Implementing and Performing Risk Management with ISO/IEC 27005

Focused View

Taylor Jones

2:14:36

78 View

00. Course Overview

00. Course Overview.mp4

01:35

01. Overview of ISO - IEC 27005 - 2018

00. What Is ISRM and Why Is It Important - .mp4

06:14

01. What ISO - IEC 27005 Is and What It Isnt.mp4

05:28

02. History of the ISO - IEC 27005 Standard.mp4

03:21

03. Walking through the ISO - IEC 27005 - 2018 Standard.mp4

04:04

04. Demo.mp4

05:04

02. Establishing the ISRM Context

00. Establishing the ISRM Context.mp4

05:00

01. Evaluating the Internal and External Risk Context.mp4

03:31

02. Defining the ISRM Organization and Approach.mp4

02:59

03. Creating and Implementing Basic Risk Criteria.mp4

05:48

04. Identifying ISRM Scope and Boundaries.mp4

02:19

05. Demo.mp4

04:34

03. ISRM - Identifying and Assessing Risk

00. Evaluating Risk Assessment.mp4

04:10

01. Identifying and Reviewing Risk.mp4

01:09

02. Identifying and Reviewing Business Assets.mp4

05:01

03. Evaluating Threats to Assets and Business Processes.mp4

05:35

04. Identifying and Evaluating Existing Controls.mp4

03:41

05. Identifying and Assessing Vulnerabilities.mp4

03:40

06. Creating Incident Scenarios and Identifying Consequences .mp4

03:34

07. Conducting Risk Analysis.mp4

02:51

08. Analyzing Risk Consequences.mp4

03:37

09. Analyzing Risk Likelihood.mp4

02:05

10. Analyzing and Determining the Level of Risk.mp4

01:55

11. Conducting Risk Evaluation and Prioritization.mp4

03:50

12. Demo.mp4

02:54

04. ISRM - Evaluating Risk Treatment Options

00. Evaluating Risk Treatment.mp4

05:22

01. Evaluating Risk Modification.mp4

04:17

02. Evaluating Risk Retention.mp4

01:22

03. Evaluating Risk Avoidance.mp4

01:22

04. Evaluating Risk Sharing.mp4

01:52

05. Evaluating Risk Acceptance.mp4

02:11

06. Demo.mp4

03:55

05. ISRM - Communicating, Monitoring, and Reviewing Risk

00. Conducting Risk Communication and Monitoring.mp4

02:37

01. Evaluating and Conducting Risk Communication.mp4

05:27

02. Monitoring and Reviewing Risk Factors.mp4

03:56

03. Monitoring and Improving the ISRM Program.mp4

03:23

04. Demo.mp4

04:53

Description

Everything you do in information security is related to risk, and no matter your discipline, sharpening your ISRM skills will increase your value. This course will arm you with a practical risk framework and approach to prioritize and address risk.

What You'll Learn?

Information security is a broad discipline, and security teams are increasingly strapped for time and resources. In this course, Implementing and Performing Risk Management with ISO/IEC 27005, you will find a practical framework to prioritize and orchestrate a comprehensive information security risk framework. First, you will learn about the internationally accepted risk management standard ISO/IEC 27005. Next, you will arm yourself with skills to establish the business risk context, assess business risks, and perform risk treatment. Finally, you will be equipped with meaningful approaches to effectively communicate and monitor your organization's risk. When you're finished with this course, you will have the knowledge and blueprint to coordinate a widely accepted framework and to bolster your organization's information security program.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Risk Management

Project Risk Management

Taylor Jones

Instructor's Courses

Taylor Jones is a Data Security Officer and security enthusiast/evangelist who loves to teach. His primary focus is helping everyday business leaders and users jettison fear, uncertainty, and doubt (FUD) as they work toward identifying and addressing their security risks. Leaning heavily on the fundamentals and time-tested best practices, Taylor is passionate about overcoming modern security challenges through meaningful solutions that reduce complexity and provide measurable risk reduction. He holds a Master’s degree from the University of Utah in Information Systems. Taylor is also CISSP, CRISC, CCSP, CCSKv3, CCNA CyberOps, Security+, and Network+ certified. When away from the office, this father of four enjoys spending time with his family and is an avid fly fisher and tyer.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.