Hone your skills in Security Risk Management (SRM) and enhance your proficiency in developing and implementing a sound security risk management program within your organization. The course is essential for senior and executive industry professionals and its designed to equip security professionals with the most essential and innovative security risk management tools, processes and practices aligned to ISO:31000 guideline standards of risk management.
The security risk management masterclass outline
Security management programs
Understand and learn how to identify various types of security management programs . Establish the pros and cons for each and how they impact the management of the security function within an organization.
ISO 31000
Learn and understand ISO 31000 risk management standard guidelines. And how to fuse together its core elements of principles, framework and process to create a proactive security risk management program for your organization.
Risk scope
Learn what the risk scope entails and why its defined as the first step of the security risk assessment process.
Establishing context
Learn how to establish the context of the risk assessment activities.
Risk criteria
Learn how to define criteria to be used to evaluate the significance of risk while reflecting on organization's values, objectives and resources.
Threat assessment
Learn how to evaluate threats that align to specific business culture and objectives. As well as how to prepare the design basis threat (DBT) through adversary analysis that involves adversary action, adversary path modelling, adversary action time to allocate appropriate adversary deterrent, monitoring, detection and response mechanisms.
Vulnerability assessment
Learn how to evaluate the weaknesses in business security infrastructures in reference to the SRA scope.
Determining threat likelihood and impact
Learn how to establish risk likelihood and impact through the first matrix process.
Risk analysis
Learn how to establish the intermediate risk value (IRV) using the second matrix process in order to prioritize risks that require attention.
Evaluate risk treatment strategies
Learn the alternative risk treatment strategies.
Implement risk treatment mitigation measures
Learn how to put the identified mitigation measures into action.
Risk monitoring and review
Learn how to monitor and review the effectiveness and practicality of the implemented controls.
