ISO 27005 Risk Manager

After mastering all the necessary concepts of Information Security Risk Management based on ISO/IEC 27005, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27005 Lead Risk Manager” credential. By holding a PECB Lead Risk Manager Certificate, you will be able to demonstrate that you have the practical knowledge and professional capabilities to support and lead a team in managing Information Security Risks.

• Master the concepts, approaches, methods and techniques that enable an effective risk management process based on ISO/IEC 27005
• Acknowledge the correlation between Information Security risk management and security controls
• Learn how to interpret the requirements of ISO/IEC 27001 in Information Security Risk Management
• Acquire the competence and skills to effectively advise organizations on Information Security Risk Management best practices
• Acquire the knowledge necessary for the implementation, management and maintenance of an ongoing risk management program

• Information Security risk managers
• Information Security team members
• Individuals responsible for Information Security, compliance, and risk within an organization
• Individuals implementing ISO/IEC 27001, seeking to comply with ISO/IEC 27001 or individuals who are involved in a risk management program
• IT consultants
• IT professionals

A fundamental understanding of ISO/IEC 27005 and comprehensive knowledge of Risk Assessment and Information Security.

The “PECB Certified ISO/IEC 27005 Lead Risk Manager” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains:

• • Domain 1: Fundamental principles and concepts of Information Security Risk Management
  • Domain 2: Implementation of an Information Security Risk Management program
  • Domain 3: Information security risk assessment
  • Domain 4: Information security risk treatment
  • Domain 5: Information security risk communication, monitoring and improvement