Risk Management 31000 Lead Manager

Curso Risk Management 31000 Lead Manager

Acquire the expertise to establish, implement, maintain, and continually improve a Risk Management Framework (RMF), in accordance with the guidelines of the ISO 31000 International Standard.

 

– 3RD COURSE OF 2023 TOP – 

The Risk Management 31000 Lead Manager course is a course based on the ISO 31000 international standard. Supported by a real-world adapted case-study, the course challenge the students on the implementation of a Risk Management Framework (RMF) based on the best practices defined by the ISO 31000 family of standards and supported by a BEHAVIOUR customized methodology created by experts on risk management and on ISO and other related well known best practices on the risk management field.

More than knowing the main definitions, concepts, principles and requirements, the students will learn to put into practice a Risk Management Program to establish and maintain a Risk Management Framework (RMF), based on a BEHAVIOUR customized methodology, and supported by several training resources, including several approaches, templates and other tools that will be useful so students may be able to apply their knowledge in a real-world context.

The students will be challenged with a series of exercises, supported by BEHAVIOUR and in-class drafted templates, were the learned knowledge and acquired expertise will came into practice. Exercises such as the understanding of the organization drivers; the risk management context establishment, including the external and internal, interested parties, and establishing the risk management program scope; draft the basis for the RMF, its integration with the organization context, risk criteria; establish the risk management objectives and plans (including the Risk Management Plan, and the Risk Communication Plan) for their achievement; establish the process and draft an practical approach for assessing and treatment of risk and opportunities, including the processes, risk register, and risk treatment plan; identify and create the processes and procedures required to support the RMF; identify and apply techniques to support the risk assessment and treatment based on IEC 31010; establish the approach for performance evaluation, including the definition of measures and indicators, reporting and reviews of the program; among others, as applicable, are important to allow the implementation of the standard in an organization.

Training materials updated with the last released editions of all the related best practices, including any related draft published.

 

Next GUARANTEED DATES (*)       20-May-2024,   Register now       01-Jul-2024,   Register now       

Curso Risk Management 31000 Lead Manager

Introduction

This course is available to be delivered in a classroom and Live-Training model.
Live Training brings you the dynamic environment of the classroom, to your desk. Using your computer, you interact with the trainer and the trainees as if you were with them in the classroom.

Click to learn how > Live Online Training works < Risk Management 31000 Lead Manager Path

On this course, the students will acquire the expertise to establish, implement, maintain, and continually improve a Risk Management Framework (RMF), in accordance with the guidelines of the ISO 31000 International Standard.

Besides the fundamental concepts related with risk management referred on ISO Guide 73 / ISO 31073 and a detailed overview clause-by-clause of the ISO 31000 standard and related guidance, the course leads the students through a step-by-step BEHAVIOUR customized methodology to implement and integrate the ISO 31000 international standard in an organization, either as part of a new Risk Management Program, or, in support to an existing program already implemented on the organization.

The risk management implementation process covered on this course is supported by the ISO, IEC and BS 31000 standards family and practical guidance, including the guidance for the RMF implementation (ISO 31004), the guidance for using ISO 31000 in management systems (IWA 31), the guidance for identify and use risk assessment techniques (IEC 31010), and many others of the most recognized corporate governance, risk management, information security, cybersecurity, project management and IT (including IT Governance) best practices, as applicable.

The BEHAVIOUR customized methodology helps the students to transform the learned knowledge and expertise into real-world practice. Applying this knowledge, the students will be able to implement a Risk Management Framework and related processes based on ISO 31000 and lead with success their organization, or their customers organization, to the establishment and maintenance of an effective, adequate, and suitable risk management program.

Based on a real-world adapted case-study organization, and supported by several approaches, templates, and other tools, including discussions and practical exercises, the students will team-up with their peers during this course and will be challenged to demonstrate their Lead Manager skills to implement an RMF for this organization. This training methodology train and prepare students for successfully implement the ISO 31000 standard in a real-world environment.

Training Methodology
This course is based on theorical, and practical sessions supported by a real-world adapted case-study.
The course includes hands-on practical and theorical exercises to:
  • better prepare the students for the real-world challenges,
  • to prepare and increase the likelihood of success on the certification exam, and
  • train and prepare professionals for leading the RMF implementation and respond to the needs of their organization.
This course is available to be delivered in a Classroom and Live-Training model.
Live Training brings you the dynamic environment of the classroom, to your desk. Using your computer, you interact with the trainer and the trainees as if you were with them in the classroom.

Audience
This course is intended to:
  • Risk managers, Information Security and/or IT Consultants, Business Continuity Managers, Auditors, and Management System Representative or Risk Professionals participating on an RMF implementation based on ISO 31000
  • Any Executive or Senior Manager responsible to ensure the alignment and delivery of value using an RMF based on ISO 31000 to support the governance and management of risk on their organization
  • Experts responsible for the Risk Management, Governance, Compliance and/or Legal on the organization
  • Project managers leading or preparing to lead an ISO 31000 implementation program
  • Any professional, either, risk management, IT, information security, business or any other, involved on the establishment, implementation, operations and/or continual improvement of a Risk Management Program and related RMF based on ISO 31000
  • Anyone who wants to acquire the knowledge needed to implement an ISO 31000 RMF and related processes

Prerequisites
Students should understand English as the course documentation is in this language. Please consult BEHAVIOUR to verify the availability of the course on other languages.

Duration (days)
5 days

Learning Objectives
At the end of this course students will be able to:
  • Understand the fundamental information security concepts, the related risk management terminology, and the main clauses of ISO 31000
  • Get to know and understand the correlation of the ISO, BS, IEC 31000 family standards, including ISO 31000, ISO 310004, IEC 31010 and related ISO and other best practices, legislation, and regulation
  • Know how to identify the main differences from the ISO 31000:2018 and the ISO 31000:2009 editions
  • Apply the risk management principles to create and protect the organization’ value
  • Design, implement, evaluate, improve, and integrate a risk management framework on the organization based on ISO 31000, and as part of a risk management program
  • Draft, implement, maintain, and improve a risk management process customized to the organization needs, including the assessment and treatment of risks using the guidance of IEC 31010
  • Learn how to draft a risk management plan, including how to report, record, communicate, monitor, and review the risks
  • Identify and draft the RMF and risk management program required documented information, including templates for policies, processes, procedures, among others needed
  • Identify and respond to the RMF and risk management program continual improvement requirements based on the continual changes in the context of an organization
  • Acquire the need knowledge to effectively advise organizations on the latest best practices in risk management, including recognized tools, techniques, and methods, in support to the risk management and business objectives
  • Lead and support a risk management team on the implementation of a risk management program based on ISO 31000 through the organization as part of the enterprise risk management (ERM) strategy

Program
  1. Introduction to risk management, the ISO 31000 standard, principles, and framework
    • Course introduction
    • Risk management fundamentals
    • Risk management standards, frameworks, methodologies, legislation, and regulation
    • Presentation and overview of the ISO 31000 guidance
    • Comparing ISO 31000 risk management editions 2009 (Ed.1) vs. 2018 (Ed. 2)
    • Risk management principles
    • Risk management framework implementation

  2. Risk management context, assessment and treatment based on ISO 31000
    • Understanding of the organization drivers and establishing the risk management context
    • Drafting the risk management process, including its scope, context, and criteria
    • Identification of risks
    • Analysis and evaluation of risks
    • Treatment of risks
    • Risk acceptance and management of residual risks

  3. Risk management communication, consultation, monitoring, review, recording, and reporting based on ISO 31000
    • Risk management communication and consultation
    • Risk management monitoring and review
    • Risk management reporting and recording

  4. Selection and application of risk assessment techniques based on IEC 31010
    • Introduction and uses of risk assessment techniques based on IEC 31010
    • Plan the risk assessment considering the use of risk assessment techniques
    • Apply risk assessment techniques and review the results to support decisions
    • Selecting risk assessment techniques
    • Personnel certification and closing the training

Exam
The “Certified Risk Management 31000 Lead Manager” exam covers the following competence domains:
  • Domain 1: Risk management fundamentals and ISO 31000 guidelines
  • Domain 2: Risk management framework based on ISO 31000
  • Domain 3: Risk management process, assessment and treatment based on ISO 31000
  • Domain 4: Risk communication and consultation based on ISO 31000
  • Domain 5: Risk monitoring, review, reporting, and recording based on ISO 31001
  • Domain 6: Risk assessment techniques based on IEC 31010
Language(s): English (please consult BEHAVIOUR for availability on additional languages).
Exam details: One part exam.
Duration: 3 hours.
Results: “Pass or Fail” qualitative score. In the case of a failure, the result will be accompanied with the list of domains in which you had a mark lower than the passing grade. If the candidate fails the exam, he is entitled to one free retake within a 1-year period from the initial exam date.
Passing score: 700/1000 marks.
Exam type: Scenarios-based open questions.

Certification
After successfully completing the certification exam, participants may apply for one of the three available credentials for this personnel certification scheme, depending on their level of experience.
  • Certified Risk Management 31000 Associate Manager: no previous experience required.
  • Certified Risk Management 31000 Manager: 2 years of experience on risk management
  • Certified Risk Management 31000 Lead Manager: 5 years of experience on risk management
A certificate will be issued to participants who successfully pass the exam and comply with all the other requirements related to the selected credential. Candidates also receive the digital badge of the certification achieved.

The “Certified Risk Management 31000 Lead Manager” personnel certification program is drafted and maintained according to the ISO/IEC 17024 standard.

Trainer
Our specialists are renowned consultants and auditors, with several years of experience in the areas of implementation, auditing and training in risk management, with particular focus on standards ISO 31000, IEC 31010 and managing information security risks as part as ISO 27001 implementations using ISO 31000 as a base standard and taking advantage of the value provided by ISO 27005 and related standards and methodologies such as, OCTAVE, MEHARI, EBIOS, among others.

General Information

CLASSROOM TRAINING
  • Training in English language.
  • Training material in English.
  • Step-by-step risk management methodology.
  • Behaviour Participation Certificate of 35 CPD/CPE credits.
  • Certification Exam in Portuguese or English language.
  • Certification Diploma and certification badge after successful examination and formal process registration. This process has no associated cost.
  • If the candidate fails the exam, he is entitled to one free retake within a 12 month period from the initial exam date.
  • Coffee break in the morning and afternoon (Applies to all training that take place in Behaviour facilities)
LIVE ONLINE TRAINING
  • Training in English language.
  • Online training material in English, with online access, containing information and practical exercises.
  • Step-by-step risk management methodology.
  • Behaviour Digital Participation Certificate of 35 CPD/CPE credits.
  • Online Certification Exam in Portuguese or English language. The exam can be taken up to 3 months after completing of the course.
  • Certification Diploma and certification badge after successful examination and formal process registration. This process has no associated cost.
  • If the candidate fails the exam, he is entitled to one free retake within a 12 month period from the initial exam date.

Benefits
  • ISO 31000 standard provides guidance and support to the implementation and management of a generic risk management framework.

  • ISO 31000 is not a certifiable standard for an organization; however, this standard provides principles and generic guidelines on risk management, applied to any type of risk, and when implemented promote uniformity of risk management across organizations.

  • Risk Management 31000 Lead Manager course bases its pedagogical model in a certification program based on the ISO/IEC 17024 standard, which defines the requirements for certification of people, fulfilling the recommendations of ISO.

  • Risk Management 31000 Lead Manager course includes a customized implementation methodology and is oriented towards to master a model for implementing risk management processes throughout their organization using the ISO 31000 standard as a reference framework. Thus, this course approaches ISO 31000 general risk management standard, the process model it recommends, and how companies may use the standard, and its companion risk assessment techniques document IEC 31010. Also, referenced is made to perform an optimal risk assessment and manage risks in time by being familiar with their life cycle.

  • Certification exam is monitored by an official Behaviour administrator.

  • The Certified Risk Management 31000 Lead Manager certification exam is conducted at the end of the course, on the last day of training, which focuses on development questions and case studies allowing the certifying entity to measure, more effectively, the knowledge of the candidates.

  • Upon success in the exam, the professional will achieve one of the Risk Management 31000 certifications levels. In case of failure, professional may repeat the exam at no additional cost, within 1 year after the date of the 1st examination.

  • Behaviour Pedagogical Model aims to provide a learning environment conducive to acquisition of competences, in accordance with objectives of each training program. Promoting interaction, participation, and appreciation of experiences, we contribute to meaningful learning, certification, and international recognition but, above all to the development of critical thinking and autonomy.

  • Behaviour is an organization accredited by DGERT (Portuguese Government Entity). Behaviour has its Quality Management System (QMS) implemented in accordance with the requirements of ISO 9001, the requirements of DGERT, the requirements of the European standard NP 4512 and the standard ISO 10015.

Dates and Price

Click on “Price and Registration” to access more information and also the price:

Guaranteed Dates Program
(*) All dates of this course are guaranteed only for the events that take place in Lisbon. In other locations the events are subject to a minimum number of participants.
On Behaviour all courses at Lisbon occur regardless of the number of trainees in room. The concept of setting up classes does not exist in our educational model, which is why all public dates, presented on the website, are guaranteed. So if you're in Portugal or anywhere else in the world, you can prepare your week and your trip, as long as you ensure your registration in the course.

Volume Discounts
For companies, Behaviour offer discounts, starting from the registration of the 2nd participant, in the same course and on the same date.
Simulate the prices for the number of participants you want to register to training@behaviour-group.com or contact us via chat.

Hotels and Useful Information
Know where you can stay in Lisbon, near Behaviour. For more information please see >> Booking <<