cross

BIGGEST CHRISTMAS SALE !

red-starWHO WILL BE FUNDING THE COURSE?

We cannot process your enquiry without contacting you, please tick to confirm your consent to us for contacting you about your enquiry.

By submitting your details you agree to be contacted in order to respond to your enquiry.

What are you looking for?
close

close

Or select from our popular topics

Press esc to close

close

close

Talk to a learning expert

Fill out your contact details below and our training experts will be in touch.

alertIf you wish to make any changes to your course, please log a ticket and choose the category ‘booking change’

Fill out your  contact details  below

WHO WILL BE FUNDING THE COURSE?

+44

By submitting your details you agree to be contacted in order to respond to your enquiry

close

close

Press esc to close

close

close

Thank you for your enquiry!

One of our training experts will be in touch shortly to go over your training requirements.

Close
close

close

Press esc to close

close close

Back to course information

Thank you for your enquiry!

One of our training experts will be in touch shortly to go overy your training requirements.

Close
close close

Thank you for your enquiry!

One of our training experts will be in touch shortly to go over your training requirements.

Close

ISO 27005 Training

Online Instructor-led (1 days)

Classroom (1 days)

Online Self-paced (8 hours)

ISO 27005 Foundation Exam

ISO 27005 Foundation Course Outline

ISO 27005 Foundation is a one-day course. During this course, the delegates will be able to learn about various methods and techniques for mitigation associated with information in compliance with the standard.

The following modules are taught during this course:

Module 1: Introduction to ISO 27005 Standard

  • Introduction
  • Concepts, Key Definitions, and Background
  • Quality Management System (QMS)
  • Information Security Risk Management
  • Role and Importance
  • Understanding the Situation in an Organisation
  • Reviewing and Monitoring
  • Octave Method
  • EBIOS Method
  • MEHARI
  • Harmonised TRA Method

Module 2: Interaction with Other ISO

  • How ISO 27005 Interacts with ISO 27001?
  • Quantifying the Business Impact
  • Impact Severity

Show moredown
More information image
Enquire now See dates & prices

DELIVERY METHOD

Online Instructor-ledOnline Self-pacedClassroomOnsite

Limited budget?

tick To help and support our clients we are providing a limited number of 250 daily discount codes. Hurry, first come, first served!
warning If you miss out, enquire to get yourself on the waiting list for the next day!
Enquire now for a daily discount

(359 remaining)

Who should attend this ISO 27005 Foundation Course?

This ISO 27005 Foundation Course is designed to provide professionals with the knowledge and skills necessary to understand the concepts of Information Security Risk Management. The following professional fields can benefit most from it:

  • Information Security Managers
  • Risk Management Specialists
  • Information Security Managers
  • Compliance Officers
  • Security Analysts
  • Internal Auditors
  • Data Protection Officers

Prerequisites of the ISO 27005 Foundation Course

There are no formal prerequisites for this ISO 27005 Foundation Course.

ISO 27005 Foundation Course Overview

The ISO 27005 Foundation course helps delegates understand the different ways and techniques of risk assessment associated with Information Security. During this course, delegates will come to know about techniques on how to handle and deal with cybersecurity risks, knowledge of concepts, models, processes and terminologies.

The delegates will also learn how to master the knowledge of basic steps for information security and effectively manage risks by implementing the different frameworks.

The main objectives of this course are to understand the concepts, ways, approaches, techniques and methods for effective implementation of ISO 27005 in an organisation for risk management.

Show moredown
More information image
Enquire now See dates & prices

What’s included in this ISO 27005 Foundation Course?

  • ISO 27005 Foundation Examination   
  • World-Class Training Sessions from Experienced Instructors 
  • ISO 27005 Foundations Certificate
  • Digital Delegate Pack

Show moredown
More information image
Enquire now See dates & prices

ISO 27005 Foundation Exam Information

To achieve the ISO 27005 Foundation, candidates will need to sit for an examination. The exam format is as follows: 

  • Question Type: Multiple Choice  
  • Total Questions: 30 
  • Total Marks: 30 Marks 
  • Pass Mark: 50%, or 15/30 Marks 
  • Duration: 40 Minutes 
  • Open Book/ Closed Book: Closed Book

Show moredown
More information image
Enquire now See dates & prices

Online Instructor-led (5 days)

Classroom (5 days)

Online Self-paced (40 hours)

ISO 27005 Lead Auditor Exam

ISO 27005 Lead Auditor Course Outline

The following subjects are taught during this course:

Module 1: Introduction to ISO 27005 Standard

  • Introduction
  • Concepts, Key Definitions, and Background
  • Quality Management System (QMS)
  • Information Security Risk Management
  • Role and Importance
  • Understanding the Situation in an Organisation
  • Reviewing and Monitoring
  • Octave Method
  • EBIOS Method
  • MEHARI
  • Harmonised TRA Method

Module 2: Interaction with Other ISO

  • How ISO 27005 Interacts with ISO 27001?
  • Quantifying the Business Impact
  • Impact Severity

Module 3: Planning Individual Internal Audits

  • Internal Audit Approach
  • Risk Assurance Mapping
  • Audit Plan
  • Research the Audit Area
  • Conduct Process Walk-Throughs
  • Map Risks to the Organisation, Process, or Function
  • Obtain Data Prior to Fieldwork

Module 4: Conducting Internal Audit and Handling the Interview Process

  • Identify Risks
  • Plan and Audit Activities
  • Validate the Facts and Complete the Work
  • Develop a Deliverable or Report that will Drive Action
  • Follow Up

Module 5: Understanding Risk Management in an Internal Audit

  • Introduction
  • Risk Management Process

Module 6: Preparation of an ISO 27005 Audit

  • Define Audit Objectives and Scope
  • Select Audit Criteria
  • Establish Audit Teams
  • Develop Audit Plan

Module 7: Conducting an ISO 27005 Audit

  • Risk Management Process
    • Context Establishment
    • Risk Assessment
    • Risk Treatment
    • Risk Acceptance
    • Risk Communication and Consultation
    • Risk Monitoring and Review

Module 8: Closing an ISO 27005 Audit

  • Prepare Audit Report
  • Distribute Audit Report
  • Conduct Audit Follow-up

Module 9: Managing an ISO 27005 Audit Program

  • Know What and When to Audit
  • Create an Audit Schedule
  • Pre-Planning the Scheduled Audit
  • Conducting the Audit
  • Record the Findings
  • Report Findings

Module 10: Key Concepts, Terminology, and Definitions Lead Implementer

  • Internal Context
  • Risk

Module 11: Introduction to Risk Management

  • Monitoring and Reviewing Potential Risks
  • Risk Management Methodologies
  • Information Security Risk Management Framework and Process Model
  • Information Assets Classification, Identification, and Threats
  • Threat Vulnerabilities
  • Controls
  • Controlling Vulnerabilities
  • Vulnerability Categories and Sources
  • Consequences of Vulnerabilities
  • Incident Scenarios
  • Types of Vulnerabilities
  • Methods for Risk Assessment
  • Scales and Simple Calculations
  • Acceptance Strategies
  • Improvement of Risk Assessment and Risk Management
  • Risk Assessment and Risk Management
  • Implementation of Risk Management Programmes
  • Risk Communication and Consultation
  • Communicating Risk
  • Principles of Risk Communication
  • Accurate Communication
  • Risk Communication Procedures

Module 12: Risk Identification and Analysis

  • Risk Analysis and Scoring
  • Risk Identification
  • Risk Estimation
    • Methodologies
    • Components
  • Risk Assessment Techniques
  • Assumptions Analysis
  • Checklist Analysis
  • SWOT Analysis
  • Prompt Lists
  • Interviewing and Brainstorming

Module 13: Role and Responsibilities of a Risk Manager

  • Risk Acceptance and Making Changes
  • Information Security
  • Types of Risks and Associated Threats
  • Security Controls and Measures
  • Scope and Boundaries of Process
  • Constraints that Affect an Organisation
  • Impact of Risks
  • Information Security Risk Management
  • Train and Make Employees Aware of Risks

Module 14: Identifying, Evaluating, and Treating Risk Specified in ISO 27005

  • Risk Treatment
  • Mitigating Control Measures
  • Risk Analysis Tools and Evaluation

Module 15: Role of an Auditor

  • Qualifications of an Auditor
  • IRCA Code of Conduct
  • Internal and External Audits
  • Roles and Responsibilities of a Lead Auditor

Module 16: Preparation and Planning of an Audit

  • Auditing Definition
  • Pre-Audit
  • Setting Audit Standards
  • Defining Targets

Module 17: Review and Monitoring

  • Monitoring and Logging
  • Intrusion and Penetration Testing

Module 18: Auditing Principles and Techniques

  • Auditing Principles
  • Auditing Techniques
  • Gap Analysis
  • Gap Analysis Process
  • 5-Whys
  • Communication Planning
  • Audit Steps
  • Plans and Programs
  • Activities of an Auditor
  • Verification Techniques
  • Inspection Writing

Module 19: Closure of Audit

  • Report Evaluation
  • Follow-up Actions
  • Auditing Results
  • Higher Management
  • Audit Evidence and Findings
  • Audit Follow-up

Show moredown
More information image
Enquire now See dates & prices

DELIVERY METHOD

Online Instructor-ledOnline Self-pacedClassroomOnsite

Limited budget?

tick To help and support our clients we are providing a limited number of 250 daily discount codes. Hurry, first come, first served!
warning If you miss out, enquire to get yourself on the waiting list for the next day!
Enquire now for a daily discount

(359 remaining)

Who should attend this ISO 27005 Lead Auditor Course?

The ISO 27005 Lead Auditor Course teaches the skills and knowledge necessary to conduct audits of Information Security Risk Management Systems. The course is best suited for professionals who want to become Lead Auditors for ISMR systems. The professionals who can benefit from attending this course include the following:

  • Information Security Professionals
  • Quality Assurance Professionals
  • Internal Auditors
  • Risk Managers
  • Compliance Officers
  • Business Continuity Professionals
  • Security Analysts

Prerequisites of the ISO 27005 Lead Auditor Course

There are no formal prerequisites for this ISO 27005 Lead Auditor Course.

ISO 27005 Lead Auditor Course Overview

The ISO 27005 Lead Auditor certification provides delegates with the relevant skills to assist in the application of risk management methods used in the workplace. Over five day, delegates will grasp the fundamental guidelines for information security risk management, which are taught by our highly experienced ISO 27005 trainers. This course includes an exam that will be taken on the final day of training. Our dedicated trainers will ensure that you are fully prepared for the exam, and can offer support and guidance throughout the course. After successfully completing this course, delegates will be able to perform an optimal information security risk assessment and manage risks in the working environment.

Show moredown
More information image
Enquire now See dates & prices

 

What’s included in this ISO 27005 Lead Auditor Course?

  • ISO 27005 Lead Auditor Examination
  • World-Class Training Sessions from Experienced Instructors 
  • ISO 27005 Lead Auditor Certificate
  • Digital Delegate Pack

Show moredown
More information image
Enquire now See dates & prices

ISO 27005 Lead Auditor Exam Information

To achieve the ISO 27005 Lead Auditor, candidates will need to sit for an examination. The exam format is as follows: 

  • Question Type: Multiple Choice  
  • Total Questions: 30 
  • Total Marks: 30 Marks 
  • Pass Mark: 50%, or 15/30 Marks 
  • Duration: 40 Minutes  
  • Open Book/ Closed Book: Closed Book

Show moredown
More information image
Enquire now See dates & prices

Online Instructor-led (2 days)

Classroom (2 days)

Online Self-paced (16 hours)

ISO 27005 Internal Auditor Exam

ISO 27005 Internal Auditor Course Outline

The following subjects will be taught during this course:

Module 1: Introduction to ISO 27005 Standard

  • Introduction
  • Concepts, Key Definitions, and Background
  • Quality Management System (QMS)
  • Information Security Risk Management
  • Role and Importance
  • Understanding the Situation in an Organisation
  • Reviewing and Monitoring
  • Octave Method
  • EBIOS Method
  • MEHARI
  • Harmonised TRA Method

Module 2: Interaction with Other ISO

  • How ISO 27005 Interacts with ISO 27001?
  • Quantifying the Business Impact
  • Impact Severity

Module 3: Planning Individual Internal Audits

  • Internal Audit Approach
  • Risk Assurance Mapping
  • Audit Plan
  • Research the Audit Area
  • Conduct Process Walk-Throughs
  • Map Risks to the Organisation, Process, or Function
  • Obtain Data Prior to Fieldwork

Module 4: Conducting Internal Audit and Handling the Interview Process

  • Identify Risks
  • Plan and Audit Activities
  • Validate the Facts and Complete the Work
  • Develop a Deliverable or Report that will Drive Action
  • Follow Up

Module 5: Understanding Risk Management in an Internal Audit

  • Introduction
  • Risk Management Process

Module 6: Preparation of an ISO 27005 Audit

  • Define Audit Objectives and Scope
  • Select Audit Criteria
  • Establish Audit Teams
  • Develop Audit Plan

Module 7: Conducting an ISO 27005 Audit

  • Risk Management Process
    • Context Establishment
    • Risk Assessment
    • Risk Treatment
    • Risk Acceptance
    • Risk Communication and Consultation
    • Risk Monitoring and Review

Module 8: Closing an ISO 27005 Audit

  • Prepare Audit Report
  • Distribute Audit Report
  • Conduct Audit Follow-up

Module 9: Managing an ISO 27005 Audit Program

  • Know What and When to Audit
  • Create an Audit Schedule
  • Pre-Planning the Scheduled Audit
  • Conducting the Audit
  • Record the Findings
  • Report Findings

Show moredown
More information image
Enquire now See dates & prices

DELIVERY METHOD

Online Instructor-ledOnline Self-pacedClassroomOnsite

Limited budget?

tick To help and support our clients we are providing a limited number of 250 daily discount codes. Hurry, first come, first served!
warning If you miss out, enquire to get yourself on the waiting list for the next day!
Enquire now for a daily discount

(359 remaining)

Who should attend this ISO 27005 Internal Auditor Course?

The ISO 27005 Internal Auditor Course is designed to provide professionals with the knowledge and skills necessary to conduct internal audits of Information Security Management Systems (ISMSs). Below are some professionals who can have benefit from this course:

  • Information Security Managers
  • Information Security Officers
  • Internal Auditors
  • Risk Managers
  • Compliance Officers
  • Security Engineers
  • Security Analysts

Prerequisites of the ISO 27005 Internal Auditor Course

There are no formal prerequisites for this ISO 27005 Internal Auditor Course.

ISO 27005 Internal Auditor Course Overview

The ISO 27005 Internal Auditor course will help delegates learn the basic features for Information Security when using the ISO 27005 (Risk Management) standards. Delegates will be taught the necessary skills to deliver an information security risk assessment and manage potential risks in the workplace. 

Show moredown
More information image
Enquire now See dates & prices

What’s included in this ISO 27005 Internal Auditor Course?

  • ISO 27005 Internal Auditor Examination
  • World-Class Training Sessions from Experienced Instructors 
  • ISO 27005 Internal Auditor Certificate
  • Digital Delegate Pack

Show moredown
More information image
Enquire now See dates & prices

ISO 27005 Internal Auditor Exam Information

To achieve the ISO 27005 Internal Auditor, candidates will need to sit for an examination. The exam format is as follows: 

  • Question Type: Multiple Choice  
  • Total Questions: 30 
  • Total Marks: 30 Marks 
  • Pass Mark: 50%, or 15/30 Marks 
  • Duration: 40 Minutes
  •  Open Book/ Closed Book: Closed Book

Show moredown
More information image
Enquire now See dates & prices

Online Instructor-led (3 days)

Classroom (3 days)

Online Self-paced (24 hours)

ISO 27005 Lead Implementer Exam

ISO 27005 Lead Implementer​ ​Course Outline

This course will cover the following topics:

Module 1: Introduction to ISO 27005 Standard

  • Introduction
  • Concepts, Key Definitions, and Background
  • Quality Management System (QMS)
  • Information Security Risk Management
  • Role and Importance
  • Understanding the Situation in an Organisation
  • Reviewing and Monitoring
  • Octave Method
  • EBIOS Method
  • MEHARI
  • Harmonised TRA Method

Module 2: Interaction with Other ISO

  • How ISO 27005 Interacts with ISO 27001?
  • Quantifying the Business Impact
  • Impact Severity

Module 3: Planning Individual Internal Audits

  • Internal Audit Approach
  • Risk Assurance Mapping
  • Audit Plan
  • Research the Audit Area
  • Conduct Process Walk-Throughs
  • Map Risks to the Organisation, Process, or Function
  • Obtain Data Prior to Fieldwork

Module 4: Conducting Internal Audit and Handling the Interview Process

  • Identify Risks
  • Plan and Audit Activities
  • Validate the Facts and Complete the Work
  • Develop a Deliverable or Report that will Drive Action
  • Follow Up

Module 5: Understanding Risk Management in an Internal Audit

  • Introduction
  • Risk Management Process

Module 6: Preparation of an ISO 27005 Audit

  • Define Audit Objectives and Scope
  • Select Audit Criteria
  • Establish Audit Teams
  • Develop Audit Plan

Module 7: Conducting an ISO 27005 Audit

  • Risk Management Process
    • Context Establishment
    • Risk Assessment
    • Risk Treatment
    • Risk Acceptance
    • Risk Communication and Consultation
    • Risk Monitoring and Review

Module 8: Closing an ISO 27005 Audit

  • Prepare Audit Report
  • Distribute Audit Report
  • Conduct Audit Follow-up

Module 9: Managing an ISO 27005 Audit Program

  • Know What and When to Audit
  • Create an Audit Schedule
  • Pre-Planning the Scheduled Audit
  • Conducting the Audit
  • Record the Findings
  • Report Findings

Module 10: Key Concepts, Terminology, and Definitions Lead Implementer

  • Internal Context
  • Risk

Module 11: Introduction to Risk Management

  • Monitoring and Reviewing Potential Risks
  • Risk Management Methodologies
  • Information Security Risk Management Framework and Process Model
  • Information Assets Classification, Identification, and Threats
  • Threat Vulnerabilities
  • Controls
  • Controlling Vulnerabilities
  • Vulnerability Categories and Sources
  • Consequences of Vulnerabilities
  • Incident Scenarios
  • Types of Vulnerabilities
  • Methods for Risk Assessment
  • Scales and Simple Calculations
  • Acceptance Strategies
  • Improvement of Risk Assessment and Risk Management
  • Risk Assessment and Risk Management
  • Implementation of Risk Management Programmes
  • Risk Communication and Consultation
  • Communicating Risk
  • Principles of Risk Communication
  • Accurate Communication
  • Risk Communication Procedures

Module 12: Risk Identification and Analysis

  • Risk Analysis and Scoring
  • Risk Identification
  • Risk Estimation
    • Methodologies
    • Components
  • Risk Assessment Techniques
  • Assumptions Analysis
  • Checklist Analysis
  • SWOT Analysis
  • Prompt Lists
  • Interviewing and Brainstorming

Module 13: Role and Responsibilities of a Risk Manager

  • Risk Acceptance and Making Changes
  • Information Security
  • Types of Risks and Associated Threats
  • Security Controls and Measures
  • Scope and Boundaries of Process
  • Constraints that Affect an Organisation
  • Impact of Risks
  • Information Security Risk Management
  • Train and Make Employees Aware of Risks

Module 14: Identifying, Evaluating, and Treating Risk Specified in ISO 27005

  • Risk Treatment
  • Mitigating Control Measures
  • Risk Analysis Tools and Evaluation

Show moredown
More information image
Enquire now See dates & prices

DELIVERY METHOD

Online Instructor-ledOnline Self-pacedClassroomOnsite

Limited budget?

tick To help and support our clients we are providing a limited number of 250 daily discount codes. Hurry, first come, first served!
warning If you miss out, enquire to get yourself on the waiting list for the next day!
Enquire now for a daily discount

(359 remaining)

Who should attend this ISO 27005 Lead Implementer Course?

The ISO 27005 Lead Implementer Course is designed to equip professionals with the knowledge and skills needed to implement risk management processes based on the ISO 27005 standard. It is especially beneficial for the following professionals:

  • Business Continuity Managers
  • Risk Managers
  • Information Security Managers
  • Security Consultants
  • Compliance Officers
  • Data Protection Officers
  • Auditors

Prerequisites of the ISO 27005 Lead Implementer Course

There are no formal prerequisites for this ISO 27005 Lead Implementer Course.

ISO 27005 Lead Implementer​ ​Course Overview

This 3-day ISO 27005 training course has been designed to help delegates gain the relevant experience on the role and importance of Risk Management in an organisation. After finishing the course, delegates will be able to integrate the ISO 27005 Information Security Risk Management Framework with the ISO 27001 ISMS.

Show moredown
More information image
Enquire now See dates & prices

What’s included in this ISO 27005 Lead Implementer Course?

  • ISO 27005 Lead Implementer Examination   
  • World-Class Training Sessions from Experienced Instructors 
  • ISO 27005 Lead Implementer Certificate
  • Digital Delegate Pack

Show moredown
More information image
Enquire now See dates & prices

ISO 27005 Lead Implementer Exam Information

To achieve the ISO 27005 Lead Implementer​, candidates will need to sit for an examination. The exam format is as follows: 

  • Question Type: Multiple Choice  
  • Total Questions: 30 
  • Total Marks: 30 Marks 
  • Pass Mark: 50%, or 15/30 Marks 
  • Duration: 40 Minutes  
  • Open Book/ Closed Book: Closed Book

Show moredown
More information image
Enquire now See dates & prices

Not sure which course to choose?

Speak to a training expert for advice if you are unsure of what course is right for you. Give us a call on 01344203999 or Enquire.

Enquire now

ISO 27005 Training FAQs

Please arrive at the venue at 8:45am.

Please see our ISO 27005 Training courses available in the United Kingdom

The Knowledge Academy is the Leading global training provider for ISO 27005 Training.

The price for ISO 27005 Training certification in the United Kingdom starts from £2495.

Why we're the go to training provider for you

icon

Best price in the industry

You won't find better value in the marketplace. If you do find a lower price, we will beat it.

icon

Trusted & Approved

We are accredited by PeopleCert on behalf of AXELOS

icon

Many delivery methods

Flexible delivery methods are available depending on your learning style.

icon

High quality resources

Resources are included for a comprehensive learning experience.

barclays Logo
deloitte Logo
Thames Water Logo

"Really good course and well organised. Trainer was great with a sense of humour - his experience allowed a free flowing course, structured to help you gain as much information & relevant experience whilst helping prepare you for the exam"

Joshua Davies, Thames Water

santander logo
bmw Logo
Google Logo

Looking for more information on ISO 27005 Training

We use cookies that are essential for our site to work. Please visit our cookie policy for more information. To accept all cookies click 'Accept & close'.

Accept & close