About the course

Why should you take this training course?

ISO/IEC 27005 Foundation is a training course that focuses on the information security risk management process introduced by ISO/IEC 27005 and the structure of the standard. It provides an overview of the guidelines of ISO/IEC 27005 for managing information security risks, including context establishment, risk assessment, risk treatment, communication and consultation, recording and reporting, and monitoring and review

Training done in collaboration with


Course Outlines

Course Agenda

Duration: You can take this course at your own pace.

Day 1: : Introduction to ISO/IEC 27005 and fundamental concepts of information security risk management

Day 2: Information security risk management and certificate exam

Certification Exam (1 Hour)

The exam fully meets the requirements of the PECB Examination and Certification Program (ECP). It covers the following competency domains:

  • Domain 1: Fundamental concepts of information security risk management.
  • Domain 2: Information security risk management approaches and processes.

Course Details

Duration: Up to 6 months

Starts: Upon Registration

Ends: After Examination

You'll be signed up to our PECB platform KATE where you will have access to all training procedures.

  • Certification fees are included on the exam price.
  • Training material containing over 200 pages of information and practical examples will be distributed.
  • A participation certificate of 14 CPD (Continuing Professional Development) credits will be issued.
  • In case of exam failure, you can retake the exam within 12 months for free.

Learning Objectives

  • Describe the main risk management concepts, principles, and definitions.
  • Interpret the guidelines of ISO/IEC 27005 for managing information security risks.
  • Identify approaches, methods, and techniques used for the implementation and management of an information security risk management program.

Educational Approach

  • Contains lecture sessions illustrated with examples and discussions.
  • Encourages interaction between participants by means of questions and suggestions.
  • Includes quizzes with similar structure to the exam.

Frequently Asked Questions

What are the Prerequisites


Who should attend?

  • Risk management professionals.
  • Professionals wishing to get acquainted with the guidelines of ISO/IEC 27005 for information security risk management.
  • Personnel tasked with managing information security risks in their area of responsibility.
  • Individuals interested in pursuing a career in information security risk management.

ISO/IEC 27005 Foundation – Self-Study


Become acquainted with the best practices of Information Security Risk Management based on ISO/IEC 27005

Self-Study Course: €380 + VAT