A tailored course, built for your situation
Mastering ISO 31000 for North American IT Service Delivery Leaders
Turn risk frameworks into visible, board-level impact, without expanding headcount or budget.
The situation this course is for
You deliver consistent uptime, compliance, and risk controls across a complex environment, but the leadership team doesn’t connect that to strategic resilience. The result? You’re excluded from high-impact conversations about investment, transformation, and risk appetite, even though your team bears the operational weight.
Who this is for
Senior IT service delivery leader with responsibility for compliance, system uptime, and risk controls across a multinational footprint. Works at the intersection of operations and governance but hasn't yet broken into strategic conversations.
Who this is not for
Junior analysts, auditors, or consultants without direct ownership of service delivery outcomes. This is not for those focused solely on checklist compliance or isolated technical controls.
What you walk away with
- Produce documented risk assessments using ISO 31000 that are cited in leadership briefings
- Position IT service delivery as the anchor of enterprise resilience strategy
- Generate executive-facing summaries that surface the impact of behind-the-scenes work
- Anticipate and shape risk conversations before they escalate to escalation committees
- Build a reusable playbook for converting control activity into strategic narrative
The 12 modules (with all 144 chapters)
- Defining strategic risk ownership
- Mapping ISO 31000 to service delivery outcomes
- The language of executive influence
- From policy to narrative
- Building credibility with evidence
- Three patterns in risk leadership
- Avoiding the compliance trap
- Aligning with business resilience goals
- Documenting impact without overstatement
- Using precedent to drive adoption
- Positioning early in the cycle
- Measuring visibility lift
- Identifying true risk owners
- Documenting operational context
- Setting risk criteria thresholds
- Linking uptime to resilience
- Prioritizing by business impact
- Excluding non-relevant domains
- Defining acceptable risk levels
- Incorporating incident history
- Stakeholder input channels
- Versioning risk context
- Integrating with CMDB
- Output: Risk Context Statement
- From noise to hazard signals
- Classifying recurring failures
- Mapping incidents to risk domains
- Using MTTR as input
- ServiceNow data structuring
- Identifying near-misses
- Vendor-related hazards
- Capacity as a risk driver
- Change velocity and exposure
- Third-party dependency mapping
- Documentation standards
- Output: Hazard Register
- Defining consequence scales
- Impact on downstream systems
- Financial proxy models
- Likelihood estimation techniques
- Historical recurrence weighting
- Using incident duration
- Cross-system ripple effects
- Human factor scoring
- External dependency weight
- Normalization across teams
- Presenting analysis succinctly
- Output: Risk Analysis Report
- Defining escalation triggers
- Mapping risk scores to appetite
- Threshold documentation
- Exception handling process
- Comparing to peer benchmarks
- Presenting urgent vs important
- Incorporating business cycle
- Adjusting for regional variance
- Documenting evaluation logic
- Stakeholder alignment checks
- Version control
- Output: Risk Evaluation Memo
- Prioritizing by visibility gain
- Leveraging existing controls
- Quick-win identification
- Budget-neutral treatment
- Automation as treatment
- Vendor coordination paths
- Documenting tolerances
- Mitigation vs transfer
- Risk acceptance protocols
- Assigning treatment owners
- Timeline feasibility
- Output: Treatment Plan
- Defining success metrics
- Linking to service health
- Tracking control implementation
- Audit evidence collection
- Using ticket closure rates
- Monthly review rhythm
- Automated alert integration
- Escalation thresholds
- Documentation standards
- Stakeholder reporting
- Update frequency
- Output: Monitoring Dashboard
- Audience-specific messaging
- Board-facing summaries
- Speaking to finance stakeholders
- Operations-level briefings
- Executive one-pagers
- Using visuals effectively
- Avoiding jargon
- Timing disclosures
- Anticipating pushback
- Documenting alignment
- Feedback loops
- Output: Communication Pack
- Mapping to SOC 2 controls
- Aligning with ISO 27001
- Leveraging existing audits
- Avoiding redundant work
- Using GRC tools
- ServiceNow integration
- Documentation reuse
- Cross-framework reporting
- Audit trail design
- Change management
- Version control
- Output: Integration Guide
- Template design principles
- Version-controlled repositories
- Onboarding new staff
- Handover documentation
- Automating updates
- Standardizing language
- Branding internal assets
- Approval workflows
- Storage protocols
- Access control
- Lifecycle management
- Output: Artifact Library
- Agenda design
- Pre-read distribution
- Stakeholder preparation
- Facilitation techniques
- Conflict resolution
- Decision logging
- Action item tracking
- Time management
- Virtual meeting norms
- Executive attendance
- Follow-up protocols
- Output: Review Pack
- Identifying allies
- Mentorship frameworks
- Cross-functional onboarding
- Sharing templates
- Presenting success stories
- Internal advocacy
- Building coalitions
- Sponsoring junior staff
- Risk champion programs
- Recognition systems
- Influence metrics
- Output: Leadership Expansion Plan
How this maps to your situation
- Risk visibility in IT service delivery
- Executive communication of technical work
- Compliance integration without redundancy
- Leadership influence beyond direct authority
Before vs. after
What's included with your purchase
- 12 modules with 12 chapters each (144 chapters)
- Downloadable templates and worked examples for every module
- Hand-built implementation playbook delivered alongside course access
- 30-day money-back guarantee
Delivery and format
- Course and learning environment access provisioned within 24 hours of purchase
- Hand-built implementation playbook delivered alongside course access
Format: Text-based modules and chapters in the Art of Service learning environment, plus downloadable templates and worked examples for every chapter, plus the hand-built implementation playbook delivered alongside course access.
Time investment: Approximately 3 hours per module, designed for completion within 8 weeks at a part-time pace.
How this compares to the alternatives
Unlike generic compliance courses, this program focuses exclusively on translating IT service delivery work into recognized strategic value using ISO 31000. No other course bridges operational rigor with executive visibility in this way.
Frequently asked
Within 24 hours your account in the learning environment is provisioned and the tailored implementation playbook is delivered alongside it.