E-Learning: Risk Management Approach and Practices (EC-RM)

This risk management course is specifically designed to guide a CISO in defining and implementing a risk management approach within an IS program. The course introduces the student to the most common approaches and practices used by organizations worldwide. It is not intended to cover risk outside of the IS enterprise (including financial and business risks).

This risk management course covers the following main subject areas:

- Risk Management

- Risk Treatment

- Risk Management Frameworks

- Third-Party Risk Management

When the main subject areas are combined, they create an effective risk management program to establish the foundation to protecting information and assets. The specific focus of this course doesn’t allow covering certain topics. Subject areas related to risk––such as threat and vulnerability management, as well as information security controls––simply cannot be covered within the scope of this course.

• Introduction to Risk Management
• The Essentials of a Risk Management Program
• Risk Management Frameworks
• Risk Management Policies and Procedures
• Risk-Based Audits
• Third-Party Risk Management (TPRM)
• Risk Management Positions
• Risk Law
• Procurement Risk Management
• Risk Culture
• Future of Risk Management