ISO in the Sun: ISO 31000 Lead Risk Manager (PECB)

This five day course provides an overview to the generic principles of risk management based on ISO 31000:2018, and how to apply the same across an organisation, e.g. for operational or financial risk, the various risk-based management systems like IMS, QMS, EMS, SMS, BCMS, ISMS, OH&SMS etc.

Overview:

This five day course enables participants to develop the necessary expertise to support an organisation in implementing risk management processes based on ISO 31000:2018.

The generic character of ISO 31000:2018 makes it applicable across organisations at subject matter as well as enterprise level.

ISO 31000:2018 provides a comprehensive model for any kind of management system, standard, operational or regulatory context requiring a risk-based approach, whether a formal risk management process is required or not.

Examples are ISO 9001:2015, ISO 14001:2015, ISO/IEC 20000-1:2018, ISO 22301:2019, ISO/IEC 27001:2013, ISO 45001:2018, SOX, revenue assurance, program and project management, data protection, GDPR, DORA, NIS-2 etc.

The course consists of a mix of presentation, discussion and exercises based on real-world examples.

Outline:

Introduction to Risk Management per ISO 31000:2018

• Fundamental Concepts and Definitions of Risk Management
• Risk Management Standards, Frameworks and Methodologies
• Implementation of a Risk Management Framework
• Understanding an Organization and its Context

Elements of the Risk Management Framework

• Risk Identification
• Risk Analysis and Risk Evaluation
• Risk Treatment
• Risk Acceptance and Residual Risk Management
• Risk Communication and Consultation
• Risk Monitoring and Review

Examples of Risk Assessment Methodologies

• Overview to IEC 31010:2009
• Brainstorming, Interviews
• Hazard Analysis using HAZOP and HACCP
• Scenario Analysis, SWIFT
• Fault and Failure Analysis using FTA, FMEA and FMECA
• Operations Management of the BCMS
• Cause and Effect Diagram

Objectives:

Completion of this course will enable students to:

• Understand concepts, approaches, methods, tools and techniques for effective risk management according to ISO 31000:2018
• Understand the relationship between risk management and requirements of interested parties
• Implement, maintain and manage an ongoing risk management program
• Advise organisations on best practices in risk management

Audience:

This course is aimed at students with (future) roles like:

• Risk managers and Business process owners
• Project managers, consultants and team members implementing and operating management systems
• Regulatory compliance managers
• Auditors requiring more risk management insight

Prerequisites:

General understanding of common business processes.

Some past exposure to risk management and / or management systems helpful, but not required.

Examination and Certification:

The course includes access to PECB's two hour exam available in multiple languages to be taken online any time after the course (own laptop required). Exam and first year certification fees are included in the course fees.

This course is designed by PECB in Canada, who also mark the exam and issue respective certifications as per their criteria. PECB is a personnel certification body, accredited to ISO/IEC 17024:2012 by IAS. See www.pecb.com for full details.