
- Strategies for dealing with risk
Security selection
- Preparing a plan of action
- Monitoring the effectiveness of activities
- Documentation and improvement
- Creation of ISMS documentation
Risk reporting
- Review and update the risk assessment
- Continuous process improvement
Delivery Methods
Online
- Convenience of participating from anywhere
- Interactive live sessions with trainer
- Materials available for 30 days
- No travel costs
On-site
- Direct contact with trainer and group
- Intensive hands-on workshops
- Networking with other participants
- Full focus on learning
Frequently asked questions
Who is the Building information security in accordance with ISO 27005 training for?
This training is designed for professionals looking to develop skills in building information security in accordance with iso 27005. Required level: intermediate.
How long is the Building information security in accordance with ISO 27005 training?
The training lasts 3. Available in online or on-site format.
Will I receive a certificate?
Yes — every participant receives a completion certificate confirming acquired competencies. EITT holds ISO 9001 accreditation.
Can this training be conducted for a closed group?
Yes — we offer dedicated closed trainings for companies. We customize the program to your team's needs. Contact us for an individual quote.
Request a quote
Funding Options
Check funding options for your company
Development Services Database
Up to 80% funding for SMEs from EU funds
Check availabilityNational Training Fund
Up to 100% funding for employers
Learn moreTrusted by
We train teams at Poland's largest companies
Interested in this training?
Contact us - we'll prepare an offer tailored to your organization's needs.