Training Duration: 2 Days
Course Overview
This comprehensive two-day Risk Management Professional Training program is designed to provide participants with a deep understanding of how to implement, assess, and improve risk management processes using ISO 31000:2018. The course also explores how ISO/IEC 27001:2013 (Information Security Management) and ISO 22301:2019 (Business Continuity Management) complement ISO 31000.
Through interactive sessions, real-life case studies, and group discussions, participants will learn how to apply ISO 31000’s principles, framework, and process in line with the Plan-Do-Check-Act (PDCA) methodology. They will also understand how to integrate risk management into various organisational functions, enhancing resilience, efficiency, and strategic decision-making.
What Will You Learn?
- The structure, principles, and process of ISO 31000:2018
- How ISO 31000 aligns with ISO/IEC 27001 and ISO 22301
- Using the PDCA cycle to implement risk management in a structured manner
- Conducting comprehensive risk assessments (identification, analysis, evaluation, and treatment)
- Mapping and integrating risk management with information security and business continuity
- How to apply risk insights to build organisational controls and ensure governance
- Supporting strategic decision-making and continual improvement through effective risk management
Course Outline
Topics covered in this course include:
- Key definitions and terminology in risk management
- Understanding the relationship between ISO 31000’s principles, framework, and process
- Assessing internal and external context of the organisation
- The risk assessment process:
- Risk Identification
- Risk Analysis
- Risk Evaluation
- Risk Treatment
- Planning and implementing risk mitigation strategies
- Mapping ISO 31000 with ISO/IEC 27001 and ISO 22301
- Understanding and applying PDCA in risk management
- Business impact analysis and linking risk results to organisational objectives
- Control selection and integration into ISMS and BCMS
- Group discussions, practical exercises, and case-based learning
Who Should Attend?
This course is ideal for professionals involved in risk, security, and continuity management, including:
- Information Security Practitioners
- Business Continuity Professionals
- Chief Information Security Officers (CISOs)
- ISMS and BCMS Management Representatives
- Management Consultants
- Internal Auditors for ISMS and BCMS
- Core team members responsible for implementation and improvement of ISMS/BCMS
- Professionals involved in strategic planning, governance, and compliance
- Pre-requisites:
- Participants should have prior knowledge of:
- Management Systems (ISMS and BCMS)
- Plan-Do-Check-Act (PDCA) methodology
- Risk assessment and treatment processes
- Business Impact Analysis (BIA)
- Security and continuity objectives
- ISO/IEC 27001 and ISO 22301 frameworks
- Control implementation and continuous improvement techniques
Examination & Certification
- Examination:
- Format: Online
- 40 Multiple Choice Questions
- Duration: 60 minutes
- Passing Score: 70% (28 out of 40)
- Certification: The risk management professional certificate will be provided upon completing the risk management course. Others will get a certificate of attendance.
Learning & Career Benefits
- Implement a risk management system aligned with ISO 31000:2018
- Apply a structured PDCA-based approach for managing organisational risks
- Align risk management with information security and business continuity objectives
- Drive operational improvements and enhance governance in your organisation
- Support informed, risk-based strategic decision-making
- Build your credentials as a qualified Risk Management Professional
Get in touch with us to know more.
Business address
TÜV SÜD Bangladesh (Pvt.) Ltd.
Update Tower, Level- 12, 8 & 14, 01 Shahjalal Avenue, Sector-06, Uttara Model Town, Dhaka-1230, Bangladesh
Tel: +88 02 58954115, 58954120, Ext-119
Email: [email protected]
