Risk Management in IG - Act Now
Effective risk identification and risk management are not just best practices for organisations; they are obligations under GDPR and the Data Protection Act 2018 to demonstrate accountability, ensure data security and safeguard data subjects’ rights.
A robust risk management process helps identify vulnerabilities, reduces the likelihood of data breaches, helps complete DPIAs and provides evidence of GDPR compliance. Unfortunately, the GDPR is silent on how organisations should assess and quantify risk, which means information governance professionals have to consider generic guidance from other sectors.In this workshop you will gain critical insights and practical tools to identify, assess, and mitigate information risks in your organisation. Designed for information governance professionals, it delivers actionable strategies, real-world examples, and expert guidance to strengthen your risk posture and support compliance.
By the end of the workshop, you will be able to map information assets, threats, and vulnerabilities to assess real-world risks, produce a risk register tailored to your organisation, make informed decisions on mitigating or accepting specific risks and begin embedding a risk aware approach in daily operations, projects, and strategic planning.
Key Topics
- The role of risk management in data protection compliance
- Key frameworks (ISO 27005, NIST RMF, FAIR)
- Identifying and assessing risks
- The 5 risk management steps
- Identifying threats and vulnerabilities
- Assessing severity and likelihood of risk
- Risk response strategies
- Selecting effective controls
- Applying a risk matrix
- Identifying risk appetite
- Planning and implementing controls
- Risk reporting and culture
Event Information
| Event Date | 10-03-2026 10:00 am |
| Individual Price | From £449 plus VAT |
| Location | Online (live) |