Digital transformation readiness and actual Risk Assessment based on ISO 27001 ISMS Standard

IT Department/UTAS-Nizwa Hosts Expert-Led Guest Lecture on Risk Assessment Using ISO Standards

On March 11, 2025, the Department of Information Technology at UTAS-Nizwa conducted a virtual flipped classroom guest lecture titled “Risk Assessment Using ISO Standards”, aligned with the postgraduate course Managing Risks in Digital Transformation. The session was facilitated via Microsoft Teams and led by Mr. Sayyed Tabrez, Director of GRC Advisory and Training in Oman. Dr. Mary Amirtha Sagayee introduced the session and welcomed participants.

With over two decades of professional experience and an active leadership role in the ISACA Muscat Chapter, Mr. Tabrez offered students a clear, practice-oriented understanding of risk management using internationally recognized ISO frameworks. The lecture placed particular emphasis on ISO 27001, while also covering related standards such as ISO 31000, ISO/IEC 27005, and ISO/IEC 31010. Mr. Tabrez detailed the structured processes involved in risk identification, analysis, evaluation, and treatment.

To enhance real-world applicability, he demonstrated the use of practical assessment techniques including SWIFT, HAZOP, and FMEA. The session further explored strategies for managing risks across departments and addressed the growing need for resilience in the face of digital transformation challenges.

Through engaging discussions and expert insights, participants gained essential knowledge and practical tools to support informed decision-making and strengthen organizational risk posture. The Department thanked Mr. Tabrez for his valuable contribution to enriching the academic and professional readiness of UTAS-Nizwa’s postgraduate students.

Writeup by Dr. Mary Amirtha Sagayee