Risk management based on CSN/ISO/IEC 27005

General overview of the possibilities of information technology and threats to information security

Security requirements in general
Concepts of confidentiality (confidentiality), integrity (integrity), availability (availability). More complex terms such as non-repudiation, privacy, safety, authenticity, reputation
Concepts of business continuity and disaster recovery
The relationship of information security to BCP and DR
Terms asset, valuation, vulnerability, threat, risk
Roles of workers such as asset owner, risk owner
Risk assessment in general
Relationship threat - risk
Asset management
Risk assessment methodologies according to ISO 27005
Examples of vulnerabilities in information technology
Examples of threats in information technology
Examples of building a risk analysis on threats to information technology

Next courses

NIS2 - Network and Information Security 2 [GOC240]

CISSP - Certified Information Systems Security Professional [CISSP]

Windows Server - Active Directory SAE, Tiering and Red Forest [GOC159]

Windows Server - Auditing Security According to ISO/IEC 27001 and ISO/IEC 27002 version 2022 [GOC169]