COURSE DESCRIPTION:The mission of every organization is affected by
today’s global economy and the digital era. Organizations are
critically dependent on information technology (IT) to better support
their business Goals. Risk Management plays a critical role in
protecting an organization’s information assets, and its mission
therein, from IT-related Risk. An effective Risk Management Process is
an important component of a successful IT security program. The
principal goal of an organization’s Risk Management Process should
be to protect the organization and its ability to perform their
mission, not just its IT assets. Therefore, the Risk Management
Process should not be treated primarily as a technical function
carried out by the IT experts who operate and manage the IT system,
but as an essential Management function of the organization.
Risk is the net negative impact of the exercise of a vulnerability,
considering both the probability and the impact of occurrence. Risk
Management is the Process of identifying Risk, assessing Risk, and
taking steps to reduce Risk to an acceptable level. This Course
provides an overview into the specific criteria, steps and actions
necessary to implement and sustain a comprehensive Information Risk
Management program.
COURSE TOPICS:
● Module1: Risk Management Definitions and Principles
● Module2: Risk Management Policies and RequirementS
● Module3: Defining Risk Management Goals and Objectives
● Module4: NIST Assesment Process – A Best Practice
● Module5: Course Learning Summary
LEARNING GOALS:
● Address various Risk methodologies and assess application
to individual enterprise environments.
● Explain and utilize Risk Assesment and analysis
methodologies.
● Identify significant components of Risk and their
respective Definitions.
● Define Risk Management Goals and Objectives.
● Document Risk Practices and Risk types.
● Recognize the ISO Principles of Risk Management.
● Understand the COBIT 4.1 and COBIT 5 elements related to
IT Risk identification and Management.
● Apply the nine (9) steps of the NIST IT Risk Assesment
methodology to an enterprise-wide Risk Assesment project.
● Prepare and evaluate a Statement of Risk Management.
● Describe the role and value of IT Risk Management as a
basis of proactive corporate governance.
COURSE AGENDA:
DAY 1
● Pre Course Reading
● Risk Management Definitions and Principles
● Risk Management Policies and RequirementS
● Defining Risk Management Goals and Objectives
● NIST Assesment Process – A Best Practice
● Course Learning Summary
WHO CAN ATTEND?
THIS WORKSHOP IS INTENDED FOR:
● Primary
● Internal and external auditors (IT, financial,
operational)
● Risk Compliance Officers
● Professionals involved in organizational or IT GRC
strategic initiative
● Secondary Audience
● Management consultants
● Controllers
● Directors of Human ReCourses
● Facilities Managers
culture
sports
1530
Views
28/01/2020 Last update