Mastering Risk Assessment Based on ISO 31000

Summary

In this two-day intensive course participants develop the competence to master the basic risk management elements using the ISO 31000 standard as a reference framework. Based on practical exercises and case studies, participants acquire the necessary knowledge and skills to perform risk assessments, including risk identification, risk analysis and risk evaluation, as well as preparing and implementing risk treatment.

Course Agenda

Introduction, risk management program, risk identification and assessment according to ISO 31000

  • Concepts and definitions related to risk management
  • Risk management standards, frameworks and methodologies
  • Communication and consultation
  • Establishing context and defining risk criteria
  • Risk identification and assessment

Introduction, risk management program, risk identification and assessment according to ISO 31000

  • Risk evaluation and treatment
  • Risk treatment options
  • Preparing and implementing risk treatment plans
  • "Certified ISO 31000 Risk Manager" exam
  • Introduction to methods of risk assessment and certification exam

Introduction of various Risk Assessment Methods as defined in IEC/ISO 31010

Exam

The "Certified ISO 31000 Risk Manager" exam fully meets the requirements of the PECB examination and certification Program (ECP). The exam covers the following competence domains:

  • Domain 1: Fundamental concepts, approaches, methods and frameworks of risk management
  • Domain 2: Preparation and implementation of a risk management program
  • Domain 3: Information security risk assessment based on ISO 31000

The "Certified ISO 31000 Risk Manager" exam is available in different languages (the complete list of languages can be found in the examination application form).

Duration: 2 hours