Espion - Information Risk and Compliance

  • Home
  • About Us
  • Our Services
  • Training
  • News & Events
  • Contact Us
  • Search Courses
  • Schedule
  • List all Courses
  • Training by Track
  • Training by Department
  • Training by Certification

Information Risk Management Workshop - ESP-P-018

Home > Security Training > Course

  • Track: Software, Technical, Management.
  • Level: Practitioner level - Those who must incorporate security conscious practices into their daily processes
Introduction

This is an organisation specific workshop to introduce the topic of information risk management and how it can be applied within your organisation. 

Overview

Spread over three separate stages, Espion’s consultants will guide you through a methodology that yields a consistent, repeatable approach to managing information risk. This will be reinforced by hands on exercises designed to help with your learning and practicing of information risk management.

Firstly we will help you to identify the scope of the risk assessment that best suits your objectives and will help you identify the key personnel within your organisation who should be involved.

Secondly we will undertake the workshop with these identified personnel, introducing them to the concepts and process of information risk management, the methodology that will be used to assess risk and apply the theory learned to practical examples.

Finally, we will present to your key executives outlining the scope and key assets identified, an overview of the key individuals involved and a road map of the next practical steps in implementing a Risk Management Framework.

Outline
  • Stage 1 - Project Kick off meeting and scoping exercise
  • Stage 2 – Client Specific Workshop
  • Stage 3 – Presentation of Results
This course is suitable for

Anyone involved in the management or auditing of risks within an organisation.

Course dates

Upon application

Register your Interest

Content

Unit 1: Introduction

  • a. The importance of Risk Management
  • b. Overview of the risk terminology
  • c. Common pitfalls

Unit 2: Risk Management Methodology
  • a. Risk Identification
  • b. Risk Analysis & Evaluation
  • c. Risk Treatment
  • d. Risk Review

Unit 3: Risk Criteria
  • a. Understanding of the criteria used to classify risk
    • Likelihood
    • Impact
    • Tolerance
    • Criteria for Treatment of Risk

Unit 4: Information Assets
  • a. Defining primary and supporting assets
  • b. Understanding criticality, sensitivity, value & ownership
  • c. Identifying a sample of assets

Unit 5: Threats & Vulnerabilities (Real Life & ISO27005 examples)
  • a. Review sample threats
  • b. Review sample vulnerabilities

Unit 6: Creating a Risk Register
  • a. Overview of a Risk Register
  • b. Populating a Risk Register

IRELAND

  The Penthouse, Block 2, Deansgrange Business Park, Deansgrange, Co. Dublin. | T: +35312101711 | F: +35312101678 | E: info@espion.ie

SCOTLAND

  7/9 North Saint David Street, Edinburgh, EH2 1AW. | T: +44 (0) 131 524 9450 | F: +44 (0) 131 524 9451 | E: info@espion.co.uk

UNITED KINGDOM

  Empress Buildings, 380 Chester Road, Manchester, M16 9EA. | T: +44 (0)870 759 0030 | E: info@espion.co.uk