Information Security

EBIOS Risk Manager

This training develops the practical capability to conduct information security risk assessments using the EBIOS Risk Manager method as required by ANSSI and aligned with ISO 27001. Participants work through a complete EBIOS RM study, from scoping to risk treatment, using realistic scenarios and s.

2 daysExam includedPhysical classroomOnline classroomSelf-study
2,500+ professionals trained92.3 % pass rate120+ countries600+ organisations
PECB
18 May – 20 May
Language
FR
LocationParis & Online
Format
Physical classroomOnline classroom
Physical classroom
  • Instructor-led classroom training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Online classroom
  • Instructor-led online live interactive training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
PECB
1 Jun – 3 Jun
Language
ENFR
LocationLausanne / Morges & Online
Format
Physical classroomOnline classroom
Physical classroom
  • Instructor-led classroom training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Online classroom
  • Instructor-led online live interactive training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
PECB
13 Jul – 15 Jul
Language
ENFR
LocationLausanne / Morges - Switzerland
Format
Physical classroomOnline classroom
Physical classroom
  • Instructor-led classroom training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Online classroom
  • Instructor-led online live interactive training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
PECB
27 Jul – 29 Jul
Language
FR
LocationParis - France
Format
Physical classroomOnline classroom
Physical classroom
  • Instructor-led classroom training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Online classroom
  • Instructor-led online live interactive training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Confirmed
PECB
Available year-round
Language
ENFR
Format
Self-study
Self-study
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Official PECB certification
  • One free retake exam
No date works for you?
Request a private or flexible session

Key takeaways

Conduct an end-to-end EBIOS RM risk assessment independently
Build and justify strategic and operational risk scenarios
Translate EBIOS results into concrete risk treatment decisions
Communicate risk findings clearly to management and stakeholders

Your trainers for this course

Henri HAENNI - Expert in Business Continuity, Risk Management and Information Security Governance
Henri HAENNI

ISO 22301 Lead Implementer · ISO 22301 Lead Auditor · ISO 27001 Lead Implementer · ISO 27005 Risk Manager · EBIOS Risk Manager

Expert in Business Continuity, Risk Management and Information Security Governance Consulting for large multinational corporations, government organization and internal organizations Certified international trainer and Lecturer at Sorbonne University Paris 1

30 years of experience in governance and information security. Lecturer at Sorbonne (Paris I Panthéon), EPFL graduate. Led ISO deployments for The Global Fund, central banks, and government organizations across 3 continents.
30+Years of experience
SorbonneLecturer
EPFLGraduated
12 PECBCertifications
marc-bouvier
Marc BOUVIER

ISO 22301 Lead Implementer · ISO 22301 Lead Auditor · ISO 27001 Lead Implementer · ISO 27001 Lead Auditor · ISO 27005 Risk Manager

More than 25 years' experience in information security, resilience, risk management and compliance. Each training session is an opportunity to share practices as an auditor, consultant and/or project manager, and to comment on and explain the content of each certification.

14certifications
9domains
Meet all our trainers →
PECB
EBIOS Risk Manager · Titanium Partnerhighest PECB accreditation levelTitanium Partner

Page contents

Course Description

Information security risk assessments are increasingly scrutinized by regulators, auditors, and executive management. In France and across Europe, EBIOS RM has become the reference method for structured, scenario-driven risk analysis, particularly in regulated and critical environments. Organizations implementing or maintaining ISO 27001 also require risk assessments that are traceable, repeatable, and defensible.

This training places participants in the role of risk analyst throughout a complete EBIOS RM study. Rather than reviewing theory in isolation, the course is built around progressive workshops that mirror real consulting engagements. Participants define scope and security baselines, identify risk sources, construct strategic and operational scenarios, and conclude with risk treatment decisions that can be defended during audits or governance reviews.

Abilene Academy’s approach reflects how EBIOS RM is applied in practice. Trainers are active consultants who use the method in complex organizational environments, including multi-stakeholder and regulated contexts. Emphasis is placed on reasoning quality, scenario consistency, and decision-making relevance rather than mechanical completion of templates.

By the end of the training, participants are able to explain and justify the outcomes of an EBIOS RM study, not just produce documentation. The result is a risk assessment that supports informed security investment, aligns with ISO 27001 requirements, and can be communicated effectively to both technical and non-technical stakeholders.

    • Define the scope and security baseline of an EBIOS RM study
    • Identify and qualify risk sources and threat ecosystems
    • Build coherent strategic and operational risk scenarios
    • Assess risk levels using EBIOS RM reasoning logic
    • Propose and justify risk treatment options
    • Communicate EBIOS findings to management and auditors

Professional Testimonials

Had a great experience learning with Abilene Academy, it has been an extremely long time since I have attended an external formal training outside of the business organization I work in. I found this training to be truly beneficial for me to attend. the overall delivery of the course by Henri was superb, he kept us well engage despite having half of the room online and half face to face. The communication from the advisors from the initial enquiry regrading the course up until now has also been great! definitely recommending to my colleagues. Thank you!
TG

Tracey Gillett

Crisis and Operations Management

TUI
Henri and Alexis conducted a focused, intensive four-day ISO/IEC 27001 Lead Implementer Course of immediate relevance to The Global Fund. Participants representing both IT and Risk are now better prepared to design and operationise a corporate ISMS.
AT

Andreas Tamberg

Senior advisors enterprise risk management

The Global Fund
Another stellar training course run by Abilene, thank you for the outstanding organization and logistics. The PECB training material is very rich, well presented with clear explanations and notes.
SB

Simon Baynes

BCMS Manager

MSC MEDITERRANEAN SHIPPING COMPANY SA

Frequently Asked Questions

What is the EBIOS Risk Manager certification and what does it qualify you to do?

The EBIOS Risk Manager certification qualifies professionals to conduct structured information security risk assessments using the EBIOS RM method mandated by ANSSI. It confirms the ability to build threat-driven risk scenarios, assess risks, and define justified treatment measures aligned with ISO 27001.

“An EBIOS RM study only has value if you can defend it in front of auditors or executives. The certification proves you can explain your reasoning, not just fill in templates.”

Marc BOUVIER

ISO 22301 Lead Implementer • ISO 22301 Lead Auditor

EBIOS Risk ManagerEBIOS RMRisk ManagementInformation Security

Who should take the EBIOS Risk Manager training?

EBIOS Risk Manager training is intended for professionals involved in information security risk assessments, including security managers, risk analysts, consultants, and managers who need to understand or validate EBIOS RM studies used for ISO 27001 or regulatory purposes.

“We see many managers approving risk treatments they don’t fully understand. This training gives them the ability to ask the right questions.”

Ramesh PAVADEPOULLE

ISO 27001 Lead Implementer • ISO 27001 Lead Auditor

EBIOS Risk ManagerRisk ManagementInformation SecurityPractitioner

How does EBIOS RM support ISO 27001 risk assessment requirements?

EBIOS RM supports ISO 27001 by providing a structured method to identify, analyze, and treat information security risks in line with clause 6.1.2. It ensures risk assessments are documented, repeatable, and defensible during audits.

“Auditors rarely question ISO 27001 compliance when the risk assessment logic is clear. EBIOS RM gives that clarity.”

Marc BOUVIER

ISO 22301 Lead Implementer • ISO 22301 Lead Auditor

EBIOS RMISO 27001Risk AssessmentISMS

What is the format of the EBIOS Risk Manager certification exam?

The EBIOS Risk Manager exam is a three-hour, open-book, paper-based exam aligned with ANSSI requirements. It assesses knowledge of EBIOS RM principles, framework, and practical risk assessment execution.

“Open book doesn’t mean easy. If you don’t understand the logic, you won’t finish on time.”

Ramesh PAVADEPOULLE

ISO 27001 Lead Implementer • ISO 27001 Lead Auditor

EBIOS Risk ManagerCertification ExamRisk ManagementPractitioner

Last updated:

Train with practitioners. Pass with confidence.

Abilene Academy is the only PECB Titanium Partner in Switzerland — the highest accreditation tier in the industry — delivering certified training in information security, data protection, AI governance, and GRC compliance. 99% exam pass rate. 2,500+ professionals trained across 120+ countries and trusted by 600+ organizations. Multilingual programmes available.

99%
Exam pass rate
2,500+
Professionals trained
120+
Countries reached
Titanium
The only PECB Titanium Partner in Switzerland
Certification included
Multilingual
EN · FR · ES · DE · IT and more

Trusted by 600+ organisations in 120 countries

  • Airbus logoAirbus
  • Altis logoAltis
  • BCEAO logoBCEAO
  • BCV logoBCV
  • Cargolux logoCargolux
  • Cartier logoCartier
  • Cofco Intl logoCofco Intl
  • Confédération SuisseConfédération Suisse
  • Council of Europe logoCouncil of Europe
  • Dell logoDell
  • Deloitte logoDeloitte
  • Devillard logoDevillard
  • Ebay logoEbay
  • Engie logoEngie
  • Etat de Fribourg logoEtat de Fribourg
  • Etihad Airways logoEtihad Airways
  • Eumetsat logoEumetsat
  • EY logoEY
  • Framatome logoFramatome
  • G42 logoG42
  • Gavi logoGavi
  • Republique et canton de Genève logoRepublique et canton de Genève
  • Groupe Mutuel logoGroupe Mutuel
  • HSBC logoHSBC
  • International atomic energy agency logoIAEA
  • IATA logoIATA
  • IBM logoIBM
  • international Labour organization logoILO
  • IMD logoIMD
  • KPMG logoKPMG
  • Kudelski Security logoKudelski Security
  • Loterie Romande logoLoterie Romande
  • MSC logoMSC
  • Nagra logoNagra
  • nespresso logoNespresso
  • Nestlé logoNestlé
  • Novartis logoNovartis
  • Payot SA logoPayot SA
  • Philips logoPhilips
  • PSA PanamaPSA Panama
  • PWC logoPWC
  • Richemont logoRichemont
  • Roche logoRoche
  • RTS Radio Télévision SuisseRTS
  • Santander logoSantander
  • SAP logoSAP
  • https://www.skyguide.ch/Skyguide
  • Société Générale logoSociete Generale
  • Swisscom logoSwisscom
  • SyzSyz
  • The Global fund logoThe Global fund
  • UNGSC logoUNGSC
  • International computing center logoUNICC

We use cookies to improve your experience

Necessary cookies are always active. You can accept, reject non-essential cookies, or customize your preferences.