Show me desktop version

Documentation Tutorial: How to Implement Risk Assessment According to ISO 27001

Learn how to identify information security risks – assets, threats and vulnerabilities

Information security risk assessment is much more comprehensive than IT risk assessment – it has to take into account threats and vulnerabilities related not only to information technology, but also to employees, clients and partners, natural disasters, etc.

Dejan Kosutic, one of the leading ISO 27001 experts, explains how to link together assets, threats and vulnerabilities, and shows how to fill in the ISO 27001 risk assessment matrix (table) using a template document.

This unique video tutorial will enable you to perform the whole process in a much shorter time, and also ensure you didn’t forget some important risk that could cause damage later on.


Preview of chapters #1, #4 and #7:



ISO 27001 Free Downloads

Target audience: Companies starting their risk assessment process, after they have written the Risk Assessment Methodology
Documentation presented In video: Risk Assessment Table
Language: English
Presenter: Dejan Kosutic
Access: Available as part of the toolkits listed below
Duration: 21m 52s
Format: Streaming video (delivered online)
Code: 27001-VT-EN-105


Chapter List


1. Introduction

1m 29s

2. ISO 27001 requirements

6m 20s

3. Structure of Risk Assessment Table template

1m 41s

4. Risk assessment process

2m 41s

5. Prerequisites for risk assessment

2m 12s

6. Options for risk assessment

1m 40s

7. Filling in the Risk Assessment Table document

5m 49s


See All Tutorials

About 27001Academy

27001Academy is one of the Academies of Advisera specializes in helping organizations implement top international standards and frameworks such as ISO 27001, ISO 9001, ISO 14001, OHSAS 18001, IATF 16949, AS9100, ISO 20000 and ITIL. Over the years, Advisera has become a global leader in the provision of web-based training and documentation for ISO 27001 (information security management) and ISO 22301 (business continuity management).

Our products are of best-in-class quality. With a proven performance record of successful implementations in more than 100 countries, our world-class customer support ensures success. Read more about the 27001Academy here.




  • Exemplar Global (formerly RABQSA) is leading international authority in certification of training providers.
  • ITIL® is a registered trade mark of AXELOS Limited. Used under licence of AXELOS Limited. All rights reserved.
  • DNV GL Business Assurance is one of the leading providers of accredited management systems certification.
Request callback
Request callback

Or call us directly

International calls
+1 (646) 759 9933