You are on page 1of 2


Co ur se De scr iption
The ability to accurately analyse, assess and manage the risk to business information systems has always been the central issue in information security. The increasing emphasis on corporate governance, and compliance with standards such as ISO 27001 and BS 25999, has further underlined the importance of knowing and managing risk. This course helps the candidates to understand the overall concept of risk management and then managing the IT or information risks.

C ourse Objectives
• To help the attendees to form an understanding on the overall concept of risk management with an emphasis on IT risk management • To clearly deliver the different aspects of risk management such as assets management, qualitative, quantitative risk management etc., • To make the attendees understand the business impact analysis • To provide the candidates with different risk treatment options, monitoring and controlling of risks


Risk Management ISO 27005

W ho sho uld attend?
• Security and risk management practitioners involved in the practical implementation of risk analysis and management for information systems • Business managers and risk decision makers who need a good understanding of information risk analysis, assessment and management disciplines in order to make business risk decisions aligned with corporate governance principles

9 - 11 January 2011, Abu Dhabi

In s t r ucto r P r o f ile
Ms. Bhawani Our lead trainer, an MBA (Manchester-MBS) graduate, has gone through more than 18 yrs of experience in information system and management fields and had assesses and positions her in UAE such are: CISSP, CISA, CICA, CISM, PMP, ISO 27001 & 9001 Auditor ,CGEIT and ISACA accredited trainer (COBIT),Senior Assessor for SKEA yr 2006-09, Information Sec.-IDEA UAE yr 2007-08, Ex-VP UAE ISACA 2006-08, Sr. Proj. Manager-ADNOC Dist. yr.1999-2007.

C ontact :
Ms. Palwasha Tel : +971 2 4478500 Email

C o u rse O ut l i ne • • • • • • • • • • Controlling access to information systems Networking systems and telecommunications Defining security management Creating applications security Performing cryptography Securing system architecture Executing operations security Performing business continuity planning Applying physical security Applying law.11 January 2011 Location : Abu Dhabi Other Information TUV Akademie Certificate will be issued to all attendees. Accomodation is not included in course fees. Payments to be made in advance. Course Fee mentioned is per delegate. morning and afternoon of each day. coffee/tea on arrival. Exact venue of the training will be notified two weeks prior to course start date. However. and ethics C ontact Information Main Office TUV Akademie Middle East P O Box 46030 Abu Dhabi United Arab Emirates Tel : +971 2 4478500 Fax : +971 2 4478558 Email : me-akademie@tuv-nord. buffet lunch.000 per delegate Duration of course : 3 days Date : 9 . any accomodation required can be arranged by TUV Akademie at time of For any information or registration for the course. Partners . This rate includes course notes. investigations. This course will also equip delegates with the skills to: • • • • • Carry out a Business Impact Analysis (BIA) Carry out a threat & vulnerability assessment Identify risks that require treatment and recommend suitable controls Produce a risk report and treatment plan for business managers Produce (or improve) an information classification scheme C ourse Fee Fee : US$ 3. you can contact the Course Co-ordinator at the contact details mentioned overleaf. Courses will be conducted during the designated dates at a 4 star or 5 star hotel in the designated city. Avail an attractive 5% discount on course fee if you register 30 days before course start date.