تفاصيل البرنامج
نوع البرنامج التدريبى
اسم البرنامج التدريبى
رقم البرنامج التدريبى
عدد الأيام
عدد ساعات البرنامج
تاريخ بدء البرنامج 27 أكتوبر 2019
مكان الانعقاد القاهره - مصر
المهندسين - 26 ش عدن من ش شهاب
مستوى البرنامج
لغة البرنامج
مزايا المشاركة
  • اختبار البورد الكندى للتقييم المهني PECB
  • شهادة PECB معتمدة من البورد الكندى للتقييم المهني الاحترافي
  • الإستقبال والمغادره من وإلى المطار ( للمشاركين من خارج مصر )
  • وجبه خفيفه مع المشروبات الساخنه والبارده يوميا
  • تقييم نهائى
  • تقييم عام للبرنامج التدريبي
  • تقييم يومى للمشاركين
  • الحصول على المادة العلمية (Hard copy)
وصف البرنامج

This course enables the participants develop the competence to master the basic Risk Management elements related to all the assets of relevance for Information Security using the ISO/IEC 27005 standard as a reference framework. Based on practical exercises and case studies, participants acquire the necessary knowledge and skills to perform an optimal Information Security Risk Assessment and manage risks in time by being familiar with their life cycle. This training fits perfectly the framework of an ISO/IEC 27001 standard implementation process.

تفاصيل البرنامج

Day 1 : Introduction, risk management program according to ISO/IEC 27005

Concepts and definitions related to risk management -

Risk management standards, frameworks and methodologies -

Implementation of an information security risk management program -

Understanding an organization and its context -


DAY 2 : Risk identification and assessment, risk evaluation, treatment, acceptance, communication and surveillance according to ISO/IEC 27005

Risk identification -

Risk analysis and risk evaluation -

Risk assessment with a quantitative method -

Risk treatment -

Risk acceptance and residual risk management -

Information Security Risk Communication and Consultation -

Risk monitoring and review -


DAY 3 :Overview of other information security risk assessment methods and Certification Exam -

Presentation of OCTAVE method -

Presentation of MEHARI method-

Presentation of EBIOS method -

Presentation of Harmonized TRA method -

Certification Exam -

المستهدفون


Risk managers -

Individuals responsible for Information Security or conformity within an organization -

Member of the information security team -

IT consultants -


الاهداف العامة

To understand the concepts, approaches, methods and techniques that allow-

 effective Risk Management according to ISO/IEC 27005

To interpret the requirements of ISO/IEC 27005 on Information Security Risk -

Management

To understand the relationship between the Information Security Risk Management -

the security controls and the compliance with all the other requirements

الاهداف التفصيلية

To understand the concepts, approaches, methods and techniques allowing an -

effective risk management according to ISO 27005

To interpret the requirements of ISO 27001 on information security risk -

management

To understand the relationship between the information security risk management -

the security controls and the compliance with the requirements of different stakeholders of an organization

To acquire the competence to implement, maintain and manage an ongoing -

information security risk management program according to ISO 27005

To acquire the competence to effectively advise organizations on the best-

 practices in information security risk managemen

جهة اعتماد الشهادات
البرامج المتعلقة