ISO/IEC 27005 Lead Risk Manager
An Interactive 5-Day Training Course

ISO/IEC 27005 Lead Risk Manager

Establishing Information Security Risk Management Based on ISO/IEC 27005 and ISO 27001 Integration

NASBA
Classroom Schedule
Date Venue Fees
07 - 11 Sep 2026 Riyadh $ 5,950

Introduction

This ISO/IEC 27005 Lead Risk Manager training course provides professionals with the knowledge required to establish, implement, and maintain an information security risk management process aligned with ISO/IEC 27005. The course focuses on defining risk management frameworks that support organizational security objectives and integrate with ISO/IEC 27001 information security management systems. Participants will learn how to define risk context, identify assets, evaluate threats and vulnerabilities, and determine risk exposure. The training course explains structured methodologies for performing risk assessments and prioritizing treatment actions. Emphasis is placed on aligning information security risk management with business requirements, governance frameworks, and compliance expectations. Participants will also understand how structured risk management improves decision-making and strengthens organizational security posture.

The training course further develops skills in performing risk analysis, evaluating risk levels, and defining appropriate treatment options. Participants will learn how to develop risk treatment plans, define risk acceptance criteria, and monitor residual risks. The course also addresses communication strategies that support stakeholder awareness and governance oversight. Participants will understand how to implement continuous monitoring processes to ensure risk levels remain within acceptable thresholds. Additionally, the course explains how information security risks evolve and how organizations maintain effective risk management practices. By the end of the training course, participants will be equipped to manage information security risks using ISO/IEC 27005 guidance and support ISO/IEC 27001 implementation objectives.

This ISO/IEC 27005 Lead Risk Manager training course will highlight:

  • Implementing ISO/IEC 27005 risk management framework
  • Performing information security risk assessments
  • Developing risk treatment plans
  • Defining risk acceptance criteria
  • Monitoring and communicating risk status

Objectives

At the end of this ISO/IEC 27005 Lead Risk Manager training course, you will learn to:

  • Implement ISO/IEC 27005 risk management process
  • Perform information security risk assessments
  • Develop risk treatment plans
  • Define risk acceptance criteria
  • Monitor information security risks

Training Methodology

This training course provides structured guidance on implementing information security risk management aligned with ISO/IEC 27005. The methodology focuses on risk identification, analysis, evaluation, and treatment planning. Participants will explore governance alignment, risk monitoring, and reporting considerations. The course emphasizes practical application of risk management principles within information security management systems.

Organisational Impact

This ISO/IEC 27005 Lead Risk Manager training course will enable organisations to:

  • Strengthen information security risk governance
  • Improve risk visibility across security environments
  • Enhance ISO/IEC 27001 implementation support
  • Improve risk-based decision-making
  • Reduce exposure to security threats
  • Enable structured risk monitoring

Personal Impact

Participants will develop:

  • Understand ISO/IEC 27005 framework
  • Perform risk assessments
  • Develop risk treatment plans
  • Define risk acceptance criteria
  • Monitor risk levels
  • Improve security risk management skills

Who should Attend?

This training course is designed for professionals responsible for managing information security risks and implementing ISMS frameworks.

  • Information Security Managers
  • Risk Managers
  • ISMS Professionals
  • IT Security Specialists
  • Compliance Managers
  • Security Consultants
Course Outline
Day 1

ISO/IEC 27005 Risk Management Framework

  • ISO/IEC 27005 overview
  • Risk management concepts
  • Integration with ISO 27001
  • Defining risk context
  • Scope and boundaries
  • Asset identification
Day 2

Risk Assessment Methodology

  • Threat identification
  • Vulnerability assessment
  • Risk analysis techniques
  • Likelihood determination
  • Impact evaluation
  • Risk evaluation
Day 3

Risk Treatment & Acceptance

  • Risk treatment options
  • Developing treatment plans
  • Control selection
  • Residual risk analysis
  • Risk acceptance criteria
  • Management approval
Day 4

Risk Communication & Monitoring

  • Risk communication strategies
  • Stakeholder reporting
  • Risk registers
  • Monitoring risk levels
  • Review processes
  • Continuous risk assessment
Day 5

Maintaining ISRM Process

  • Integration with ISMS
  • Risk metrics and indicators
  • Improvement of risk process
  • Audit considerations
  • Documentation requirements
  • Maintaining risk management lifecycle
Certificates
  • On successful completion of this training course, GLOMACS Certificate will be awarded to the delegates.
  • Continuing Professional Education credits (CPE): In accordance with the standards of the National Registry of CPE Sponsors, one CPE credit is granted per 50 minutes of attendance.
Providers and Associations

Endorsed Education Provider

NASBA

In Association With

Oxford Management Centre

Visit Website

Options & Brochure
Related Categories
Corporate Governance, Compliance, & Risk Management (GRC)
Related Courses

Business Continuity Management System (BCMS) & Enterprise Risk Management (ERM)

5 - Day Training

This Business Continuity Management System & Enterprise Risk Management training course offers attendees a comprehensive primer on optimizing IT risk management and organisational resilience....

View Course

Leading with Governance, Risk and Compliance (GRC): Strategy, Risk and Control

5 - Day Training

In today's business world, organizations face increasing challenges that require them to develop robust and effective management systems to ensure their sustainability and growth.  Governance, risk...

View Course

Internal Control Frameworks: COSO and Beyond

5 - Day Training

In today’s complex and rapidly changing business environment, establishing robust internal control systems is a fundamental aspect of effective governance and risk management. Internal controls...

View Course

Governance Investigation

5 - Day Training

The Governance Investigation training course is crucial for professionals seeking to bolster their organisations' integrity, enhance resilience, and mitigate risk. Effective governance investigations...

View Course
Frequently Asked Question
For detailed information about specific courses, including course content, schedules, and instructors, you can visit our website or contact our customer service team. They will be happy to provide all the information you need to make an informed decision.
Our courses are structured to provide a balanced mix of theory and practical application. They typically include presentations, case studies, group discussions, hands-on activities, and interactive Q&A sessions to maximize learning outcomes.

Yes, upon successful completion of any of our training courses, GLOMACS Certificate will be awarded to the delegates. This certificate is a valuable addition to your professional portfolio and is recognized across various industries.

Yes, GLOMACS provides customized training solutions tailored to meet the specific needs of organizations. We work closely with companies to design bespoke training courses that address their unique challenges and objectives.
You can register for a GLOMACS training course by visiting our website, selecting the course of your choice, and following the simple registration process. You can also contact our support team for assistance with the registration process.
GLOMACS offers both online and in-person training options. You can choose from interactive virtual sessions or attend one of our globally located in-person training courses. The flexibility ensures that learning fits your schedule and preferences.
Attending a GLOMACS training course offers numerous benefits, including enhanced professional skills, increased employability, industry-recognized certification, networking opportunities with peers and experts, and the chance to apply practical knowledge directly to your workplace.
GLOMACS is a globally recognized leader in professional training and development, with a reputation for delivering high-quality, results-driven training courses. We offer a broad spectrum of training courses taught by expert trainers, flexible delivery options (both online and in-person), and accredited certifications that add real value to your career.
Related Categories
Governance, Compliance & Risk
Governance, Compliance & Risk

Training Venues

Browse our complete list of training venues

Training Categories

Browse our complete list of training categories