Excel in Risk Assessment and Management based on ISO 31000 and ISO/IEC 31010

Join our three-day intensive course to gain the expertise required for effective implementation of risk management processes across your organization. Utilizing the ISO 31000:2009 standard as a guide, participants will develop skills through hands-on exercises, enabling them to conduct comprehensive risk assessments and timely risk management throughout the lifecycle. This training covers the ISO 31000 general risk management standard, its recommended process model, and harmonization with IEC/ISO 31010 for enhanced risk assessment guidance.

Who should attend?

  • Risk managers
  • Business Process Owners
  • Business Finance Managers
  • Business Risk Managers
  • Regulatory Compliance Managers
  • Project Management
  • Persons responsible for information security or conformity within an organization

Learning objectives

  • To understand the concepts, approaches, methods, tools and techniques allowing an effective risk management according to ISO 31000 and IEC/ISO 31010
  • To understand the relationship between the risk management and the compliance with the requirements of different stakeholders of an organization
  • To acquire the competence to implement, maintain and manage an ongoing risk management program according to ISO 31000
  • To acquire the competence to effectively advise organizations on the best practices in risk management

Course Agenda

Day 1: Introduction to the Risk Management framework according to ISO 31000

  • Concepts and definitions related to Risk Management
  • Risk Management standards, frameworks and methodologies
  • Implementation of a Risk Management framework
  • Understanding an organization and its context

Day 2: Risk identification and assessment, risk evaluation, treatment, acceptance, communication and surveillance according to ISO 31000

  • Risk identification
  • Risk analysis and risk evaluation
  • Risk treatment
  • Risk acceptance and residual risk management
  • Risk communication and consultation
  • Risk monitoring and review

Day 3: Risk assessment methodologies according to ISO 31000 and Certification Exam

  • Presentation of risk assessment methodologies
  • Certification Exam


Knowledge on Risk Management is preferred.

Educational approach

  • This training is based on both, theory and practice:
    Sessions of lectures illustrated with examples based on real cases
    Practical exercises
    Review exercises to assist the exam preparation
    Practice test similar to the certification exam
  • To benefit from the practical exercises, the number of training participants is limited

Examination and Certification

The “Certified ISO 31000 Risk Manager” exam fully meets the requirements of the PECB Examination and Certification Program (ECP). The exam covers the following competence domains:
Domain 1: Fundamental principles and concepts in risk management
Domain 2: Risk management program
Domain 3: Risk assessment
Domain 4: Risk treatment
Domain 5: Risk communication, monitoring and improvement

The “Certified ISO 31000 Risk Manager” exam is available in different languages (the complete list of languages can be found in the examination application form)

Duration: 2 hours
For more information, refer to the PECB section on ISO 31000 Risk Manager Exams

After successfully completing the “ISO 31000 Risk Manager” exam, participants can apply for the credentials of Certified ISO 31000 Provisional Risk Manager or Certified ISO 31000 Risk Manager, depending on their level of experience.

A certificate will be issued to the participants who successfully pass the exam and comply with all the other requirements related to the selected credential

For more information, refer to the PECB section on ISO 31000 Risk Manager Certifications