M MentoroidX
Official ISO Courses Templates Library MentoroidX Learner Portal Contact
MentoroidX is a PECB Authorized Partner.
Learn using official PECB course materials. Secure your enrolment online and receive access instructions after purchase.
PECB eLearning

PECB ISO/IEC 27005 Risk Manager

eLearning Training Course Master the implementation and Information Security Risk Management (ISRM) based on ISO/IEC 27005

Self-paced online learning. Start anytime. Official course access delivered after enrolment.

Enrol now Download brochure

Includes official PECB eLearning enrolment, exam and certification fees, learner support, and bonus implementation resources.

Need company billing? Request an invoice.

What you get (included)
  • Official PECB eLearning access
  • Exam and certification fees included
  • MentoroidX learner support
  • Bonus templates and implementation aids
See everything included
  • Official PECB eLearning enrolment through an authorized PECB partner, with access instructions sent after checkout.
  • Official PECB exam and certification fees included plus 1 free exam retake where applicable under PECB rules.
  • Free 4 × full mock/prep exams with answers (PDF) provided by MentoroidX after enrolment.
  • MentoroidX AI Learner Support for scenario guidance, concept explanations, and implementation help as you study.
  • Free core templates from the Templates Library to help you get implementation-ready.
  • Company purchase? Request an invoice or contact us for procurement support.

Ideal for: managers, consultants, implementation leads, and professionals responsible for ISO standard deployment.

Format: eLearning
PECB ISO/IEC 27005 Risk Manager
Course OverviewWhy should you attend?Who should attend?Learning ObjectivesTraining course structureGeneral InformationHow does the eLearning experience look like?How can you benefit from the PECB eLearning experience?FAQ

Course Overview

This training course provides the knowledge and skills to identify, evaluate, analyze, treat, and communicate information security risks based on ISO/IEC 27005.

It also provides an overview of risk management concepts and principles outlined by ISO/IEC 27005 and ISO 31000, and introduces other risk assessment methods such as OCTAVE, MEHARI, EBIOS, NIST, CRAMM, and Harmonized TRA.

Why should you attend?

The ISO/IEC 27005 Risk Manager training course provides valuable information on risk management concepts and principles outlined by ISO/IEC 27005 and also ISO 31000. The training course provides participants with the necessary knowledge and skills to identify, evaluate, analyze, treat, and communicate information security risks based on ISO/IEC 27005.

Furthermore, the training course provides an overview of other best risk assessment methods, such as OCTAVE, MEHARI, EBIOS, NIST, CRAMM, and Harmonized TRA. The PECB ISO/IEC 27005 Risk Manager certification demonstrates that you comprehend the concepts and principles of information security risk management.

The training course is followed by an exam. After passing the exam, you can apply for the “PECB Certified ISO/IEC 27005 Risk Manager” credential.

Who should attend?

  • Managers or consultants involved in or responsible for information security in an organization
  • Members of information security teams, IT professionals, and privacy officers
  • Individuals responsible for managing information security risks
  • Individuals responsible for maintaining conformity with the information security requirements of ISO/IEC 27001 in an organization
  • Project managers, consultants, or expert advisers seeking to master the management of information security risks

Learning Objectives

The “PECB Certified ISO/IEC 27005 Risk Manager” exam meets all the requirements of the PECB Examination and Certification Program (ECP). It covers the following competency domains: Domain 1: Fundamental principles and concepts of information security risk management; Domain 2: Implementation of an information security risk management program; Domain 3: Information security risk management framework and processes based on ISO/IEC 27005; Domain 4: Other information security risk assessment methods.

  • Explain the risk management concepts and principles outlined by ISO/IEC 27005 and ISO 31000
  • Establish, maintain, and improve an information security risk management framework based on ISO/IEC 27005
  • Apply information security risk management processes based on the guidelines of ISO/IEC 27005
  • Plan and establish risk communication and consultation activities

Training course structure

  • Section 1: Training course objectives and structure
  • Section 2: Standards and regulatory frameworks
  • Section 3: Fundamental concepts and principles of information security risk
  • Section 4: Information security risk management program
  • Section 5: Context establishment
  • Section 6: Risk identification
  • Section 7: Risk analysis
  • Section 8: Risk evaluation
  • Section 9: Risk treatment
  • Section 10: Information security risk communication and consultation
  • Section 11: Information security risk recording and reporting
  • Section 12: Information security risk monitoring and review
  • Section 13: OCTAVE and MEHARI methodologies
  • Section 14: EBIOS method and NIST framework
  • Section 15: CRAMM and TRA methods
  • Section 16: Closing of the training course

General Information

After successfully passing the exam, you can apply for one of the credentials below. You will receive the certificate once you comply with all the requirements related to the selected credential.

  • Certificate and examination fees are included in the price of the training course.
  • Participants of the training course will receive over 350 pages of training materials, containing valuable information and practical examples.
  • Participants of the training course will receive an attestation of course completion worth 21 CPD (Continuing Professional Development) credits.
  • Participants who have completed the training course and failed to pass the exam are eligible to retake it once for free within a 12-month period from the initial date of the exam.

Credential requirements summary

CredentialExamProfessional experienceInformation Security Risk Management experienceOther requirements
PECB Certified ISO/IEC 27005 Provisional Risk ManagerPECB Certified ISO/IEC 27005 Risk Manager exam or equivalentNoneNoneSigning the PECB Code of Ethics
PECB Certified ISO/IEC 27005 Risk ManagerPECB Certified ISO/IEC 27005 Risk Manager exam or equivalentTwo years: One year of work experience in ISRMInformation Security Risk Management activities: a total of 200 hoursSigning the PECB Code of Ethics

Note: PECB Certified individuals who possess several credentials are eligible for a reduction on the annual maintenance fees. For more information, please contact PECB.

How does the eLearning experience look like?

The ISO/IEC 27005 Risk Manager eLearning training course is delivered on the MyPECB platform. It becomes available after you log in using your PECB account. In addition to having the training course content in video format, you can also access the regular training course materials format, structured in training course days, with additional files available in an editable format (depending on the training course, the case study, exercises, and exercises correction key files will also be available). Quizzes are part of the training course to increase interactivity between attendants and the training material.

  • Take the training course
  • Access the materials on MyPECB
  • Enter the exam at your most convenient date, time, and location via PECB Exams

How can you benefit from the PECB eLearning experience?

PECB's eLearning training courses have been designed to meet the needs of diverse learners who have different learning preferences and/or limited time to attend a training course session. Here are some of the main benefits of the PECB eLearning experience:

  • Both the training course and the examination are conducted fully online. Thus, all you need is an electronic device and internet access.
  • The training course is available 24/7, so you can adapt your study pace, time, and location to your schedule instead of having to adapt your schedule to the training course.
  • The unlimited access allows you to go back to any section of the training course as needed.
  • Every training course consists of several video sections.

FAQ

How do I access the official PECB eLearning course?

After enrolment is confirmed, PECB provides access through the MyPECB portal.

Do I get access to the MentoroidX AI Trainer App?

Yes. Your enrolment includes access to MentoroidX AI Trainer resources for this course.

When can I sit the exam?

You can schedule your exam online via the PECB exam process at a time that suits you.

Is the course self-paced?

Yes. The eLearning course is available 24/7, so you can learn at your own pace.

Where can I download the brochure?

Use the “Download brochure (PDF)” button on this page to download the official brochure.

Ready to start?

Enrol and complete the official eLearning course, then sit the exam online at a convenient time.

Enrol now Download brochure (PDF)