ISO 27001: The risk assessment, control selection and risk treatment plan

Speaker

Instructor: Alan Calder
Product ID: 700300
Training Level: Intermediate

Location
  • Duration: 60 Min
In this Quality compliance training topics will be related to the risk assessment, control selection and risk treatment plan for developing an Information Security Management system that is capable of accredited certification to ISO/IEC 27001:2005. This is a part of a series of webinars that support those considering or developing an Information Security Management system that is capable of accredited certification to ISO/IEC 27001:2005.
Purchase option for this webinar is currently unavailable. Please contact our Customer Care for more info. Webinar All Access Pass Subscription

 

Customer Care

Fax: +1-650-362-2367

Email: [email protected]

Read Frequently Asked Questions

 

In this webinar the discussion topics will be related to the risk assessment, control selection and risk treatment plan fordeveloping an Information Security Management system that is capable of accredited certification to ISO/IEC 27001:2005.

Areas Covered in the seminar:

  • The requirements of ISO 27001 in respect of risk assessment
  • BS7799-3:2005, the risk management standard
  • Risk assessment: the core competence of ISMS implementation and maintenance
  • Risk appetite and enterprise risk management framework
  • Asset identification
  • Asset ownership
  • Business, legal and contractual requirements in respect of confidentiality, availability and integrity
  • Threats
  • Vulnerabilities
  • Impacts
  • Risk matrix
  • Risk treatment decisions
  • Selecting controls and the Statement of Applicability
  • Gap Analysis and acceptance of residual risk
  • The risk treatment plan
  • Automating the risk assessment process

Who Will Benefit:

  • Directors
  • General managers
  • IT Managers
  • Chief Security Officers
  • CISOs
  • IT Security Managers and Project Managers
  • Project Managers
  • ITIL and ITSM professionals
  • IT Security Professionals
  • Quality Managers
  • IT Project Managers
  • Quality and Security Auditors - worldwide

Instructor Profile:

Alan Calder, , CEO of IT Governance Ltd and a global authority on information security management. He led the world’s first successful implementation of BS 7799 (the original predecessor of ISO 27001) and wrote (with Steve Watkins) the definitive compliance guide for this standard, ‘IT Governance: A Manager’s Guide to Data Security and BS7799/ISO17799’. The 3rd edition of this book is now the textbook for the UK Open University’s postgraduate course on Information Security. A US version of the book has also been recently published, with the title IT Governance: an Executive Guide to ISO 27001/ISO 17799.

Alan’s company, IT Governance Ltd, is a leading global authority on data security and IT governance for business and the public sector. It is the world’s most comprehensive publisher of and distributor for information, advice, guidance, books and tools for Governance, Risk Management and Compliance. It approaches IT security issues from a non-technology background and its customer base includes Europe, North America, India, the Middle East, Colombia, Russia, Japan, Taiwan, Australia and Guam.

Alan’s other books on information security and ISO 27001 include:

  • Nine Steps to Success: an ISO 27001 Implementation Overview (ITGP, 2005)
  • The Case for ISO 27001 (ITGP, 2005)
  • ISO 27001 and ISO 17799: a Management Guide (van Haren, 2006)
  • Implementing ISO 27001 and ISO 17799, a Management Guide (van Haren, 2006)
  • His new book, Tomorrow’s IT Management System – integrating ITIL, ISO 20000 and ISO 27001, will be published by BSI in 2007
Follow us :

 

 

Refund Policy

Our refund policy is governed by individual products and services refund policy mentioned against each of offerings. However in absence of specific refund policy of an offering below refund policy will be effective.
Registrants may cancel up to two working days prior to the course start date and will receive a letter of credit to be used towards a future course up to one year from date of issuance. ComplianceOnline would process/provide refund if the Live Webinar has been cancelled. The attendee could choose between the recorded version of the webinar or refund for any cancelled webinar. Refunds will not be given to participants who do not show up for the webinar. On-Demand Recordings can be requested in exchange. Webinar may be cancelled due to lack of enrolment or unavoidable factors. Registrants will be notified 24hours in advance if a cancellation occurs. Substitutions can happen any time. On-Demand Recording purchases will not be refunded as it is available for immediate streaming. However if you are not able to view the webinar or you have any concern about the content of the webinar please contact us at below email or by call mentioning your feedback for resolution of the matter. We respect feedback/opinions of our customers which enables us to improve our products and services. To contact us please email [email protected] call +1-888-717-2436 (Toll Free).

 

 

+1-888-717-2436

6201 America Center Drive Suite 240, San Jose, CA 95002, USA

Follow Us

facebook twitter linkedin youtube

 

Copyright © 2023 ComplianceOnline.com MetricStream
Our Policies: Terms of use | Privacy

PAYMENT METHOD: 100% Secure Transaction

payment method