Risk Management in ISO/IEC 27001

The ISO/IEC 27001 Information Security Management Systems (ISMS) standard helps organisations globally establish, maintain, and improve the framework for keeping their information assets secure. A major part of the ISO/IEC 27001 standard includes principles of risk mitigation. This webinar will address the identification and evaluation of information security risks in the context of implementation and maintaining an information security framework.

In this educational session, we will discuss information risk management concepts and methods specific to information security and security controls. Attendees will have the opportunity to learn more about risk management in ISO/IEC 27001 and how it applies to your specific operational environment; including an in-depth Q&A session by industry expert and Lead Auditor, Cristian Dragnef.

Presenter: Cristian Dragnef
Cristian Dragnef is an Information Security expert with more than 15 years of experience and expertise in information risk and security management, quality management systems, IT service management, and software development. Cristian has successfully managed numerous projects, implemented and conducted management system assessments, as well as provided management advisory and training to clients in various verticals across North America.

Cristian is an accredited ISMS Lead Auditor, IRCA certified ISMS and QMS trainer with RABQSA, and a STAR Alliance certified auditor.