- Virtual Consultant
- Learning center
WATCH THE RECORDING NOW
Professionals with little or moderate experience in internal audit according to ISO 27001/ISO 22301, including:
Presenter: Dejan Kosutic
Format: Recorder webinar
Duration: 111m 29s (1h 51m 29s)
Dejan is clearly a subject matter expert on Risk Analysis and Risk Management. His trainings are well designed and superbly and professionally delivered using the GoToTraining platfrom.
CISSP, CHP, CHSS, CEO at Clearwater Compliance LLC
Dejan Kosutic is the author of documentation toolkits at 27001Academy. He has extensive working experience both as tutor and as a consultant - he is an Approved Tutor for ISMS Lead Auditor courses at SGS, and delivers various ISO 27001 and ISO 22301/BS 25999-2 in-person courses throughout Europe as well as online courses via webinars. In his consulting career, he works with clients from the financial sector, government, and small and medium-sized business including IT companies.
He has an MBA from Henley Management College, and is the holder of the following certificates: Certified Management Consultant, ISO/IEC 27001 Lead Auditor, Associate Business Continuity Professional, and ISO 9001 Lead Auditor.
Why is risk treatment important?
Risk treatment is the second part of the risk management, right after the risk assessment process – the purpose of risk treatment is, once you know where the risks are, to define how to control those risks.
During risk treatment the controls from ISO 27001 Annex A are usually selected as a means to decrease risk – while doing it, it is very important to balance between decreasing the risks and the cost of controls, because you may end up investing too much in a certain control while you may have had a cheaper alternative.
Statement of Applicability is the key document listing all the controls from Annex A – not only does it define which controls will be used, but it also defines what should those controls achieve, why they were selected etc. This document serves as the starting point for the implementation process of the controls.
Live online trainings via webinars are currently delivered in English only. However, we plan to deliver some of the trainigs on Spanish and Croatian too.
No, all our live online trainings are delivered through Internet only, via webinars. Webinars enable you to experience both audio and video presentation from our presenter/trainer.
You just need your computer with a browser - webinar recordings can be watched as any other video on the internet, e.g. on YouTube.
The number of views is not limited - you can watch the recordings as many times you wish.