This intensive five-day course allows participants to develop the skills for mastering the basics of risk management for all relevant information security assets using the ISO / IEC 27005: 2011 standard of reference and the EBIOS method. The EBIOS method (expression of needs and identification of safety objectives) was developed by ANSSI in France. Through hands-on exercises and studies, participants will be able to acquire the skills and competencies needed to achieve an optimal assessment of information security risk and manage risk over time by being familiar with their lifecycle. This training fits perfectly into a process of implementation of ISO / IEC27001: 2005
In particular, the objectives of the training are:
• A basic knowledge of the security of information systems
• Code : ISO 27005+EBIOS
• Duration : 5 jour
• schedule : 8h30 - 17h30
• place : training center, Center Urbain Nord,Tunis
• Derisques Managers
• Consultantsinformation technology
• Responsible for information security or compliance within an organization
• Course materials
• 40% demonstration
• 40% of theory
• 20% practical exercises
• Concepts and definitions related to sustainability management
• Standards, frameworks and methodologies in sustainable management
• Implementation of a risk management program in information security
• Risk Analysis (Identification and Estimate)
• Durability assessment
• Treatment durisque
• Risk acceptance in information security and residual risk management
• Risk communication in information security
• Surveillance and risk control in information security
• Certified ISO / IEC 27005 RiskManager Examination
• EBIOS Presentation
• Phase 1 - Setting the Context
• Phase 2-Analysis of Security Fear Events
• Phase 3
• Phase 4 - Risk Analysis
• Phase 5 - Determining Security Measures
• Workshop with decas studies
Do not hesitate to contact our experts for any additional information, study and free calculation of an audit service.