Mastering risk assessment and optimal risk management based on ISO 31000 and IEC/ISO 31010
Summary:
In this three-day intensive course participants develop the competence to master a model for implementing risk management processes throughout their organization using the ISO 31000:2009 standard as a reference framework. Based on practical exercises, participants acquire the necessary knowledge and skills to perform an optimal risk assessment and manage risks in time by being familiar with their life cycle. During this ISO TRAINING, we will present the ISO 31000 general risk management standard, the process model it recommends, and how companies may use the standard. This ISO TRAINING is also fully compatible with IEC/ISO 31010 which supports ISO 31000 by providing guidance for risk assessment.
Who should Attend?
- Risk managers
- Business Process Owners
- Business Finance Managers
- Business Risk Managers
- Regulatory Compliance Managers
- Project Management
- Persons responsible for information security or conformity within an organization
Learning Objectives:
- To understand the concepts, approaches, methods, tools and techniques allowing an effective risk management according to ISO 31000 and IEC/ISO 31010
- To understand the relationship between the risk management and the compliance with the requirements of different stakeholders of an organization
- To acquire the competence to implement, maintain and manage an ongoing risk management program according to ISO 31000
- To acquire the competence to effectively advise organizations on the best practices in risk management
Course Agenda:
Day 1: Introduction, risk management framework according to ISO 31000
- Concepts and definitions related to risk management
- Risk management standards, frameworks and methodologies
- Implementation of an information security risk management framework
- Understanding an organization and its context
Day 2: Risk identification and assessment, risk evaluation, treatment, acceptance, communication and surveillance according to ISO 31000
- Risk identification
- Risk analysis and risk evaluation
- Risk treatment
- Risk acceptance and residual risk management
- Risk communication and consultation
- Risk monitoring and review
Day 3: Risk assessment methodologies according to IEC/ISO 31010 and Exam
- Presentation of risk assessment methodologies
- Certified ISO 31000 Risk Manager Exam (2 hours)
Prerequisites None Educational approach
This ISO TRAINING is based on both theory and practice:
- Sessions of lectures illustrated with examples based on real cases
- Practical exercises based on a full case study including role playing and oral presentations
- Review exercises to assist the exam preparation
- Practice test similar to the certification exam
To benefit from the practical exercises, the number of ISO TRAINING participants is limited
Exam:
The
"Certified ISO 31000 Risk Manager" exam fully meets the requirements of the ASCB Examination and Certification Program (ECP). The exam covers the following competence domains:
- Domain 1: Fundamental principles and concepts in risk management
- Domain 2: Risk management program
- Domain 3: Risk assessment
- Domain 4: Risk Treatment
- Domain 5: Risk communication, monitoring and improvement
The
"Certified ISO 31000 Risk Manager" exam is available in different languages, including English, French, Spanish and Portuguese
Duration: 2 hours
Enquiry Now