enterprise risk management, operational risk management, iso 27005, iso 31000 risk management, cicra
enterprise risk management, operational risk management, iso 27005, cicra, certified internal controls risk analyst

Prepare for your exams online from anywhere, at any time. Be certified as an authority on internal controls risk management according to ISO/IEC Standard 27005:2011.

Certification exams and exam preparation are now available for immediate access at our eLearning Center.

General Description

CIS Exam #RM101 maps to ISO/IEC 27005 risk management content areas explained in Certified Information Security's courses, "Establishing a Business Continuity Management System" and "Using ISO 27005 to Develop & Deploy Enterprise Risk Management".

  • Required  for CICRA, CBCS, CBCA, and CBCM certifications.
  • Number of questions: 65
  • Passing score: 75%
  • Time limit: 70 minutes
Register for Exam #RM101.

Content Areas

  1. Context establishment (ISO/IEC 27005 Clause 7)
  2. Risk assessment (ISO/IEC 27005Clause 8)
  3. Risk treatment (ISO/IEC 27005Clause 9)
  4. Risk acceptance (ISO/IEC 27005Clause 10)
  5. Risk communication (ISO/IEC 27005Clause 11), and
  6. Risk monitoring and review (ISO/IEC 27005Clause 12).