Risk Management Professional Training

Based on ISO 31000 (also covers Risk Management Aspects of ISO 27001 and ISO 22301)

Based on ISO 31000 (also covers Risk Management Aspects of ISO 27001 and ISO 22301)

Virtual Classes Schedule 

26th - 27th February 2022: Risk Management Professional Training based on ISO 31000, ISO 27001 and ISO 22301 | Duration: 2 Days | Time: 8:00 am to 4:00 pm GST

26th - 27th March 2022: Risk Management Professional Training based on ISO 31000, ISO 27001 and ISO 22301 | Duration: 2 Days | Time: 8:00 am to 4:00 pm GST


Organisations of all types and sizes face external and internal factors and influences that make it uncertain whether they will achieve their objectives. These objectives may relate to range of organisation’s activities from strategic initiatives to its operations, processes and projects. This may reflect in terms of societal, environmental, technological, safety and security outcomes, commercial, financial and economic measures as well as social, cultural, political and reputation impacts.

Managing risk considers the external and internal context of the organisation, including human behaviour and cultural factors. This risk management course is structured to provide knowledge and skill required to assess and conduct risk assessment for organisations with respect to the requirements of ISO 31000:2018 including the risk management aspects of ISO 27001 and ISO 22301.

This comprehensive three-day risk management training & certification course comprises case studies, training, group discussions. This risk management course ensures that the participants thoroughly understand the principles, framework and process of risk assessment.


On completion of this risk management course, you can work as a risk professional. You can conduct risk assessments with respect to ISO 31000 guidelines along with the risk management aspects of ISO 27001 and ISO 22301 standards.

Some benefits of this risk management professional training include :

  • Implementing an effective risk management system
  • Understand the best practices of ISO 31000:2018 along with ISO 27001 and ISO 22301
  • Learn more about the typical framework for implementing ISO 31000:2018 using the PDCA cycle
  • Applying the risk management process based on the pillars of ISO 31000 standard
  • Integrating risk management with the activities and functions of an organisation
  • Assisting your organisation in establishing a risk strategy, achieving strategic objectives, and making informed decisions
  • Support your organisation in improving its operational efficiency and governance

Details about Risk Management through ISO 31000, ISO 27001 and ISO 22301


  • Risk Management aspects according to ISO 31000:2018

    ISO 31000 puts forth a framework and a well-defined process for managing organisational risks regardless of size, activity or sector. Using ISO 31000 can help organisations increase the likelihood of achieving objectives, improve the identification of opportunities and threats and effectively allocate and use resources for risk treatment. This risk management course will help participants understand the basics of risk, risk identification, evaluation, treatment, review, monitoring and communication according to ISO 31000.

  • Risk Management aspects according to ISO 27001

    ISO 27001 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organisation. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organisation. The risk management aspects of ISO 27001 are covered under this risk management course.

  • Risk Management aspects according to ISO 22301

    ISO 22301 helps you in ensuring business continuity, crisis management, and business impact assessments. It is a systematic approach to achieving its operation and continuous improvement. It trains the professional in identifying and assessing the risk and designing an appropriate business continuity plan in case of a crisis due to the risk.

    This risk management training course covers the risk related aspects of ISO 22301 standard.



Here’s a look at some of the features of risk management professional course that will help you position yourself as an expert :

  • Accredited trainers.
  • Training through Case Studies and Group Discussions.
  • Understand both internal and external issues.
  • Designed with a comprehensive approach towards ISMS and BCMS.


  • Terminology and definitions related to Risk Management.
  • ISO 31000 - Relationship between principles, framework and process of risk management.
  • Context of the organisation - Internal and External issues.
  • Risk Assessment process - Risk Identification, Risk Analysis, Risk Evaluation, Risk Treatment.
  • Importance of planning and implementing identified risk management actions.
  • Conduct risk assessment with respect to ISO 31000 followed by understanding the mapping of three standards (ISO 31000, ISO 27001 and ISO 22301).


  • Information security practitioners
  • Business continuity practitioners
  • Chief information security officer
  • Management representative of Management Systems (ISMS, BCMS)
  • Management consultants (ISMS, BCMS)
  • Core group members responsible for establishing, implementing, maintaining, auditing and improving Management Systems (ISMS, BCMS)
  • Professionals who play role in implementation of Management Systems (ISMS, BCMS)


2 days


The participants those who are interested to attend the course must have prior knowledge of:

  • Management Systems (ISMS and BCMS)
  • Understand Plan-Do-Check-Act (PDCA) Cycle
  • Process of Risk assessment
  • Incorporating management commitment and interest of stakeholders
  • Business Impact Analysis and Risk Assessment
  • Security objectives and Business continuity Objectives
  • Using results of risk assessment to build the controls
  • Ensuring a comprehensive approach to ISMS and BCMS
  • Continual improvement of ISMS, BCMS and making of modifications as appropriate
  • Knowledge on Information security management system based on ISO/IEC 27001 standard
  • Knowledge on Business continuity management system based on ISO 22301 standard


  • Candidates will be assessed through 40 marks multiple choice questions based online examination at the end of the course.
  • Exam duration is for 60 minutes.
  • Minimum passing criteria is 70% or above.


“Certified Risk Management Professional based on ISO 31000:2018, ISO/IEC 27001:2013 and ISO 22301:2019”. On completing the risk management course successfully, a certificate is awarded to the delegates. Others will get a certificate of attendance.

  • What are the benefits of enrolling in this course?
    • World-class training – by learning from TÜV SÜD’s industry experts and training specialists

    • Interactive learning style – with interactive formats such as lectures, illustrations and simulations are used

    • Networking opportunity – where you can meet and build network with like-minded individuals at our instructor-led training

    • Gain a competitive edge – by getting trained by experts known in the fields of safety, security and sustainability



Next Steps

Site Selector