Workshop 2 - Workshop on How to Design a Practical & Effective ISMS

Speaker: Mr. Richard Hollis


HKPC Building, 78 Tat Chee Avenue, Kowloon, Hong Kong
Date: 25 Oct 2019 (1 day)


09:30 - 17:00
Non-member Fee
HK$3,700 (Early Bird: HK$3,500)
Member Fee for Organiser/Supporting Organisation HK$3,500 (Early Bird: HK$3,300)

Medium of Instruction


Nature & Objectives

This workshop details a step-by-step guide for designing and deploying a simple, effective and scalable information security management system framework for any business structure comprised of:

  • Risk Strategy
  • Governance
  • Management
  • Scope & objectives
  • Governance
  • Roles & responsibility
  • Risk Treatment
  • Policies & procedures
  • Control objectives, evidence & testing
  • KRIs & KPIs

After completing this session, the participant:

  • Will get practical hands-on experience on how to design and implement ISMS
  • Will understand the structure, goals and objectives of an ISMS
  • Will understand how to visually present the ISMS to the Board
  • The placement and use of KRIs & KPIs

Course Outline

  • Risk Strategy
  • Governance
  • Management
  • Scope & Objectives
  • Governance
  • Roles & Responsibility
  • Risk Treatment
  • Policies & Procedures
  • Control Objectives, Evidence & Testing
  • KRIs & KPIs

Who Should Attend

The workshop is designed for Information Risk Managers and stakeholders who hold the primary responsibility for creating, implementing and managing an information risk management framework across the business.


Mr. Richard Hollis
Risk Crew Limited

Mr. Richard Hollis | Information Security Summit - Over the Horizon Cyber Security | align=

Mr Richard Hollis is the Chief Executive Officer for Risk Crew Ltd, a unique information security risk management consulting firm specialising in providing cost-effective, independent information risk management services. Richard possesses over 30 years of “hands on” skills and experience in designing, implementing, managing and auditing information security programs. Richard is a celebrated public speaker and seasoned ISACA CISM, CRISC and CSX certifications trainer.

Richard has presented to hundreds of audiences across the world on a wide variety of information risk management topics and techniques. As a recognised industry authority, he has published numerous articles and white papers and appeared on national and international broadcast news shows as well as being cited in a wide range of press including the BBC, MSNBC, Radio 4, the Financial Times, Time magazine and various others.

Copyright © 2019 Hong Kong Productivity Council. All Rights Reserved.